# Senior Consultant - Power Platform, Copilot Studio & Purview Gove

**Company:** [Proactive Technology Management](http://jobs.workable.com/companies/mMSecZU4bevK6YJbQ48SzC.md)
**Location:** Ferndale, United States
**Workplace:** hybrid
**Employment type:** Contract

[Apply for this job](http://jobs.workable.com/view/43d0db67-f8b8-4c19-bee3-918e98588a3d)

## Description

### **The role in one sentence**

Lead a 90-day engagement that turns a Fortune-class regulated enterprise’s unmanaged Power Platform, Copilot Studio, and M365 estate into a governed, classified, observable, ROI-tracked capability — and convert into a PTM full-time hire on successful delivery. 

### **Why this role exists**

Proactive Technology Management (PTM) Fusion has committed to a 90-day Power Platform and Copilot Studio governance program for a Fortune-class regulated enterprise client. The engagement runs in two phases: 

-   **Phase 1 — Discovery & Assess (30 days).** Inventory and risk-rank the estate (apps, flows, agents, environments, sensitivity-labeled data flows). Map current ALM, identity, Center of Excellence (CoE) Kit, and Microsoft Purview posture against PTM and Microsoft baselines. Quantify Copilot Studio agent exposure and observability gaps. Deliver a prioritized governance backlog with measurable ROI. 

-   **Phase 2 — Implement & Govern (60 days).** Stand up the CoE Kit, Power Platform DLP and environment strategy, and Purview-aligned classification, labeling, and retention policy. Wire Application Lifecycle Management (ALM) pipelines for both makers and pro-developers. Operationalize Copilot Studio agent governance — authentication, content moderation, audit. Light up an Azure Monitor and Log Analytics observability surface tied to the agreed value metric. 

### **What you'll deliver**

-   A risk-ranked inventory of every app, flow, agent, environment, **sensitivity label, and DLP policy** across the client tenant. 
-   A current-state assessment of ALM, identity, Power Platform DLP, **Microsoft Purview information protection, retention, audit, and Compliance Manager posture** — mapped to PTM and Microsoft reference architectures. 
-   A prioritized governance backlog with one-line ROI rationale per item, ready to drive Phase 2 scope confirmation. 
-   A deployed and operating Power Platform CoE Kit with environment strategy, tenant- and environment-level DLP policies, and connector classification rationale. 
-   ALM pipelines (Power Platform Pipelines or ALM Accelerator + GitHub Actions / Azure DevOps) serving both citizen-developer and pro-developer paths. 
-   **A Purview governance baseline:** sensitivity label taxonomy with auto-labeling rules, M365 DLP policies covering Exchange / SharePoint / OneDrive / Teams / Endpoint, retention label and policy framework, audit (Standard or Premium) configuration, and Compliance Manager assessment posture. 
-   **Copilot Studio agent governance** with authenticated Entra-bound knowledge sources, content controls, audit logging, Purview-for-Copilot DSPM-for-AI configuration, and red-team review of high-exposure agents. 
-   **A live observability surface** built on **Azure Monitor, Log Analytics, Application Insights, and Power BI** — including diagnostic settings on Power Platform, KQL workbooks for governance KPIs, alert rules on policy drift, and an executive dashboard reporting against the value metric agreed during Discovery. 
-   Solution Architecture Document (SAD), Solution Design Document (SDD), and milestone roadmap authored against PTM templates and reviewed under our Maker-Checker discipline. 

### **Who you are**

You can hold a discovery conversation with a Chief Information Officer in the morning, run an Event Storming session with a finance director after lunch, and ship a Dataverse security-role design before dinner. You communicate in plain language to business owners and in precise technical terms to engineers, often in the same meeting. 

You believe governance is a value engine, not a brake. You measure success in ROI delivered, not artifacts produced.

## Requirements

### Power Platform & Copilot Studio **(depth required)** 

-   **5+ years** delivering on Microsoft Power Platform in enterprise or mid-market environments, with at least **2 full lifecycles** of CoE Kit deployment and operation. 
-   Deep working knowledge of **Power Platform ALM:** solution layering, managed solutions, environment strategy, **Power Platform Pipelines or the ALM Accelerator**, and integration with **GitHub Actions or Azure DevOps.** 
-   **SailPoint** - Proven expertise with Identity Governance & Administration (IGA) platforms, specifically **SailPoint**  
-   Hands-on experience implementing, configuring, and maintaining SailPoint solutions (e.g., IdentityIQ, IdentityNow) 
-   **Dataverse** — security model, table and relationship design, plug-ins, business rules, and auditing. 
-   **Power Platform DLP policies** — connector classification, tenant- vs environment-level scoping, endpoint filtering for HTTP and SQL connectors, custom connector handling. 
-   **Copilot Studio** — agent topic design, knowledge sources, generative answers, plugins and connectors, authentication, content moderation, and audit. You have stood up at least one production-grade agent end-to-end. 

### Microsoft Purview & M365 governance (depth required) 

-   **Microsoft Purview Information Protection** — sensitivity label taxonomy design, manual labeling, **auto-labeling policies (client-side and service-side)**, and label-driven encryption. 
-   **Microsoft Purview Data Loss Prevention** across **Exchange, SharePoint, OneDrive, Teams, and Endpoint DLP**, including policy tuning, incident triage, and integration with Power Platform DLP. 
-   **Data classification** using built-in, custom, exact-data-match, and trainable classifiers. 
-   **Retention labels and retention policies**, records management, and disposition review. 
-   **Microsoft Purview Audit** (Standard and Premium), audit log search and export, and integration with downstream SIEM. 
-   **Microsoft Compliance Manager** — assessment selection, improvement actions, and executive reporting. 
-   **Purview for Copilot** — DSPM for AI configuration, sensitivity-aware grounding, prompt and response auditing.  

### Identity & observability (depth required) 

-   **Microsoft Entra ID** — app registrations, service principals, conditional access, and how all of the above bind to Power Platform DLP and Purview policies. 
-   **Azure Monitor and Log Analytics** — workspace design, diagnostic settings on Power Platform and Dataverse, **KQL fluency**, workbook authoring, alert rules, and action groups. 
-   **Application Insights** for component-level telemetry on custom connectors, plug-ins, and Copilot Studio agents. 
-   **Power BI** dashboards that report a value metric a non-technical executive can act on. 

### Consulting craft (depth required) 

-   Demonstrated ability to author and present **architecture artifacts** to a CTO-level audience: C4 diagrams, SADs, SDDs, milestone roadmaps. 
-   A discovery toolkit you actually use — Lean UX, BPMN, Event Storming, or comparable methods for translating ambiguous client problems into a prioritized backlog with measurable outcomes. 

### **Strongly Preferred**

-   Microsoft certifications: **PL-600 (Power Platform Solution Architect), PL-400 (Developer), SC-400 (Information Protection & Compliance Administrator), SC-300 (Identity & Access Administrator).** 
-   Experience integrating Power Platform with **Microsoft Fabric**, Dataverse long-term retention, or Azure SQL. 
-   **Microsoft Sentinel** integration for governance signals and audit-log SIEM tier. 
-   Familiarity with **Bicep + Azure Developer CLI (azd)** for any Azure-side resources adjacent to the Power Platform estate. 
-   Prior delivery in **regulated environments** (medical device, life sciences, healthcare, or financial services) and comfort with the documentation discipline that comes with them. 
-   Experience as a subcontractor or partner-of-partner — you know how to represent PTM cleanly inside multi-vendor delivery teams and inside the end client’s governance forums. 

### How you work

-   **Search before assumptions.** You verify against current docs, the client tenant, and runtime evidence before recommending. Confidence without evidence is not a substitute for either. 
-   **Contracts before code.** You define the interface — security roles, environment policies, label taxonomy, ALM gates — before anyone builds against it. 
-   **Validators before delivery.** Every governance control ships with a test that proves it works and an alert that fires when it stops working. 
-   **Maker-Checker** over solo heroics. You welcome a second pair of eyes on every material design decision, and you give the same in return. 
-   **Plain and clear language.** A 12-year-old can follow your milestone narrative. A CTO trusts your architecture. A business owner sees the ROI line. 

### Engagement details

-   **Engagement structure.** Contract-to-hire. Initial term covers the full 90-day engagement (30 days Discovery + 60 days Implementation). Conversion to PTM Fusion full-time hire on successful delivery and mutual fit. 
-   **Capacity.** This posting is for one full-time-equivalent role. PTM may staff a second practitioner alongside you depending on scope confirmed at the close of Discovery; we are open to candidates interested in either the lead or the partnered configuration. 
-   **Location.** Remote, US-based. 
-   **Compensation.** Competitive contract rate during the engagement; market-aligned base, performance bonus, and benefits package on conversion. Final terms commensurate with experience and certifications. 
-   **Start.** Immediate. Discovery kicks off as soon as the right candidate is in seat.

## Benefits

Possibility of contract-to-hire