Job Description

About Matrix IT

Matrix IT is a leading Managed Service Provider (MSP) headquartered in Ottawa, Ontario, serving a diverse and growing portfolio of clients across Canada. We deliver enterprise-grade IT infrastructure, cybersecurity, and cloud services, specializing in Microsoft 365 and Azure ecosystems. Our focus is on providing secure, scalable, and high-performance solutions that empower our clients to operate efficiently and with confidence in today's complex technology landscape.

Our mission is to ensure every client's Azure and Microsoft 365 environment is not only operational but fully hardened, secured, and ready for the challenges of both current and emerging cyber threats. We approach every engagement with a Zero Trust, security-first mindset--meaning nothing is trusted by default, and every user, device, and application must be verified continuously.

We serve clients across multiple industries, each with unique compliance, operational, and security requirements. This diversity of environments means our team members are constantly challenged with new scenarios, advanced problem-solving opportunities, and the chance to work with evolving technologies. We value a culture that combines in-house collaboration with the flexibility to travel to client sites and, when necessary, operate in a hybrid work model for specific project needs.

At Matrix IT, we don't just deliver services; we build partnerships. Our clients rely on us to be their trusted advisor in technology and security, and we take that responsibility seriously. Every team member plays a critical role in upholding that trust by delivering exceptional service, maintaining technical excellence, and staying ahead of the latest security threats and technology trends.

?

Position Overview

We are seeking a highly capable and motivated Azure Security Lead / Level 2 Cloud Technician to join our in-house team. This hybrid role is designed for a professional who can lead high-level security architecture while also engaging directly in hands-on technical delivery. You will be responsible for designing and implementing Zero Trust frameworks, applying Azure hardening best practices, conducting security audits, supporting multiple client tenants, and providing advanced technical troubleshooting and project implementation services.

This role combines strategic leadership with day-to-day operational responsibilities, making it an ideal opportunity for someone who thrives on variety, enjoys complex problem-solving, and can balance client-facing communication with deep technical work. The successful candidate will demonstrate both the ability to develop secure cloud strategies and the technical skills to execute them.

?

Key Responsibilities

Security Leadership & Architecture

Lead the development, deployment, and ongoing refinement of Zero Trust security architectures for client Microsoft 365 and Azure tenants. Apply Azure hardening techniques to ensure all environments meet or exceed industry standards, including CIS benchmarks, NIST guidelines, and ISO 27001 controls. Oversee Conditional Access policy design and enforcement to balance security with user productivity. Configure, monitor, and maintain Microsoft Defender for Endpoint, Microsoft Defender for Cloud, Microsoft Defender for Identity, and Microsoft Sentinel across all managed tenants. Implement and manage Privileged Identity Management (PIM) to secure elevated access. Ensure security governance is in place for every managed client, with documented policies, procedures, and configurations.
Technical Support & Implementation

Provide Level 2 technical support for Microsoft 365, Windows, macOS, and Azure AD issues, ensuring timely and effective resolution of escalated incidents. Assist with Intune MDM/MAM deployment, device enrollment, compliance policy configuration, and profile management. Conduct tenant-level security reviews to identify misconfigurations, vulnerabilities, or areas for optimization. Troubleshoot and resolve identity, access, and endpoint compliance issues, working closely with clients and internal teams. Participate in client project deployments, including new Azure service rollouts, endpoint security configuration, and cloud application integrations. Maintain accurate and comprehensive documentation for all technical work, ensuring repeatability and transparency.
Auditing & Incident Response

Perform regular security audits across client environments, producing actionable reports and remediation plans. Lead post-incident reviews to determine root causes and implement preventive measures. Monitor and analyze Microsoft Secure Score results for each tenant, driving continuous improvement in security posture. Ensure that findings from Purple Team or other adversarial testing are remediated promptly and effectively.
Collaboration & Mentorship

Collaborate with project managers, service desk staff, and other technical teams to ensure seamless delivery of services. Act as a mentor to junior technicians, providing guidance on both technical troubleshooting and security best practices. Participate in internal knowledge-sharing sessions to keep the entire team informed of new threats, tools, and best practices.
?

Expected Outcomes

All managed tenants consistently maintain high security scores and meet compliance requirements. Client environments are configured according to Matrix IT's Zero Trust and Azure hardening standards. Security incidents are detected early, with minimal impact due to rapid and effective remediation. Level 2 escalations are resolved efficiently, reducing the need for senior engineer intervention. Clients experience improved performance, reliability, and security in their Microsoft cloud environments.
?

Zero Trust & Azure Hardening Expertise (Required)

Proven track record of designing, implementing, and maintaining Zero Trust architectures in Azure and Microsoft 365. Hands-on experience with: Conditional Access configuration and enforcement. Intune compliance policies, device management, and app protection policies. Microsoft Defender suite deployment and monitoring. Sentinel configuration, analytics rules, and automated response playbooks. Privileged Identity Management (PIM) implementation. Strong understanding of Azure security baselines and the ability to apply them in multi-tenant MSP environments.
?

Qualifications & Experience

3-5 years in Microsoft cloud security and advanced technical support roles, preferably in an MSP setting. Demonstrated success managing both strategic security architecture and operational technical support. Microsoft certifications such as AZ-500, SC-100, SC-200, MS-900, or MD-100/MD-101 are preferred. Strong problem-solving skills and the ability to work independently while managing multiple priorities. Excellent communication skills, capable of presenting technical information to both technical and non-technical audiences. Ability and willingness to travel for client site work as required.
?

Our Culture & Values

Security-First Approach: Every solution we design or deploy is rooted in strong security principles. Continuous Learning: We invest in professional development through certifications, training programs, and hands-on experience. Client Commitment: We measure our success by our clients' satisfaction, trust, and long-term stability. Team Collaboration: We value open communication, mutual respect, and shared problem-solving. Accountability: Every team member takes ownership of their work, their deadlines, and their professional growth.
We maintain a primarily in-house culture to foster collaboration and teamwork. However, some travel to client sites is required for project delivery, and occasional hybrid work arrangements are possible based on project demands.

?

Why Join Matrix IT?

Opportunity to work with cutting-edge Microsoft cloud and security technologies in real-world, multi-tenant environments. Exposure to diverse industries, offering unique technical challenges and growth opportunities. Career development paths, including advancement into senior engineering or security leadership roles. Access to certification reimbursement, dedicated training resources, and mentorship from experienced professionals. Competitive salary, comprehensive benefits package, and a workplace that values quality over shortcuts. Be part of a team that is shaping the future of secure cloud service delivery in Canada.
?

Career Growth Path

This role offers advancement into senior technical or leadership positions within Matrix IT. Depending on your career focus, you can progress toward roles such as Cloud Security Engineer, Azure Solutions Architect, or Director of Cloud Security. We support our employees with clear growth plans, continuous training, and opportunities to work on advanced, high-impact projects.

Job Types: Full-time, Permanent

Pay: $17.20-$50.00 per year

Benefits:

Dental care Disability insurance Extended health care Life insurance On-site parking Paid time off Tuition reimbursement Vision care
Experience:

Cloud infrastructure: 4 years (preferred)
Licence/Certification:

Driving Licence (required)
Willingness to travel:

25% (preferred)
Work Location: In person

Expected start date: 2025-09-01