Principal Architect

Lead and deliver complex security engagements centered on Azure Security, Identity & Access Management (IAM), and Microsoft Purview / AI Governance. Serve as a principal-level architect, thought leader, and trusted advisor who shapes secure cloud, data, and AI governance strategies for enterprise clients while remaining deeply engaged in delivery. This role is primarily delivery-focused, with approximately 25-30% dedicated to sales support, solution development, and strategic client pursuits. Occasional travel to client sites may be required.

Responsibilities

• Principal Technical Leadership: Provide senior technical leadership across multiple strategic client engagements. Lead executive and architectural design sessions, define target-state security architectures, and guide delivery teams through implementation with a focus on quality and scalability.
• Trusted Advisor & Thought Leadership: Act as a trusted advisor to client stakeholders, including security, infrastructure, data, and executive leaders. Shape security roadmaps and advise on operating models and governance.
• Delivery Oversight & Execution: Remain hands-on in delivery while overseeing complex programs from strategy through implementation. Partner with delivery leadership to align milestones, manage technical risk, and ensure successful outcomes.
• Azure Security & IAM Architecture: Design and lead implementation of enterprise security architectures across Azure and hybrid environments, including Microsoft Entra ID, Conditional Access, Identity Protection, PIM, and Zero Trust controls.
• Purview & AI Governance Leadership: Lead engagements focused on Microsoft Purview, information protection, data security posture management, and governance for Copilot, AI applications, and AI agents.
• Sales Support & Solution Development: Contribute to sales enablement and solution development activities. Partner with account teams to shape opportunities, lead discovery conversations, and support estimates and statements of work.
• Practice Development & Mentorship: Help scale the security practice through reusable assets, reference architectures, and delivery standards. Mentor architects and engineers on emerging Microsoft security capabilities.

Required Qualifications

• 12+ years in security, infrastructure, or cloud consulting, including 7+ years focused on Azure security, IAM, and enterprise governance.
• Deep hands-on and architectural expertise across Microsoft Entra ID, Conditional Access, MFA, Identity Protection, PIM, access reviews, Azure Policy, Defender, and Sentinel.
• Strong experience with Microsoft Purview capabilities including data classification, sensitivity labeling, DLP, compliance controls, and AI/data security governance.
• Demonstrated ability to support pre-sales and solution development, including leading workshops, defining scope, and building solution narratives.
• Strong consulting and delivery leadership skills, including risk management, technical oversight, and stakeholder communication.
• Excellent written, verbal, and presentation skills with the ability to engage technical teams and executive audiences.
• Strongly preferred certifications: SC-100 (Cybersecurity Architect Expert), AZ-500 (Azure Security Engineer), and SC-300 (Identity and Access Administrator).

Preferred Qualifications

• Industry certifications such as CISSP, CCSP, CISM, or GIAC.
• Broad understanding of Azure platform architecture, security operations, infrastructure-as-code, and cloud governance domains.
• Experience advising senior client leaders on security strategy, Zero Trust transformation, and responsible AI adoption.

Benefits

• Flexible work location with a virtual-first approach.
• 401(k) with match up to 50% of your 6% contributions.
• Generous PTO (minimum 15 days) plus 9 paid company holidays and 2 floating personal days.
• Multiple medical, vision, and dental plan options.
• 100% employer-paid life and disability insurance.
• Paid leave for birth parents and non-birth parents.
• Healthcare FSA, HSA, and Dependent Care FSA options.
• Monthly tech and home office allowance.
• Utilization and/or discretionary bonus eligibility.
• Employee Assistance Program.