At Small Medium Enterprises and Channel (SME&C), we are leading a high-growth, AI-powered global sales team—one that is deeply connected to our partners and driven by customer success. By uniting our Small Medium Business, Corporate, Strategy, and Partner teams, we are unlocking the largest customer opportunity, backed by the industry’s most significant investments. Leveraging the power of AI and our extensive partner ecosystem, we are redefining how businesses of all sizes adopt technology to drive growth and innovation. SME&C is more than a sales organization—it’s a culture of innovation, opportunity, and inclusivity. Here, you’ll be part of a diverse, high-performing, and customer-obsessed team where collaboration, connection, and continuous learning fuel everything we do. If you thrive in a fast-paced, digital-first environment and are eager to make a meaningful impact, explore how SME&C can be the next step in your career. Together, we are shaping the future of business.  

We are looking for a Cloud Solution Architect (CSA), specializing in Security & AI who is passionate about driving our customers’ security transformation on the Microsoft Azure and Microsoft 365 Platforms. This is a customer-facing role, owning the technical relationship between the customer and Microsoft, helping customers to leverage their Microsoft investments through architecture, implementation, and operational health engagements.

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.

• You will drive positive Customer Satisfaction & become a trusted advisor and be the Voice of Customer to share insights and best practices, connect with Global Security teams at Microsoft, Engineering and Product teams to remove blockers and influence the solution roadmap.
• You will land an end-to-end value proposition for Security (i.e., Zero Trust) which spans the breadth of Microsoft Security offerings and with focus on Threat Protection, ID + Access Management and Cloud Security as you seek to understand customer requirements and map the adoption and optimization of Microsoft technology solutions accordingly.
• You will position and deliver solutions that drive Security product usage as well as develop opportunities to drive Customer Success business results & help Customers get value from their Microsoft investments in alignment with the Customer Success Account Manager or other Account Team members.
• You will identify resolutions to Customer blockers by leveraging SA subject matter expertise. Deliver according to Microsoft best practices & using repeatable IP and accelerate Business Value of overall Security adoption by improving security posture and ensuring that the solution exhibits “Secure by Design” framework, such as high-performance levels, security, scalability, maintainability, appropriate reusability, and reliability upon deployment.
• You will align individual skilling to team/area demands & Customer Success goals​ and accelerate customer outcomes - Share expertise, contribute to IP creation & re-use to accelerate customer outcomes.
• You will run Architectural Design Sessions to build a plan for implementing the solution – governing design in line with customer business goals and their technical environment. Outcome is consensus on solution design and next steps toward production.
• You will collaborate and orchestrate with others in developing complex end-to-end Enterprise solutions with the Microsoft Security platform and modify and deliver existing intellectual property (IP) or, where applicable, create new content.

Required Qualifications (RQs)

• Bachelor's Degree in Computer Science, Information Technology, Engineering, Business, or related field AND 4+ years experience in cloud/infrastructure technologies, information technology (IT) consulting/support, systems administration, network operations, software development/support, technology solutions, practice development, architecture, and/or consulting
  • OR equivalent experience

Preferred Qualifications (PQs)

• Bachelor's Degree in Computer Science, Information Technology, Engineering, Business, or related field AND 8+ years experience in cloud/infrastructure technologies, information technology (IT) consulting/support, systems administration, network operations, software development/support, technology solutions, practice development, architecture, and/or consulting
  • OR Master's Degree in Computer Science, Information Technology, Engineering, Business, or related field AND 6+ years experience in cloud/infrastructure technologies, technology solutions, practice development, architecture, and/or consulting
  • OR equivalent experience
• 4+ years experience working in a customer-facing role (e.g., internal and/or external).
• 4+ years experience working on technical projects.
• Technical Certification in Cloud (e.g., Azure, Amazon Web Services, Google, security certifications)

Azure and Cloud Security Engineering
 Infrastructure, Databases, Networking, Virtual Machines Security
Secrets and Keys security practices
Azure Identity (service principals - managed identities)
Troubleshooting of data logging and audit, security monitoring
Azure Governance and Compliance (Azure policies)

Conditional Access

identity governance and lifecycle
Microsoft/Linux Client/Server Operating Systems Security, including related services (eg Certificate Authority, authentication/authorization mechanisms, encryption, health attestation)
Microsoft Security recommendation experience (eg Securing Privileged Access, Credential Theft Mitigations)
Security Threat Landscape experience including advanced attack vectors and tools (eg Pass the Hash, Golden Ticket, ransomware)

Infrastructure Security experience with competitive cloud security technologies, cloud security platforms, or any of the following:
Active Directory (Kerberos, NTLM, LDAP)
Azure Active Directory, Entra ID (including OpenIDConnect, Oauth2, Saml and WS-Federation)
Cloud workload Threat protection
Cloud Security Posture Management
WAF (Web Application Firewall)
ZTNA (Zero trust network access, Security service edge, SASE)
Stateful firewall. (NG Firewall)
Data encryption and protection key services.
SIEM, and Cloud Security Analytics, clear understanding of Security Operation Center needs
Security Orchestration, Automation, and Response (SOAR)
Identity and Access Management
Good understanding of common network protocols (HTTP-S/TLS/DHCP/DNS)

Microsoft Defender XDR

Microsoft Defender for Identity

Microsoft Defender for Endpoint
Microsoft Defender for Cloud

Microsoft Defender vulnerability management
Microsoft Sentinel
Microsoft Defender for Office 365
Microsoft Defender for Cloud Apps
Microsoft Purview: Data loss prevention (DLP), Information Protection, Insider Risk Management, Privileged Access Management, Data Security Posture Management (DSPM), Compliance: Records Management, Audit / eDiscovery, Data Life Cycle Management
Advanced Hunting
Simulation Training
Threat Analytics
Investigations

Modern Management - Mobility and Security Solutions in any of the following:
Microsoft Intune; Autopilot, Desktop Analytics

Additional information:

Italian, Spanish, French or Arabic fluency, or proficiency in another widely spoken language is highly advantageous

This position will be open for a minimum of 5 days, with applications accepted on an ongoing basis until the position is filled.

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance with religious accommodations and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations.