Sr. Microsoft Cloud Engineer in Washington, District of Columbia at RightDirection Technology Solutions

RDTS is seeking a Senior Microsoft Cloud Engineer to support the Congressional Budget Office (CBO). This is a senior individual contributor role carrying full technical authority over enterprise Microsoft 365, Azure, and Microsoft Security platforms. This role will operate independently with minimal supervision, serve as the primary technical advisor to CBO engineering teams, and own the design, implementation, and optimization of Microsoft cloud infrastructure across a 700+ endpoint enterprise environment.

This position requires all eight (8) Microsoft certifications listed below, each maintained and continuously active in professional use for a minimum of five (5) years. Expired or professionally unused certifications will not be considered.

Responsibilities:

• Provide senior-level technical leadership and independent operational support across M365, Azure, and the full Microsoft Security stack.
• Design, implement, operate, and optimize Microsoft cloud services for high availability, scalability, and performance.
• Implement and maintain cloud security architectures aligned with NIST SP 800-53, NIST SP 800-207 (Zero Trust), and FedRAMP Moderate.
• Fully implement and manage hybrid Active Directory / M365 / Entra ID using the Microsoft tiered security framework.
• Create and manage Windows, macOS, and Apple iOS devices in Microsoft Intune, including compliance policies and configuration delivery across 700+ endpoints.
• Deliver OS images via Windows Autopilot; manage on-demand software delivery through Intune.
• Lock down remote PowerShell in Entra / Azure across all APIs, including headless Exchange Online mailbox provisioning, SharePoint custom user profile imports, and Microsoft Graph access controls.
• Implement advanced IAM: Entra ID, Conditional Access, Privileged Access Management (PAM), least-privilege enforcement, MFA provider transitions, third-party MFA as Entra provider, and Smart Card / FIDO2 authentication across Windows and macOS.
• Manage Exchange Online, Microsoft Teams, SharePoint Online, and the full M365 workload suite.
• Support Azure infrastructure: cloud networking, workload configuration, troubleshooting, and hybrid integration.
• Configure and manage Microsoft Defender, Microsoft Sentinel, and Microsoft Purview for threat protection, data governance, and IR readiness.
• Manage Sentinel data sources with health reporting and alerting on ingest log data quality.
• Build automated Power BI reporting covering system health, compliance posture, current and forecasted spend, and utilization across all CBO Microsoft cloud infrastructure.
• Configure Azure budget alerts providing 90+ day lead time for potential overage decisions.
• Develop and maintain IR and disaster response playbooks integrated with CBO's existing IR/COOP documentation.
• Produce and maintain technical documentation, training materials, and standard operating procedures.
• Support audits, security assessments, and compliance reviews; act as senior technical advisor to CBO engineering teams.

Required Certifications:

• Microsoft 365 Certified: Administrator Expert
• Microsoft Certified: Cybersecurity Architect Expert
• Microsoft Certified: Azure Solutions Architect Expert
• Microsoft 365 Certified: Endpoint Administrator Associate
• Microsoft Certified: Identity and Access Administrator Associate
• Microsoft Certified: Windows Server Hybrid Administrator Associate
• Microsoft 365 Certified: Teams Administrator Associate
• Microsoft Certified: Information Security Administrator Associate

Required Qualifications:

• 5+ years of hands-on experience with enterprise Microsoft cloud platforms (M365, Azure, Entra ID), with documented tenure of maintained certifications.
• Demonstrated expertise in hybrid AD / Entra ID identity, Microsoft Intune endpoint management, and the Microsoft Security stack (Defender, Sentinel, Purview).
• Experience managing environments of 700+ endpoints with Autopilot and Intune at scale.
• Deep familiarity with NIST SP 800-53, NIST SP 800-207 (Zero Trust), and FedRAMP Moderate compliance requirements.
• Proven ability to operate with minimal supervision and exercise independent technical judgment.
• Ability to obtain and maintain a Public Trust Tier 2 clearance.
• U.S. citizenship or permanent resident status required for clearance eligibility.

All qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, age, marital status, pregnancy, genetic information, or other legally protected status.