IT Architect

About ANS 

At ANS, we’re not just a consulting engineering firm—we’re a team of trailblazers shaping the future of multi-disciplinary engineering. Recognized as one of the Best Places to Work and Top 10 Hottest Engineering Firms in the US by Zweig Reports and featured in Inc. 5000’s Top 250 for our staggering 1,748% growth, we’re proud of what we’ve built and where we’re headed. 

We thrive on innovation, embrace a “best idea wins” culture, and value humility, ownership, and execution. If you excel in fast-moving environments and believe in the power of precision, this is the place for you. 

About the Role

ANS is looking for an IT Architect!

We are seeking a hands-on IT Architect with 15+ years of progressive IT experience to design, build, and continuously improve technology solutions for a growing engineering organization. This role is a trusted partner to the business, translating operational needs into secure, reliable, and practical solutions across Microsoft 365 and other enterprise platforms while contributing directly through configuration, integration work, scripting/automation, and project delivery. The IT Architect works in concert with the organization to implement executive leadership’s technology vision, ensuring solutions are scalable, supportable, and aligned to business outcomes.

Key Responsibilities:
• Own pragmatic architecture standards/patterns and a roadmap that fits a lean, delivery-focused environment.

• Design and implement end-to-end solutions across collaboration/productivity, identity, endpoints, networking, line-of-business applications, and cloud services.

• Build integrations across platforms (SaaS, on-prem, cloud) using APIs, SSO, and practical integration patterns.

• Partner with business stakeholders to translate needs into requirements, options, and implementable plans; communicate trade-offs clearly.

• Work with the technology team to execute executive leadership’s AI and technology vision via usable platforms, guardrails, and enablement.

• Deliver automation using PowerShell, APIs, low-code tools, and AI assistants (e.g., Claude), with review/testing and appropriate data-handling controls.

• Own security-by-design fundamentals (identity/access, baselines, logging/monitoring, and data protection).

• Lead vendor evaluations and key projects through implementation and operational transition; maintain core documentation and governance (e.g., M365 collaboration governance).

Technical Skills

• Automation & scripting: PowerShell (modules, advanced functions, secure secrets handling, scheduling), operational runbooks, and AI-assisted development tools (e.g., Claude) to speed up drafting and refactoring paired with peer review and test validation

• API integration: Microsoft Graph and other REST APIs, OAuth/OIDC, webhooks, and service accounts/service principals

• Identity and access: authentication/authorization patterns, RBAC, ABAC, privileged access controls

• Security and compliance: identity-first controls, least privilege, logging/monitoring, data classification, BCP/DR and retention/DLP concepts

• Architecture modeling and documentation: solution diagrams, data flows, integration patterns, and decision logs

Business Partnership & Collaboration

• Strong business-partnering skills; able to engage stakeholders across engineering, project management, operations, and finance to define needs and deliver outcomes.

• Ability to facilitate decisions and manage trade-offs across cost, risk, schedule, and maintainability without over-engineering.

• Mentorship mindset: coach teammates and raise the baseline through standards, templates, and automation.

Microsoft 365 (Key Platforms)

• Entra ID (Azure AD): identity, SSO, Conditional Access, MFA, privileged access

• Microsoft Exchange Online (mail flow, hybrid concepts, retention, eDiscovery)

• Microsoft Teams (governance, voice/meetings, lifecycle, integrations)

• Microsoft SharePoint Online (information architecture, permissions, governance)

• Microsoft OneDrive for Business

• Microsoft Intune (endpoint management, compliance, configuration profiles, app deployment)

• Microsoft Purview (Information Protection/Sensitivity Labels, DLP, eDiscovery, retention)

• Microsoft Defender for Office 365

• Microsoft Defender for Endpoint

• Power Platform (Power Automate, Power Apps, Power BI) for automation and operational reporting

• Microsoft Graph and M365 admin tooling for configuration, reporting, and automation

Qualifications:
Required

• Excellent communication skills and comfort partnering with the business to define requirements, set expectations, and explain trade-offs in plain language.

• Strong automation experience using PowerShell (advanced scripting, modules, error handling, logging, secure credential handling) and working with Microsoft Graph and/or other REST APIs.

• Hands-on experience integrating systems across platforms using APIs (REST), identity/SSO (SAML/OIDC), directory synchronization, and data/integration patterns.

• Security mindset and experience implementing core controls when there is no separate security team (identity/access, baselines, patching strategy, endpoint controls, logging/alerting, data protection).

Preferred

• Experience integrating SaaS and line-of-business platforms, including identity/SSO integrations and ongoing vendor coordination.

• Experience designing hybrid and migration programs (tenant-to-tenant, mergers/acquisitions, legacy modernization).

• Familiarity with ITSM processes (incident, problem, change) and building lightweight operational practices that scale.

Equal Opportunity Employer

This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights notice from the Department of Labor.