Principal Architect - Security

Are you looking for a role that motivates and challenges you? Are you ready for an opportunity for growth? Do you want to work on teams where people roll up their sleeves to take on tough problems together, and regularly blow the doors off our clients with their outstanding teamwork? If you answered yes to those questions, 3Cloud might just be for you! At 3Cloud, we hire people who aren’t afraid to experiment or fail. We hire people who are willing to give direct and candid feedback to their managers, leaders, and team members. We hire people who jump at those opportunities because they care about our collective growth and success. We hire people who challenge and hold each other accountable for living 3Cloud’s core values because they know that it will result in amazing experiences and solutions for our clients and each other. Overview: Lead and deliver complex security engagements centered on Azure Security , Identity & Access Management (IAM) , and Microsoft Purview / AI Governance . Serve as a principal-level architect, thought leader, and trusted advisor who shapes secure cloud, data, and AI governance strategies for enterprise clients while remaining deeply engaged in delivery. This role is primarily delivery focused, with approximately 25-30% dedicated to sales support, solution development, and strategic client pursuits. Key Responsibilities: Principal Technical Leadership: Provide senior technical leadership across multiple strategic client engagements. Lead executive and architectural design sessions, define target-state security architectures, and guide delivery teams through implementation with a strong focus on quality, scalability, and measurable business outcomes. Trusted Advisor & Thought Leadership: Act as a trusted advisor to client stakeholders, including security, infrastructure, data, and executive leaders. Shape security roadmaps, advise on operating models and governance, and bring forward innovative perspectives on Azure security, identity modernization, data protection, and AI governance. Delivery Oversight & Execution: Remain hands-on in delivery while overseeing complex programs from strategy through implementation. Partner with delivery leadership to align milestones, manage technical risk, remove blockers, and ensure successful outcomes across architecture, implementation, and adoption phases. Azure Security & IAM Architecture: Design and lead implementation of enterprise security architectures across Azure and hybrid environments, including Microsoft Entra ID, Conditional Access, Identity Protection, Privileged Identity Management (PIM), role-based access control, Zero Trust controls, workload protection, and security monitoring patterns aligned to least privilege and strong governance. Purview & AI Governance Leadership: Lead engagements focused on Microsoft Purview, information protection, data security posture management, data loss prevention, compliance, and governance for Copilot, AI applications, and AI agents. Help clients establish secure and compliant approaches for data access, policy enforcement, monitoring, lifecycle management, and responsible AI enablement. Sales Support & Solution Development: Contribute approximately 25-30% of role capacity to sales enablement and solution development activities. Partner with account teams and solution leaders to shape opportunities, lead discovery conversations, develop solution approaches, support estimates and statements of work, contribute to proposals, and articulate differentiated value in client pursuits. Practice Development & Mentorship: Help scale the security practice through reusable assets, reference architectures, accelerators, and delivery standards. Mentor architects and engineers, coach teams on emerging Microsoft security capabilities, and strengthen organizational readiness across Azure security, identity, data governance, and AI security disciplines. Required Qualifications: Experience: 12+ years in security, infrastructure, or cloud consulting, including 7+ years focused on Azure security, IAM, and enterprise governance. Proven experience leading complex client engagements, influencing senior stakeholders, and owning architectural outcomes across multiple initiatives. Azure Security & Identity Expertise: Deep hands-on and architectural expertise across Microsoft Entra ID, Conditional Access, MFA, Identity Protection, PIM, access reviews, lifecycle governance, Azure Policy, Defender, Sentinel, RBAC, and Zero Trust design. Strong understanding of hybrid identity, privileged access, and security controls for cloud-first enterprises. Purview & Governance Expertise: Strong experience with Microsoft Purview capabilities including data classification, sensitivity labeling, DLP, compliance controls, audit, eDiscovery, data lifecycle management, and AI/data security governance. Ability to design governance models that support secure adoption of Copilot, AI applications, and agent-based solutions. Solutioning & Client Advisory: Demonstrated ability to support pre-sales and solution development, including leading workshops, defining scope, developing roadmaps, building solution narratives, estimating delivery approaches, and supporting proposals and executive presentations. Delivery Leadership: Strong consulting and delivery leadership skills, including risk management, technical oversight, stakeholder communication, and the ability to balance strategic advisory responsibilities with hands-on execution. Communication & Presence: Excellent written, verbal, and presentation skills with the ability to engage technical teams, business stakeholders, and executive audiences. Recognized as a credible thought leader with strong facilitation, mentorship, and client relationship skills. Certifications: Strongly preferred certifications include SC-100 (Cybersecurity Architect Expert) , AZ-500 (Azure Security Engineer) , SC-300 (Identity and Access Administrator) , and relev