Sr M365 Engineer

Leidos • fulltime • Remote, Remote, US • 1h ago

Description

General Program Information and/or position overview.

Leidos Government Health & Safety Solution Group in Windows Mill, MD in support of the End User Centric IT Support (ECIS) Contract for the Centers for Medicare and Medicaid Services (CMS), is looking to improve and advance the organization. Our program is focused on the delivery of end-user centric IT technology solution to our customer CMS where we are challenged to provide ongoing innovative and seamless experience while user CMS systems, applications and solutions, provide proactive secure development of IT integrations, automation, concepts, and designs across the CMS enterprise and integrate end-use computing devices, conference room technology, infrastructure hardware and software, Microsoft 365 workloads, identity services, endpoint management, and user applications into a streamlined and seamless experience across the CMS user base. We foster a positive end-user experience while ensuring protection of the data.

Primary responsibilities

The successful candidate will work within an ITIL environment with a large focus on DevOps, automation, and sustaining engineering. The candidate will be a member of the Microsoft 365 Engineering Team providing engineering support for the Microsoft 365 tenant and related services in a hybrid environment. The system is based on Microsoft technology, including on-premises services, Microsoft 365, Entra, Intune, and support for more than 15,000 users. Priorities will include managing email, messaging, collaboration, meeting, and user-management services. The candidate independently develops solutions, approaches, or makes recommendations to resolve a wide range of complex or difficult problems for both internal/external customers, including vendors. These processes and production requirements often require a flexible work schedule. Serve as a mentor for Junior Engineers.

The candidate may need to deliver presentations and produce well-written technical documents tailored to the customer’s environment and objectives. They will be trained to operate in an Agile Scrum methodology. Participation in scrum sprint activities related to Microsoft 365 engineering, automation, email, messaging, collaboration, meeting and user-management services, Entra, Intune, and hybrid solutions is required. The candidate must possess strong verbal and written communication skills to effectively interact with the customer’s technical staff.

Additional responsibilities include troubleshooting and collaborating with other technical functional groups such as Service Desk, Datacomm, Security, Engineering Teams, Endpoint Management, Identity Management, and application teams for all supported technical issues. Other duties will encompass, but are not limited to:

Collaborate with Identity Management, Collaboration, Messaging, Mobility Services, Endpoint Management, Security, and Engineering resources to reach quality results and progressive achievements.
Able to understand cross-team dependencies to ensure new or changed solutions comply with department vision, environment, and security considerations.
Identify opportunities for improved user experience, service reliability, automation, and operational efficiency based on knowledge of existing solutions, current user technology, Microsoft 365 Roadmap and industry trends.
Understand requirements gathering, evaluation, testing, and lifecycle management for hardware & software.
Support efforts for large-scale Microsoft 365 administration automation for user T0 self-service, admin support, monitoring system health, and day-to-day operations.
Provide consultation on the design, plan, and execution Microsoft 365 workloads including Exchange Online, OneDrive, SharePoint Online, messaging and meeting systems, Entra, Intune, and related service integrations.
Support the development, deployment and execution of Microsoft 365 services, automation capabilities, and develop roadmaps and services strategies.
Engineer, deploy, automate, and provide sustaining engineering support for our customer program.
Assist in developing concise and accurate engineering documentation on current and proposed cloud environment including Visio Diagrams, As-Built documents, recommendations for solutions, run books, knowledge guides, script documentation, system health check procedures, and other operations guides.
Provide technical and operational subject matter expertise for Microsoft 365 Service adoptions, automation, Entra, Intune, and hybrid service operations in the organization.
Work with little or no supervision, provide guidance to the team when necessary, and be able to adapt to changing requirements, changing priorities, and complex technical dependencies.
Maintain, troubleshoot, and enhance existing automation scripts, system health checks, reporting, and operational validation processes; able to pick up, digest, and make changes as necessary to support evolving Microsoft 365 service needs.
Routinely evaluate related Microsoft 365 processes and work for continuous process improvements and automation and make informed decisions on implementation with proper change process.
Create new and modify existing PowerShell scripts, Microsoft Graph-based automation, and automation code written in C#, C++, Python, or related scripting/programming languages to automate reporting, administrative tasks, system and environment health checks, operational validation, and support processes based on extensive knowledge of the environment; able to pick up, digest, and make changes to existing scripts and create new processes that can be followed by junior level engineers and administrators.
Provide strategic planning for the ongoing design, development and improvement of Microsoft 365, Entra, Intune, automation, and hybrid infrastructure services, including requirements and implications as they relate to business continuity and disaster recovery and recommend solutions to Management for consideration.
Create and maintain documentation related to Microsoft 365 engineering processes, automation scripts, health check processes, and ConOps on a quarterly basis.
Create and maintain comprehensive documentation for configurations, processes, and procedures related to Microsoft 365 administration, Entra administration, Intune administration, scripting, and automation.
Take the Lead with issue escalation by Deskside support team, Service Desk, Security, Engineering, and other IT teams for client access, endpoint, identity, automation, and Microsoft 365 service issues for resolution.
Participate as required with Agile Scrum sprints and other Agile ceremonies.
Stay abreast of current and emerging technologies, regularly analyzing and evaluating their impact and benefit to the customer by providing recommendations to management
Provide guidance to address risks related to data privacy, ethics, compliance, identity, endpoint security, and automation.
Provide technical and operational support across the Microsoft 365 product suite, including but not limited to SharePoint Online, OneDrive, Teams, Microsoft 365 Groups, Lists, OneNote, Forms, Power Automate, Power BI, and related services used for daily operations, projects, initiatives, and customer support.
Leverage Microsoft 365 collaboration, productivity, reporting, and automation tools to support internal operations, improve service delivery, and enhance the end-user experience across the customer environment.
Provide engineering support for Intune-managed Windows devices, including device configuration, compliance, application deployment, endpoint security settings, troubleshooting, and lifecycle management in support of customer requirements.

Basic Qualifications

MINIMUM requirements to be considered for the position is a BS degree and 8+ years of prior relevant experience or Master with 6 years of prior relevant experience. Additional years of experience may be substituted in lieu of degree.
Must be able to obtain and maintain a Public Trust or higher security Clearance.
Experience with implementation and administration Microsoft 365 services including Exchange Online, SharePoint Online, OneDrive, Microsoft 365 Apps, Intune, Entra ID, and hybrid Microsoft 365 environments.
Experience with Microsoft 365 Security Services, Microsoft Defender capabilities, Conditional Access, identity protection, endpoint security, and secure service configuration.
Demonstrated Knowledge of Microsoft 365 support technology including but not limited to, Active Directory, DirSync, Entra Connect, Active Directory Federation Services (ADFS), Entra, Conditional Access Policies, MFA, PIM, application registrations, and hybrid identity services.
General Knowledge of Microsoft 365 service administration, Exchange Online mail flow, SharePoint Online, OneDrive, Intune, Entra, endpoint management, routing, and related security appliances or services.
Strong experience in PowerShell, Microsoft Graph, and scripting/programming languages such as C#, C++, Python, or related technologies to support administration, automation, reporting, system health checks, and operational validation of Active Directory and Microsoft 365 technologies including Exchange Online, SharePoint Online, OneDrive, Entra, Intune, and related services.
Strong understanding of standard client/server, networking, TCP/IP, and Internet fundamentals.
Strong knowledge of Microsoft Authentication Protocols, Modern Authentication, identity lifecycle, token-based authentication, and Conditional Access behavior
Proven experience with standard monitoring tools, scripting methodologies, practices, automation-based system or environment health checks, and maintaining existing operational automation.
Experience with Azure application registrations migrating apps from Basic Auth to Modern Auth and supporting application permissions, Graph permissions, certificates, secrets, and service principal lifecycle management
Strong Active Directory Group/User object manipulation, Entra user and group administration, dynamic groups, role assignments, and hybrid identity troubleshooting.
Working knowledge of Microsoft PKI, certificate-based authentication, device certificates, and certificate dependencies for Microsoft 365 and endpoint management services
Strong understanding of infrastructure services: DNS, WINS, DHCP and how they support hybrid Microsoft 365, identity, endpoint, and application services
Strong technical writing and presentation skills with ability to effectively communicate with all levels of customer organization (technical resources, management)
Ability to communicate effectively with all leadership levels and multiple IT teams consuming Microsoft 365, identity, endpoint, and automation services
Ability to resolve complex problems using significant application of technical knowledge conceptualizing, reasoning and interpretation
Ability to obtain a Public Trust clearance
Demonstrated knowledge of the Microsoft 365 product suite, including but not limited to SharePoint Online, OneDrive, Teams, Microsoft 365 Groups, Lists, OneNote, Forms, Power Automate, Power BI, and related productivity, collaboration, and automation services.
Experience using Microsoft 365 products and services to support daily operations, engineering activities, projects, initiatives, customer requirements, and end-user support needs.
Experience with Intune and Windows device management, including device enrollment, configuration profiles, compliance policies, application deployment, endpoint security, Windows update management, and troubleshooting.
All candidates supporting the CMS programs must have lived in the United States at least three (3) out of the last five (5) years prior in order to be considered

Preferred Qualifications

Previous experience working in an Agile Scrum environment.
Previous experience employing DevOps methodologies.
Experience with change control principals and ticket with Service Now (SNOW).
Understanding of agency Capstone and NARA data retention compliance principles.
Experience with design, planning and implementation in environment with 10,000+ users.
Experience with Azure services that support Microsoft 365 automation, integration, and operations, including Logic Apps, Azure Automation, Azure Functions, Key Vault, storage accounts, managed identities, service principals, and application registrations.
Experience building or maintaining Power Automate flows, Power BI reports or dashboards, SharePoint Online lists/libraries, Forms-based intake processes, and other Microsoft 365-based operational tools.

If you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the status quo — because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already at step 30 — and moving faster than anyone else dares.

Original Posting:

June 1, 2026

For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:

Pay Range $107,900.00 - $195,050.00

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

About Leidos

Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations. Headquartered in Reston, Virginia, with 47,000 global employees, Leidos reported annual revenues of approximately $16.7 billion for the fiscal year ended January 3, 2025. For more information, visit www.Leidos.com.

Pay and Benefits

Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available at www.leidos.com/careers/pay-benefits.

Securing Your Data

Beware of fake employment opportunities using Leidos’ name. Leidos will never ask you to provide payment-related information during any part of the employment application process (i.e., ask you for money), nor will Leidos ever advance money as part of the hiring process (i.e., send you a check or money order before doing any work). Further, Leidos will only communicate with you through emails that are generated by the Leidos.com automated system – never from free commercial services (e.g., Gmail, Yahoo, Hotmail) or via WhatsApp, Telegram, etc. If you received an email purporting to be from Leidos that asks for payment-related information or any other personal information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at LeidosCareersFraud@leidos.com.

If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission.

Commitment to Non-Discrimination

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.

#Remote

Apply