About us

Here at SmartImpact, we are a UK Microsoft Gold partner, we have been providing innovative digital solutions to the non-profit sector since 2007. We partner with organisations of all sizes, individual and corporate membership bodies, charities & fundraisers, societies, colleges and regulatory bodies. We have been going through a steady level of growth over the last 2 years, with a workforce currently of just shy of 75 people. Although UK based, we have a small number of our team working for us throughout Europe, with a small team in Slovenia.

This would be a long term, contract position. You would have your own limited company, it would be an indefinite role (no end date) and you would also receive 25 days holiday/ vacation days, plus bank/ public holidays.

About the Job

We are seeking an experienced, diligent, and proactive Senior IT System Administrator to manage, secure, and continuously improve our Microsoft cloud infrastructure and operational environments.

The ideal candidate is passionate about automation, consistency, and security, with deep expertise in Microsoft Entra ID, Azure, Microsoft Partner Centre (including GDAP), Azure DevOps, Microsoft 365, and the Power Platform.

This role plays a key part in implementing least privilege architectures, supporting ISO-compliant operations, and ensuring a secure, efficient, and auditable IT foundation for our business and clients.

Responsibilities

Identity & Access Management

• Administer and maintain Microsoft Entra ID (Azure AD), including Conditional Access, MFA, and role-based access control.
• Implement and enforce least privilege access models across all systems and applications.
• Manage Group-Based Delegated Admin Privileges (GDAP) within Microsoft Partner Center to ensure secure partner access.
• Oversee identity lifecycle management, access reviews, and audit readiness for ISO 27001 and related standards.

Azure Cloud Administration

• Manage Azure subscriptions, resource groups, policies, and budgets, maintaining cost alignment with forecasts.
• Design and automate resource deployments using ARM/Bicep, Terraform, PowerShell, and Azure CLI.
• Maintain configuration baselines and enforce governance via Azure Policy and Management Groups.

Microsoft 365, Exchange & SharePoint Administration

• Administer Microsoft 365 tenant configurations, licensing, and integrations.
• Manage and maintain Exchange Online, including mail flow, transport rules, shared mailboxes, and retention policies.
• Oversee SharePoint Online administration, including site permissions, sharing policies, and storage management.

Azure DevOps Administration

• Administer Azure DevOps Organizations, Projects, Teams, and Repositories.
• Manage permissions, security groups, and service connections under least privilege principles.
• Govern and automate pipeline permissions, variable groups, environments, and approvals.
• Support DevOps users with policy-driven configuration, branching strategies, and CI/CD best practices.
• Create and maintain PowerShell or REST API automation scripts for permission management and reporting.
• Ensure traceability, segregation of duties, and compliance with ISO 27001 and ISO 9001 standards.

Endpoint & Device Management

• Administer and maintain company laptops, desktops, and mobile devices (Windows and macOS).
• Manage device enrolment, compliance, and configuration via Microsoft Intune and Autopilot.
• Enforce encryption, antivirus, and endpoint security policies.
• Support employee onboarding/offboarding by provisioning and decommissioning user devices.

Security, Compliance & Auditing

• Champion security-by-design principles across all IT operations.
• Support compliance with ISO 27001 (Information Security), ISO 9001 (Quality Management), and ISO 22301 (Business Continuity).
• Participate in incident response and business continuity exercises, ensuring post-incident reviews and documentation are completed.

Requirements

• 5+ years as an IT System Administrator or Cloud Administrator in Microsoft environments.

Proven expertise with:

• Microsoft Entra ID (Azure AD) and Conditional Access.
• Azure resource management, RBAC, policies, and automation.
• Exchange Online and SharePoint Online administration.
• Azure DevOps administration, including pipelines, permissions, and REST API automation.
• Power Platform environment management and DLP policy enforcement.
• PowerShell and/or Azure CLI scripting.
• Experience supporting or participating in CyberSmart, ISO 27001, ISO 9001, and ISO 22301 audits.

What we offer

• Continuous learning. You will develop the mindset and skills to navigate whatever comes next.
• Support and leadership via our SMT team.
• Exposure to great clients, bespoke products and latest technology.
• An open and collaborative friendly working environment with knowledge sharing at the centre.
• Remote working.
• Diverse and inclusive culture: You will be respected for who you are and empowered to use your voice to help others and our clients.