If you live and breathe cybersecurity in the Microsoft cloud, Agile IT has a role for you. We are hiring a Microsoft Cloud Solution Architect – Cybersecurity to lead clients through their journey to CMMC Level 2 compliance and other stringent security frameworks. In this pivotal role, you will design and implement robust security architectures leveraging Azure and Microsoft 365 technologies to protect organizations that operate in high-stakes environments (think defense contractors, government agencies, and regulated enterprises). You’ll be the go-to expert on how to secure cloud workloads in Azure Government and GCC High environments, guiding customers to meet and exceed required controls. This position is central to Agile IT’s mission of being the premier Microsoft cloud security and compliance partner. It’s a chance to blend deep technical know-how with a passion for protecting organizations – all while collaborating with a team that values innovation, diligence, and a dash of fun in the process.Key ResponsibilitiesCMMC Compliance Leadership: Lead CMMC Level 2 readiness engagements for our clients from start to finish. Conduct in-depth gap analyses against CMMC (and related frameworks like NIST 800-171) to identify gaps in clients’ people, processes, and technology. Develop remediation roadmaps that will bring organizations up to compliance, and clearly communicate the plan to executive stakeholders.Security Architecture & Implementation: Architect end-to-end security solutions in the Microsoft Cloud to address identified gaps and strengthen clients’ security posture. This includes designing secure configurations for Azure services, Microsoft 365 (Office 365 GCC High), Azure AD/Entra ID, Microsoft Defender suite, Sentinel SIEM, Intune, and other tools to align with CMMC requirements. When necessary, you will also get hands-on to implement or guide the implementation of these solutions alongside our engineering team.Documentation & Deliverables: Author and review critical security documentation as part of compliance engagements. This includes crafting System Security Plans (SSPs), Plans of Action & Milestones (POA&Ms), network diagrams, control implementation statements, and other evidence required for CMMC certification. Ensure all deliverables are high-quality, accurate, and tailored to each client’s environment.Client Advisory & Training: Serve as a trusted cybersecurity advisor to our clients. Provide coaching and training to client stakeholders on security best practices and how to prepare for formal CMMC assessments. This might involve running workshops on security processes, guiding them through technologies they need to adopt, or advising leadership on risk management decisions. Your goal is to empower clients to sustain their compliance and security postures long-term.Remediation Oversight: Oversee the remediation phase of compliance projects by collaborating with Agile IT engineers and the client’s IT team. Track progress on technical remediation tasks (e.g., deploying MFA, tightening access controls, implementing audit log monitoring) and ensure they are completed on schedule. Perform validation testing or reviews to confirm that each gap has been properly closed.Service Development & Thought Leadership: Contribute to the continual refinement of Agile IT’s cybersecurity and compliance service offerings. Define reusable frameworks or recurring services that help clients maintain compliance (for example, ongoing log monitoring or policy updates as a service). Stay up-to-date with Microsoft cloud security innovations and CMMC program updates, and share knowledge through internal playbooks or external content (blog posts, webinars, speaking events). Your thought leadership helps position Agile IT as an industry leader in cloud security compliance.
