Key skills
AzureMicrosoft 365Entra IDIntunePowerShellTroubleshootingScripting abilityNetworking fundamentalsCMMC knowledgeNIST 800-171 knowledgeClear communicationCommunication
About this role
Sentinel Blue is hiring a Cloud Engineer I for their Operations team, focusing on client environments built on Microsoft cloud services. The role involves implementing, maintaining, and improving cloud identity and endpoint management while ensuring compliance with operational and security standards.
Responsibilities:
- Handle Entra ID administration and cloud identity tasks, including tenant configuration and common identity integrations
- Assist with Conditional Access and other policy work within established patterns
- Administer Microsoft 365 services (Exchange, SharePoint, OneDrive, Teams) and tenant configuration tasks
- Configure Intune device management tasks tied to cloud service delivery (profiles, compliance, baseline enforcement)
- Contribute to Azure work under guidance, including VMs, storage, networking, and AVD within established designs
- Implement approved changes via Change Requests, including validation and clear documentation of outcomes
- Use existing RMM automation and tooling; write small task-level scripts when appropriate
- Execute patch management and lifecycle workflows within standards, including remediation work under guidance
- Maintain strong operational hygiene in tickets, notes, and documentation; create new KBs/runbooks/SOPs when gaps are found
- Participate in client calls as needed for troubleshooting, change discussions, and project work
Requirements:
- U.S. citizenship – by nature of our work with the defense industry, all employees must be eligible for a Secret clearance
- 2+ years of hands-on experience in IT operations, systems administration, or engineering work in cloud environments
- Working knowledge of Entra ID, Intune, and Azure in production environments
- Familiarity with Microsoft 365 administration and core tenant services
- Strong troubleshooting ability and comfort working within structured workflows
- Clear written and verbal communication
- Basic scripting ability (PowerShell preferred)
- CompTIA Security+ required within 6 months of hire if not already held
- Familiarity with Azure Government, Microsoft 365 GCC High, or other FedRAMP Moderate platforms
- Exposure to Microsoft 365 tenant migration work (tenant-to-tenant); AvePoint familiarity is a plus
- Solid grounding in networking fundamentals (DNS, DHCP, firewalls/routing, VPN)
- Experience in a managed services or multi-client environment
- Knowledge of CMMC, NIST 800-171, CIS Controls, or other similar frameworks
- Bachelor's or Master's degree in Cybersecurity, Information Systems, Computer Science, Business, or a related field