Senior Solutions Architect

Please login or register as jobseeker to apply for this job.

TYPE OF WORK

Full Time

WAGE / SALARY

2000/month

HOURS PER WEEK

TBD

DATE UPDATED

May 6, 2026

JOB OVERVIEW

Senior Solutions Architect
Remote · Full-time

Please read full description and list all requirements and experience below and explain if you have the experience or no and if you do please explain in response to this job post along with your resume.

About us
We’re a managed services provider (MSP), managed security services provider (MSSP), and
i ---------- response practice. We serve clients ranging from 10 to 3,000 users — fully
managed services for smaller firms, and security consulting, complex migrations, and
projects for the larger ones. We also offer co-managed engagements for in-house teams
that want to extend their bench.
Many of our clients operate in regulated industries — healthcare, legal, and finance — so
security and compliance shape most of what we do.
We’re growing, and we’re hiring this role to scale up the architecture capacity on our
engineering team.

About the role
You’ll join a small group of experienced engineers and serve as one of the senior architects
on the team. The work is technical, varied, and substantive: assessing new client
environments, designing upgrade paths and migrations, hardening identity and
infrastructure, supporting our MSSP and IR teams on tough problems, and working through
real security and compliance requirements with clients who have them.
This isn’t a deployment role — we have skilled engineers who handle the day-to-day RMM,
SIEM, and EDR work. You’ll be the one architecting solutions, making the technical calls, and
going deep on troubleshooting and tactical escalations when something needs more than a
runbook. Less clicking, more thinking.
You’ll report directly to the CEO and work as a peer alongside our existing senior architect.

What the work looks like
Performing technical reviews and gap assessments of new client environments —
networking, identity, M365, Azure, AWS, endpoints, security posture
Designing upgrade paths and remediation roadmaps from those assessments,

prioritized by risk and business impact
Planning and executing migrations end-to-end — discovery, design, coordination across
teams, security considerations, cutover, and stabilization
Architecting AWS and Azure environments — multi-account designs, networking,
identity, security baselines
Hardening Active Directory domains — tiered admin models, privileged access
management, GPO and policy review, legacy protocol remediation, attack-path
reduction
Hardening Microsoft 365 environments — Entra ID conditional access, identity
protection, Exchange Online security, Defender suite, Purview, Intune baselines
Working through security and compliance requirements with clients — NIST CSF, NIST
800-53, NIST ---------- , CMMC, HIPAA, SOC 2, ISO 27001, PCI DSS, CIS Controls —
translating frameworks into concrete technical controls
Acting as a senior technical escalation point for our MSP, MSSP, and IR teams on tactical
issues
Supporting i ---------- response engagements with architecture, identity, and forensics
depth
Bringing an engineering mindset to the work — automating, scripting, and instrumenting
where it adds value

What we expect you to bring
7+ years in senior IT architecture, infrastructure engineering, cloud, or DevOps/SRE
roles, with meaningful time in MSP, MSSP, or IR contexts
Deep, protocol-level understanding of networking — not just configuration, but how the
protocols actually work and why
Hands-on architecture experience with both AWS and Azure
Deep Active Directory experience — you’ve hardened domains, untangled legacy
permissions, designed tiered admin models, and dealt with the consequences of letting
any of those go
Deep Microsoft 365 expertise — Entra ID, Exchange Online, SharePoint, Defender,
Purview, Intune — with real hardening experience for clients who have to pass audits
Strong security and compliance fluency — you’ve worked through NIST CSF, NIST

800-series, CMMC, HIPAA, SOC 2, ISO 27001, PCI DSS, or CIS Controls and translated
them into actual technical implementations
Working knowledge of SIEM platforms (Sentinel, Splunk, Elastic, or similar) — enough to
architect with them and troubleshoot at depth
Working knowledge of EDR/AV (SentinelOne, CrowdStrike, Defender for Endpoint,
Huntress, or similar)
Working knowledge of RMM and PSA tools (ConnectWise, NinjaRMM, Datto, Kaseya,
HaloPSA, or similar)
Real i ---------- response experience — you’ve worked actual events, not just tabletops
An engineering background that includes scripting and automation (Python, PowerShell,
Bash, Terraform, etc.)
Excellent written and spoken English

Nice to have
Operational experience with AI/LLM tooling
AWS or Azure certifications (Solutions Architect Professional, Security Specialty)
Security certifications (CISSP, OSCP, GCIH, GCIA, GCFA)
Co-managed IT experience

Logistics
100% remote, anywhere in the world with reliable internet
Full-time
Flexible hours; some availability expected during critical i ----------
Reports to the CEO

VIEW OTHER JOB POSTS FROM:
SHARE THIS POST
facebook linkedin