Full Time
2000/month
TBD
May 6, 2026
Senior Solutions Architect
Remote · Full-time
Please read full description and list all requirements and experience below and explain if you have the experience or no and if you do please explain in response to this job post along with your resume.
About us
We’re a managed services provider (MSP), managed security services provider (MSSP), and
i
managed services for smaller firms, and security consulting, complex migrations, and
projects for the larger ones. We also offer co-managed engagements for in-house teams
that want to extend their bench.
Many of our clients operate in regulated industries — healthcare, legal, and finance — so
security and compliance shape most of what we do.
We’re growing, and we’re hiring this role to scale up the architecture capacity on our
engineering team.
About the role
You’ll join a small group of experienced engineers and serve as one of the senior architects
on the team. The work is technical, varied, and substantive: assessing new client
environments, designing upgrade paths and migrations, hardening identity and
infrastructure, supporting our MSSP and IR teams on tough problems, and working through
real security and compliance requirements with clients who have them.
This isn’t a deployment role — we have skilled engineers who handle the day-to-day RMM,
SIEM, and EDR work. You’ll be the one architecting solutions, making the technical calls, and
going deep on troubleshooting and tactical escalations when something needs more than a
runbook. Less clicking, more thinking.
You’ll report directly to the CEO and work as a peer alongside our existing senior architect.
What the work looks like
Performing technical reviews and gap assessments of new client environments —
networking, identity, M365, Azure, AWS, endpoints, security posture
Designing upgrade paths and remediation roadmaps from those assessments,
prioritized by risk and business impact
Planning and executing migrations end-to-end — discovery, design, coordination across
teams, security considerations, cutover, and stabilization
Architecting AWS and Azure environments — multi-account designs, networking,
identity, security baselines
Hardening Active Directory domains — tiered admin models, privileged access
management, GPO and policy review, legacy protocol remediation, attack-path
reduction
Hardening Microsoft 365 environments — Entra ID conditional access, identity
protection, Exchange Online security, Defender suite, Purview, Intune baselines
Working through security and compliance requirements with clients — NIST CSF, NIST
800-53, NIST
translating frameworks into concrete technical controls
Acting as a senior technical escalation point for our MSP, MSSP, and IR teams on tactical
issues
Supporting i
depth
Bringing an engineering mindset to the work — automating, scripting, and instrumenting
where it adds value
What we expect you to bring
7+ years in senior IT architecture, infrastructure engineering, cloud, or DevOps/SRE
roles, with meaningful time in MSP, MSSP, or IR contexts
Deep, protocol-level understanding of networking — not just configuration, but how the
protocols actually work and why
Hands-on architecture experience with both AWS and Azure
Deep Active Directory experience — you’ve hardened domains, untangled legacy
permissions, designed tiered admin models, and dealt with the consequences of letting
any of those go
Deep Microsoft 365 expertise — Entra ID, Exchange Online, SharePoint, Defender,
Purview, Intune — with real hardening experience for clients who have to pass audits
Strong security and compliance fluency — you’ve worked through NIST CSF, NIST
800-series, CMMC, HIPAA, SOC 2, ISO 27001, PCI DSS, or CIS Controls and translated
them into actual technical implementations
Working knowledge of SIEM platforms (Sentinel, Splunk, Elastic, or similar) — enough to
architect with them and troubleshoot at depth
Working knowledge of EDR/AV (SentinelOne, CrowdStrike, Defender for Endpoint,
Huntress, or similar)
Working knowledge of RMM and PSA tools (ConnectWise, NinjaRMM, Datto, Kaseya,
HaloPSA, or similar)
Real i
An engineering background that includes scripting and automation (Python, PowerShell,
Bash, Terraform, etc.)
Excellent written and spoken English
Nice to have
Operational experience with AI/LLM tooling
AWS or Azure certifications (Solutions Architect Professional, Security Specialty)
Security certifications (CISSP, OSCP, GCIH, GCIA, GCFA)
Co-managed IT experience
Logistics
100% remote, anywhere in the world with reliable internet
Full-time
Flexible hours; some availability expected during critical i
Reports to the CEO