Windows Infrastructure Architect & Team Lead
LegalSight is seeking an experienced Windows Infrastructure Architect & Team Lead to design, implement, and manage our cloud-based Windows infrastructure supporting 300+ remote endpoints. This hands-on leadership role combines deep technical expertise with team management, overseeing a small infrastructure team while maintaining an active role in architecture and implementation.
Key Responsibilities:
-Cloud Infrastructure & Identity Management
- Architect and manage Azure AD/Entra ID infrastructure for identity and access management
- Design and implement endpoint management solutions using Microsoft Intune and Autopilot
- Oversee device lifecycle management including provisioning, deployment, and retirement
- Maintain and optimize Microsoft 365 environment (Exchange Online, Teams, OneDrive, SharePoint)
-Security & Compliance
- Implement and manage Microsoft Data Loss Prevention (DLP) policies
- Design and enforce security policies, conditional access, and compliance configurations
- Configure and manage Mobile Device Management (MDM) and security baselines
- Oversee endpoint security including BitLocker, Windows Defender, and threat protection
-SharePoint Architecture
- Design SharePoint Online architecture including information architecture, permissions, and governance
- Implement SharePoint security models and access controls
- Optimize SharePoint performance and user experience
-Team Leadership & Operations
- Lead and mentor a small infrastructure team
- Manage helpdesk ticket queue and escalations for the Windows support team
- Provide strategic guidance on infrastructure improvements and technology adoption
- Collaborate cross-functionally to align IT infrastructure with business needs
- Evaluate and integrate new technologies to increase awareness of security threats and mitigate those threats
-Additional Responsibilities
- Domain and DNS management
- Backup and disaster recovery planning
- Vendor management and technical evaluation
- Detailed documentation of systems, processes, and procedures
Required Qualifications:
- 7+ years of hands-on experience in Windows infrastructure and administration
- 3+ years of experience with Microsoft 365/Azure cloud environments
- 2+ years of team leadership or technical leadership experience
- Proven expertise with Microsoft Intune and Windows Autopilot
- Strong experience with Azure AD/Entra ID administration and identity management
- Deep knowledge of MDM, security policies, and endpoint management in remote environments
- Experience implementing Microsoft DLP and data protection strategies
- Demonstrated expertise in SharePoint Online architecture, security, and administration
- Experience supporting 300+ endpoints in a distributed/remote environment
- Detail-oriented outlook combined with persistence to ensure all tasks are completed for each project
- Bachelor's degree in Computer Science, Information Technology, or related field (or equivalent experience)
Preferred Qualifications:
- Microsoft certifications (Azure Administrator, Modern Desktop Administrator, Security Administrator)
- Experience with PowerShell scripting for automation
- Knowledge of Zero Trust security principles
- Experience with Salesforce administration
- Familiarity with backup solutions (CloudAlly or similar)
- Experience with WordPress/WPEngine
Work Environment:
- Remote-first organization supporting geographically distributed teams
- Hands-on role requiring both strategic thinking and tactical implementation
- Collaborative and cooperative environment with friendly and capable teammates and management with strong technical backgrounds
