Senior Systems Administrator (Microsoft 365) to assist with Entra ID security hardening, practical Microsoft Purview controls, and SharePoint Online risk r

Our client is seeking a Senior Systems Administrator (Microsoft 365) to assist with Entra ID security hardening, practical Microsoft Purview controls, and SharePoint Online risk reduction

This is a Part-time role (10 hours/week). Candidates can be 100% remote in Canada

Must haves:

• 7+ years of hands-on experience as a Systems Administrator with a focus on M365 tenant optimization and security posture improvements at enterprise scale.
• Deep expertise in Microsoft Entra ID, including advanced Conditional Access, MFA strategies, identity governance, and security hardening.
• Strong practical experience designing and implementing Microsoft Purview features (sensitivity labels, retention policies, and information protection) in a pragmatic, business-aligned manner.
• Advanced knowledge of SharePoint Online administration, including governance, permission model remediation, and risk reduction.
• Demonstrated execution bias - a track record of personally configuring and implementing changes rather than only advising.
• Highly organized and conscientious approach, with excellent documentation and communication skills.

Nice-to-Haves

• Direct experience supporting SOC 2 or ISO 27001 compliance frameworks within a Microsoft 365 environment (highly valued given client requirements).
• Relevant certifications: MS-102, AZ-104, or SC-300.
• Familiarity with PowerShell for validation or targeted configuration tasks (automation is not a primary focus).

Key Responsibilities

• Execution-focused: Personally configure, implement, and remediate tenant settings in Microsoft Entra ID, Purview, and SharePoint Online - not just deliver high-level recommendations.
• Lead security hardening of the Microsoft 365 tenant, with primary ownership of Microsoft Entra ID (including Conditional Access policies, MFA enforcement, identity protection, and risk-based controls).
• Design and implement practical, risk-appropriate Microsoft Purview controls (sensitivity labels, retention, information protection) aligned to business usage, not heavy compliance audit regulation.
• Review and remediate SharePoint Online site architecture, document libraries, and permission models to reduce oversharing, simplify access, and lower overall risk.
• Identify and remediate security vulnerabilities across M365 services, enforce security policies, and proactively monitor alerts.
• Provide clear, prioritized recommendations while owning the hands-on implementation of improvements.
• Produce high-quality, practical documentation and knowledge transfer materials to enable smooth internal ownership after the contract ends.