M365 Team for Secure Collaboration Platform Delivery
TLS Consulting – Team Formation for Secure Collaboration Platform Delivery
TLS Consulting is assembling a specialised technical team to deliver on our Client's strategic collaboration platform requirements.
The project will develop secure, scalable, and integrated collaboration platforms that enable seamless engagement across the Client, its partners, and industry.
Delivered in phases, beginning with a Minimum Viable Product (MVP), these platforms will operate up to the PROTECTED classification level and will integrate securely within the Client's multi-cloud environment.
Built on Microsoft 365 and Azure technologies, the solution will embed security and compliance by design, leveraging Microsoft Purview, Entra ID, Defender Suite, and Intune to meet Cyber GRC and ISM standards.
A modular, scalable architecture will support ongoing operational sustainment, automation, and extensibility.
To achieve this, TLS Consulting is seeking highly capable professionals across the following roles:
1. M365 Lead Engineer
Summary: Lead the design and delivery of a secure M365 environment.
Oversee architecture, ensure compliance, and manage technical risk.
Core Services, Jobs, and Tasks:
Lead the overall architecture and design of the secure M365 environment.
Oversee technical delivery and ensure alignment with project milestones.
Engage with project managers, business stakeholders, and Cyber GRC teams.
Approve technical decisions and manage risk across all phases.
Provide technical governance and ensure compliance with Defence standards.
Coordinate cross-team activities and resolve escalated technical issues.
Represent engineering in executive and stakeholder forums.
Extended Technical Responsibilities:
License strategy and cost optimisation
Change & release management
Documentation standards
Governance, Lifecycle & Change
Resilience, Backup & Data Lifecycle
2. M365 Configuration Engineer
Summary: Lead configuration and deployment of core M365 services and integration with external partners.
Core Services, Jobs, and Tasks:
Lead the configuration and deployment of core M365 services (Teams, SharePoint, Exchange, OneDrive).
Develop and maintain configuration baselines and templates.
Integrate M365 with external partners and service providers.
Support troubleshooting and performance tuning.
Mentor junior engineers and provide technical guidance.
Document configuration and deployment processes.
Extended Technical Responsibilities:
Exchange Online and Teams governance
Copilot for M365 readiness
Automation, Scripting & IaC
Configuration as code
3. Azure Landing Zone & VDI Engineer
Summary: Design and implement Azure Landing Zones and Virtual Desktop Infrastructure (Windows 365, AVD).
Core Services, Jobs, and Tasks:
Design and implement Azure Landing Zones for secure, scalable cloud hosting.
Deploy and manage Virtual Desktop Infrastructure (Windows 365, Azure Virtual Desktop).
Integrate VDI with M365 and Defence identity/access management.
Ensure compliance with Defence multi-cloud and security strategies.
Automate provisioning and scaling of cloud resources.
Monitor VDI performance and user experience.
Extended Technical Responsibilities:
Private and secure access
Device onboarding and compliance
Patch and update management
Cross-platform security
BCDR posture
Retention vs backup
Key management
4. M365 Security Architecture Specialist
Summary: Implement and manage security controls across M365 using Purview, Entra ID, and the Defender Suite.
Core Services, Jobs, and Tasks:
Implement and manage security controls across M365 (Purview, Entra ID, Defender Suite).
Develop and enforce security policies, RBAC, and conditional access.
Conduct security assessments and risk analysis.
Monitor security events and respond to incidents.
Advise on secure onboarding and partner access.
Extended Technical Responsibilities:
Hybrid identity and lifecycle management
Conditional Access policies
Privileged Identity Management (PIM)
External identities and B2B collaboration
Sensitivity labels and DLP
Access reviews and guest lifecycle management
Data classification and sensitivity labels
Records management and eDiscovery
Policy governance
Security-by-default
Summary: Deliver and support standalone M365 environments and secure partner connectivity.
Core Services, Jobs, and Tasks:
Deploy and configure standalone M365 environments for specific use cases.
Enable secure connectivity for Defence partners and external users.
Support onboarding and enablement of new partner organisations.
Troubleshoot connectivity and access issues.
Maintain documentation for partner integration and support.
Extended Technical Responsibilities:
Connectivity patterns and performance
Secure access and proxy integration
Teams shared channels and guest access
SharePoint/OneDrive external sharing governance
6. M365 Generalist Solution Engineer
Summary: Support onboarding, configuration, documentation, and stakeholder engagement across M365 and Azure.
Core Services, Jobs, and Tasks:
Support technical onboarding of users and partners.
Assist with configuration, relationship setup, and documentation.
Provide technical support across M365 and Azure services.
Engage with stakeholders to gather requirements and feedback.
Maintain knowledge base and contribute to training materials.
Support operational sustainment and incident response.
Extended Technical Responsibilities:
PowerShell and Microsoft Graph
Unified audit logs and KQL
Power BI reporting
Stakeholder communication
Operational excellence
7. Cyber Security GRC Specialist
Summary: Deliver cyber risk management, assurance, and compliance for M365 environments.
Core Services, Jobs, and Tasks:
Develop and deliver Security Documentation Packs (E.g. Systems Security Plans, Security Risk Management Plans, Continuous Monitoring Plan and Incident Response Plans to support the achievement of Authority to Operate (ATO) in consultation with Defence Cyber and Information Assurance Branch (DCIAB).
Lead technical cyber risk assessments for M365 environments.
Identify, assess, and mitigate cyber security risks through threat risk assessments.
Oversee compliance and alignment with ISM, Essential 8 DSPF, PSPF, and ASD's Blueprint for Secure Cloud.
Liaise with Defence Cyber and Information Assurance Branch (DCIAB).
Provide expert advice on cyber security posture and continuous improvement.
Work as part of a high-performing team with a delivery mindset.
Desirable Experience and Qualifications:
Cybersecurity certifications and tertiary qualifications, such as CISSP, CCSP, CRISC, Security +.
SC-100, SC-300, SC-400, AZ-500, MS-102, MD-102.
Experience implementing and hardening Microsoft 365 environments.
#J-*****-Ljbffr