Senior Cloud Engineer

This position description does not represent a current opening but may be used to identify candidates with skills and experience to fill a position within Technica Corporation once the contract is awarded. The position is for a Contractor role to support an approximate 3-4 month project. Candidates who express an interest may be considered for future positions at Technica Corporation. If a position becomes available that aligns with your qualifications, our recruitment team will contact you.

Technica is seeking a Senior Cloud Engineer to support the design, implementation, integration, hardening, documentation, and sustainment of Microsoft cloud, endpoint, security, collaboration, and compliance capabilities. The engineer will serve as a hands-on technical resource supporting Microsoft 365 Commercial, Microsoft GCC High, Microsoft Entra ID, Intune, Purview, Defender, Sentinel, SharePoint Online, Teams, Azure-hosted infrastructure, VDI integration, endpoint compliance, data labeling, DLP, secure collaboration, and CUI/manufacturing data protection.

The Senior Cloud Engineer will work as part of an integrated implementation team responsible for establishing secure-by-default Microsoft cloud services, operational GCC High capabilities, endpoint and device compliance, SIEM telemetry integration, secure remote access support, and protected collaboration environments for commercial, CUI, and restricted manufacturing/vault workflows. The role requires strong Microsoft cloud engineering experience, familiarity with regulated environments, and the ability to translate security and compliance requirements into practical, maintainable technical configurations.

The successful candidate will analyze applications and make recommendations across multiple areas to determine which platforms can be moved, migrated, or deployed into a cloud environment.

Typical responsibilities may include:

• Design, configure, and support Microsoft 365 Commercial and Microsoft GCC High capabilities, including tenant configuration, administrative role management, audit logging, security baseline implementation, and operational readiness.
• Support GCC High operational setup, including SharePoint Online, Teams, OneDrive, Exchange, Microsoft Purview, Intune, Defender, and related Microsoft security and compliance services.
• Implement SharePoint and Teams segmentation for commercial, CUI, vault, collaboration, partner, and project-specific workspaces.
• Design and implement Microsoft Purview sensitivity labels, CUI labeling, data-handling rules, DLP policies, information-protection controls, audit-readiness, and eDiscovery support configurations.
• Work with automating build pipelines, migrations, security, and compliance in the cloud, automation using Azure, and the ability to script or program. 
• Support DLP gateway or equivalent controls for GCC High SharePoint, OneDrive, Teams, email, and related data flows.
• Implement Intune device enrollment, compliance policies, configuration profiles, device restrictions, patch rings, endpoint baselines, BYOD restrictions, and device reporting.
• Support endpoint hardening baselines for standard users, administrators, engineering users, CUI users, and manufacturing-related endpoints.
• Coordinate with identity engineering teams to support Conditional Access, MFA enforcement, device compliance signals, role-based access, administrator protection, and secure access policies.
• Support VDI design and implementation activities for commercial Microsoft 365 remote administration, CUI access, restricted manufacturing collaboration, and secure customer-site workflows.
• Coordinate with network security teams to support Azure-hosted infrastructure, secure remote access, VPN dependencies, Palo Alto firewall logging, network segmentation, and GCC High-aligned connectivity.
• Integrate Microsoft cloud, endpoint, identity, DLP, and network telemetry with Microsoft Sentinel or other approved SIEM workflows.
• Configure and validate Microsoft Sentinel connectors, diagnostic settings, data ingestion, log source health, analytics rules, workbooks, dashboards, and alerting use cases in coordination with SOC/SIEM engineers.
• Support the design and implementation of secure manufacturing and IP protection workflows, including information vaults, restricted collaboration spaces, protected recipe workflows, controlled technical data repositories, and external sharing restrictions.
• Implement access and data protection controls to support commercial, CUI, export-controlled, ITAR-sensitive, restricted-manufacturing, and high-value engineering data workflows.
• Produce and maintain implementation documentation, configuration baselines, diagrams, policy sets, runbooks, test results, evidence artifacts, and knowledge transfer materials.
• Support CMMC/NIST SP 800-171 readiness by producing control evidence, configuration exports, screenshots, test results, policy documentation, and POA&M-ready remediation inputs.
• Provide strategies for failure/recovery, cost optimization, and benefit analyses of cloud, cloud agnostic, and on-site premise services
• Perform as the highest-level technical expert, addressing problems of systems integration, compatibility, and multiple platforms

The position will be based in Sterling, VA, or at other select locations as required by the contract. This job may support a hybrid work schedule. The final approved work schedule arrangement will be coordinated with the hiring manager. This position may require 10%-20% travel.

• Bachelor’s degree in technical or engineering discipline, or the equivalent combination of education and experience
• 10 years of related experience with Microsoft cloud engineering, or a combination of experience and certifications that demonstrate the ability to perform at this level
• Considered an emerging authority who applies extensive technical expertise.
• Develops technical solutions to complex problems.
• Proven domain and expert technical knowledge
• Prior experience initiating, supervising, and/or developing requirements from a project’s inception to conclusion for complex programs
• Experience providing strategic advice and technical guidance to program and project staff
• Demonstrated experience with detailed analysis, evaluation, and providing recommendations for improvements, optimization development, and/or maintenance efforts

• Certification in Azure cloud engineering.

About Technica: 

At Technica Corporation, our goal is to provide exceptional professional services and innovative technology solutions that meet or exceed our customer’s expectations. We specialize in a wide range of advanced information technology solutions from Systems Engineering to Cyber Security, and from Software Development to Product Solutions. From our locations across the DC Metro area, Hampton, Virginia, and Huntsville, Alabama, we provide technological subject matter expertise, program management and business process knowledge as a trusted advisor in support of our Department of Defense and other Federal Agency customers.

EQUAL EMPLOYMENT OPPORTUNITY

It is Technica's policy to affirmatively support Equal Employment Opportunity (EEO) for all qualified individuals without regard to color, gender, religion, creed, national origin, age, race, disability, gender identity, genetic information, sexual orientation, marital status, veteran status or any other characteristic protected by law. This policy covers all aspects of the employment relationship including recruiting, hiring, compensation, assignment, promotion, transfer, training, working conditions, employment longevity, retirement, employee benefits and termination.

Technica's EEO philosophy promotes equal employment opportunity throughout the organization. Any form of unlawful employee harassment based on the above mentioned characteristics is prohibited. Equal Opportunity Employer Minorities/Women/Vets/Disabled/Gender Identity/Sexual Orientation.