Staff M365 Engineer

Job Description:

The Staff M365 Engineer is a senior technical leader responsible for the architecture, engineering, security, and reliability of the Microsoft 365 ecosystem across the enterprise. Serving as the technical authority for M365 platforms—including Exchange Online, SharePoint Online, OneDrive, Teams, Power Platform, and Copilot—this role ensures the environment is secure, scalable, resilient, and aligned with business productivity outcomes. This position blends deep, hands-on expertise, architectural leadership, and cross-functional influence to drive modern workplace enablement while maintaining strong governance, security, and compliance.

Key Responsibilities

• Microsoft 365 Platform Architecture & Engineering: Serve as enterprise architect and escalation point for Microsoft 365 services. Design, implement, and evolve M365 architecture including Exchange Online, Microsoft Teams (voice, meetings, collaboration), SharePoint Online & OneDrive, Power Platform (Power Automate, Power Apps), and M365 Copilot. Define platform patterns, standards, and configurations for performance, security, and scalability.
• Security, Compliance & Governance: Collaborate with Security and Compliance teams to ensure Microsoft 365 aligns with identity and conditional access policies, Data Loss Prevention (DLP), Information Protection, retention, eDiscovery, Microsoft Purview (sensitivity labels, retention policies), and Microsoft Defender for Office 365. Implement and maintain governance for external sharing and guest access, and privileged access (PIM/RBAC). Support audits and regulatory requirements.
• Plan, implement and support the migration from Zoom to Teams.
• Identity, Access & Integration: Design secure integrations between M365 and Entra ID/Azure AD, IAM solutions (SSO, MFA, Conditional Access), and third-party SaaS and enterprise systems. Define identity and access models for users, service accounts, and automation. Deliver seamless and secure user experiences across devices and locations.
• Automation, Reliability & Operations: Drive platform reliability and operational excellence through monitoring, logging, alerting, incident response, and root cause analysis. Automate provisioning, configuration, and lifecycle management using PowerShell, Power Platform, and Infrastructure-as-Code patterns. Advance SRE and ITSM practices. Manage Microsoft 365 service health, own change and release practices, and maintain platform documentation and runbooks.
• Copilot & Modern Workplace Enablement: Lead secure enablement of M365 Copilot and collaboration and productivity experiences. Coordinate with Product, L&D, and business teams to deliver adoption strategies and guardrails. Define extensibility patterns for Copilot plugins, integrations, and prompts.
• Leadership & Influence: Act as technical mentor to engineers and administrators. Provide architectural guidance in design reviews and change approvals. Influence roadmap decisions with vendors and internal stakeholders. Translate technical decisions into clear business outcomes.

Minimum Qualifications

• 10+ years of experience in enterprise collaboration or workplace engineering
• 5+ years of deep, hands-on Microsoft 365 experience
• Expert-level knowledge of Exchange Online, SharePoint Online/OneDrive, and Microsoft Teams (including Teams Phone/voice; Direct Routing preferred)
• Strong expertise in Microsoft Entra ID (Azure AD), Identity and access management, PowerShell automation, and Microsoft Graph API and automation tooling
• Proven experience supporting large, regulated enterprise environments

Required Technical Skills & Knowledge

• Core Workloads: Exchange Online, Teams (including Teams Phone), SharePoint Online/OneDrive
• Power Platform: Power Automate/Power Apps, DLP, environment governance
• Copilot: Microsoft 365 Copilot readiness, governance, adoption, extensibility
• Migrations: Tenant-to-tenant consolidation (identity, mail, Teams, SharePoint/OneDrive)
• Security & Compliance: Purview (labels/retention/eDiscovery), Defender for Office 365
• Identity: Entra ID/Azure AD (Conditional Access, MFA, PIM, RBAC)
• Automation & Operations: PowerShell, Microsoft Graph, monitoring/incident/change management
• Endpoint: Intune/MDM/MAM concepts and device compliance

Preferred Qualifications

• Experience enabling and governing M365 Copilot and Power Platform at scale
• Familiarity with Microsoft Intune/Endpoint management and device compliance concepts
• Background in financial services, insurance, healthcare, or similarly regulated industries
• Familiarity with Zero Trust and modern workplace security patterns
• Microsoft Certifications (not required): MS-102, SC-300, or equivalent
• Experience with tenant-to-tenant consolidation, or large-scale migrations (email, Teams, SharePoint/OneDrive)

Core Competencies

• Customer Service: Exceptional attitude and passion for providing outstanding service to internal customers
• Attention to Detail: Thoroughness in accomplishing tasks; monitors and checks work; plans and organizes time and resources efficiently
• Analytical Skills: Collects and researches data; designs workflows and procedures; identifies data relationships and dependencies
• Communication: Strong listening and comprehension; expresses ideas clearly in verbal and written form; keeps others adequately informed
• Problem Solving: Solves issues efficiently and quickly; evaluates options and escalates appropriately
• Relationship Management: Manages interactions to service and support the organization; establishes credibility with all interactions
• Teamwork: Contributes to positive team spirit; exhibits objectivity and openness to others' views

Supervisory Responsibilities: Yes

Base Salary Range - $145,000-$165,000

For over 175 years, Penn Mutual has empowered individuals, families and businesses on the journey to achieve their financial goals. Through our partnership with Financial Professionals across the U.S., we help instill the confidence and reliability that comes from a stronger financial future. Penn Mutual and its affiliates offer a comprehensive suite of competitive products and services to meet the unique needs of Financial Professionals and their clients, including life insurance, annuities, wealth management and institutional asset management. To learn more, including current financial strength ratings, visit www.pennmutual.com.

Penn Mutual is committed to Equal Employment Opportunity (EEO). We provide employment and advancement opportunities to all qualified applicants and associates, according to applicable laws. This is reflected in our practices for hiring, placement, promotion, transfer, demotion, layoff, termination, recruitment, compensation, selection or training, and all other terms and conditions of employment. All employment-related decisions and practices are free from unlawful discrimination. This includes: race, creed, color, national origin, ancestry, citizenship age, gender (including pregnancy), sexual orientation, gender identity or expression, domestic partnership or civil union status, marital status, genetic information, disability, religious observance or practice, liability, veteran status or any other classification protected under applicable law.