Microsoft 365 Delivery Consultant

Role Purpose

The M365 Delivery Consultant owns end-to-end technical delivery of Microsoft 365 solutions across identity, endpoint, security, and Modern Work workloads. This is a hands-on implementation role — you take full ownership from design through go-live, proactively resolve blockers, and communicate progress and risks clearly to stakeholders at every stage.

Key Responsibilities

1. Implementation & Deployment Ownership

• Take technical ownership from kickoff through go-live and hypercare.

• Execute configuration, testing, and validation personally on critical path steps.

• Follow LLD implementation sequences; flag deviations immediately and update documentation.

• Run structured UAT, capture results, and resolve failures before client sign-off.

• Validate rollback procedures in lower environments before go-live.

• Own post-go-live stabilisation: tuning, issue resolution, and handover readiness.

2. Problem-Solving & Technical Escalation

• Diagnose identity and endpoint issues: enrolment failures, Conditional Access conflicts, policy mismatches, token behaviour.

• Root-cause analysis before applying fixes — document what failed, why, and how to prevent recurrence.

• Escalate with a diagnosis and context on what has already been tried, not just a symptom.

• Anticipate failure modes during design and build mitigations in before implementation day.

• Flag when a solution design is not fit for a customer environment — propose alternatives, not just problems.

3. Stakeholder Communication

• Maintain a consistent communication rhythm: status updates, risk flags, and milestone confirmations without being prompted.

• Present technical trade-offs in plain language for non-technical stakeholders.

• Surface scope risks, timeline slippage, or constraints in writing before they become escalations.

• Run structured workshops with clear agendas, documented outcomes, and follow-up action logs.

• Produce written decision summaries at each major milestone.

4. Documentation & Deliverables

•HLD: Architecture, component interactions, integration dependencies, security posture, design rationale.

•LLD: Configuration specs, policy definitions, implementation sequences, environment parameters, rollback procedures.

•Runbooks: Operational procedures, escalation paths, day-2 support guidance.

•Handover Packs: Knowledge transfer checklists, admin onboarding guides, steady-state procedures.

• Keep documentation audit-ready; update to reflect what was deployed, not what was planned.

5. Core Technical Delivery — Microsoft Entra

• Design and implement Conditional Access, MFA, and passwordless authentication.

• Configure Named Locations, access controls, and Zero Trust-aligned session management.

• Deliver SSO via SAML/OIDC; validate authentication flows end-to-end before sign-off.

• Troubleshoot token, claim, and policy issues in production and test environments.

6. Core Technical Delivery — Microsoft Intune

• Deploy MDM/MAM policies, compliance baselines, app deployment configs, and device configuration profiles.

• Implement Endpoint Security policies and confirm device state post-enrolment before closing delivery.

• Onboard Windows and mobile endpoints; validate enrolment flows and remediate failures.

7. Core Technical Delivery — Microsoft Purview (Must-Have)

• Design and implement Sensitivity Labels and label policies across Exchange, SharePoint, OneDrive, and Teams.

• Deploy DLP policies: scoped per workload, tested in simulation mode before enforcement, tuned post-deployment.

• Configure Information Lifecycle Management: retention labels, policies, and disposition review workflows.

• Implement Insider Risk Management policies where applicable; scope to avoid over-reach.

• Conduct Purview readiness assessments and validate configurations in staging before go-live.

• Advise on multi-region data residency and regulatory context (PDPA, GDPR, MAS TRM) where applicable.

8. Supporting Workloads (Project-Dependent)

• M365 governance: Exchange Online, SharePoint, OneDrive, Teams hardening.

• Tenant-to-tenant migrations: Exchange, SharePoint/OneDrive, Teams, endpoint profiles.

• Microsoft Defender for Endpoint: onboarding, baseline hardening, alert tuning.

• Tenant security assessments: Secure Score, Conditional Access posture, endpoint health.

• Azure (project-dependent): RBAC, networking, logging/monitoring, identity integrations.

Requirements

Must-Have

• Microsoft Entra ID — Conditional Access, MFA, SSO/SAML/OIDC; hands-on config and troubleshooting.

• Microsoft Intune — MDM/MAM, compliance policies, device configuration baselines, enrolment flows.

• Microsoft Purview — Sensitivity Labels, DLP, ILM, Insider Risk; hands-on implementation and post-deployment tuning.

• End-to-end M365 project delivery in a consulting, SI, MSP, or enterprise IT environment.

• Customer-facing delivery: workshops, stakeholder management, technical presentations.

• HLD/LLD authoring and structured technical documentation.

• PowerShell scripting for deployment, validation, and troubleshooting.

Good-to-Have

• Certifications: SC-300, MD-102, MS-102, SC-400, SC-401 or equivalent.

• Microsoft Defender for Endpoint.

• Tenant-to-tenant migration tooling: BitTitan, Quest, ShareGate.

• Microsoft Azure: RBAC, networking, logging/monitoring integrations.

• Hybrid identity and migration readiness experience.

Behaviours We Hire For

Technical skill is necessary but not sufficient. We are looking for consultants who demonstrate:

•Ownership Mentality: Takes responsibility for outcomes, not just activities.

•Structured Problem-Solving: Diagnoses before acting; builds solutions that address root causes.

•Proactive Communication: Updates stakeholders unprompted; flags risks with mitigations.

•Intellectual Honesty: Says what needs to be said — to clients and internally.

•Delivery Focus: Finds ways forward rather than reasons to wait.

•Continuous Learning: Stays ahead of the platform; shares knowledge with the team.

Benefits

•Career Growth: Lead and grow in a fast-expanding Microsoft partner organisation across ASEAN.

•Global Exposure: Collaborate with leading international technology partners.

•Cutting-Edge Work: Deliver Modern Work, Security, and Compliance solutions for prominent enterprises.

•High-Performance Culture: A team that values collaboration, ownership, and excellence.

•Continuous Learning: Advanced training, certifications, and real-world challenges.