Microsoft 365 & Messaging Infrastructure Architect

Sagility is a trusted partner for healthcare operations transformation, helping organizations unlock value across complex healthcare workflows. With more than 25 years of healthcare domain expertise, Sagility combines deep operational knowledge with AI-enabled technology and intelligent automation to improve efficiency, strengthen decision-making, and elevate experiences for members, patients, providers, and stakeholders across the healthcare ecosystem.

Sagilitys capabilities span end-to-end healthcare operations, including claims administration, payment integrity, clinical and care management support, member and provider engagement, revenue cycle services, and advanced analytics. Today, nearly 50,000 specialists, clinicians, technologists, and operations professionals support healthcare organizations globally through trusted collaboration and technology-led transformation.

Objectives and Responsibilities of the Senior Microsoft 365 & Messaging Infrastructure Architect

We are seeking a highly experienced Senior Microsoft 365 & Messaging Infrastructure Architect responsible for enterprise-wide Microsoft 365 operations, identity lifecycle management, email security, SSO integrations, and hybrid infrastructure governance. The role demands deep technical expertise across M365, Email Gateway, SSO, DNS, Certificates, and Security platforms.

Primary Technology Stack

Microsoft 365 / Office 365 Infrastructure

• Enterprise administration of Microsoft 365
• Identity lifecycle: ID creation / deletion / modifications
• License management & optimization
• Mailbox restoration & recovery
• DL & Security group administration
• Exchange Online health monitoring & log analysis via Exchange Online
• Transport rules as per business requirements
• Litigation hold, retention, archiving & deletion policies
• Monthly audit reporting (OWA, ActiveSync, POP, IMAP enabled mailboxes)
• Email migrations (On-prem Cloud)

SharePoint, OneDrive & Teams

• Administration of SharePoint Online & OneDrive
• Site & portal creation and governance
• Retention & compliance policies
• Administration of Microsoft Teams (Teams governance, policies, integrations)
• Live Townhall / Board meetings (Webcast management)

Identity & Access Management (IAM)

• Enterprise administration of Microsoft Entra ID
• Conditional Access policy design & enforcement
• Azure AD Connect configuration & sync health management
• Directory Sync server management
• Federation & protocol integration (SAML 2.0, WS-Fed, OpenID)
• SSO, MFA, and SSPR governance
• Domain & identity reconsolidation programs
• Application SSO integration (SaaS-based apps)

Security, Compliance & Data Protection

• Administration of Azure Information Protection & RMS
• Unified Labeling Client deployment & governance
• MDM management via Microsoft Intune
• Mobile Device Management (iOS & Android)
• Office 365 Audit log & alert monitoring
• Security rule creation & access restriction frameworks
• Endpoint DLP & CASB integration
• Certificate Authority & certificate deployment for application servers

Email Gateway & Threat Protection

• Management of Mimecast Email Security
• Malware, phishing, spoofing & zero-day protection (ATP)
• SMTP relay (On-Prem & Cloud)
• Email DLP rule configuration per business process
• Email restriction & policy governance
• SPF, MX, DKIM, A, and CNAME record management

Infrastructure & Supporting Platforms

• AD server patch management
• Federation server management
• Certificate Authority server management
• DNS management via Amazon Route 53
• SFTP Server administration
• ManageEngine tools:
• ManageEngine ADAudit Plus
• ManageEngine ADManager Plus
• ManageEngine M365 Manager Plus
• CASB platform administration

Collaboration & Communication Tools

• Integration and governance of:
• Cisco Webex
• Zoom
• TEAMS
• Microsoft Teams Rooms (MTR) integration with Telepresence
• Executive live webcast & townhall event technology management

Key Responsibilities

• Own end-to-end M365 tenant health & security posture
• Define governance model for Identity & Collaboration
• Perform compliance & audit readiness activities
• Lead migrations, domain consolidation & modernization initiatives
• Optimize licensing & cost management
• Monitor zero-day threats & email attack surface
• Maintain 99.9%+ service availability
• Provide monthly executive reports (security, mailbox usage, protocol exposure)

Qualification:

• Degree in Computer Science, Engineering, or a related field.
• 15 - 20 years ofMicrosoft365 architecture experience
• High expertise with Microsoft Azure.
• Expertise in windows PowerShell scripting
• Expert in Conditional access, App protection, and Defender cloud app Security,
• Advance knowledge of Microsoft Graph API, Power app, and automation
• Experience with Intune Endpoint Management for iOS |Windows
• Senior Microsoft Azure Certification
• Enterprise administrator expert MS101
• Microsoft365 MS102 Administrator
• Expert knowledge of Microsoft graph API, Power app, and automation