Senior Consultant - Power Platform, Copilot Studio & Purview Gove presso Proactive Technology Management

Description

The role in one sentence

Lead a 90-day engagement that turns a Fortune-class regulated enterprise’s unmanaged Power Platform, Copilot Studio, and M365 estate into a governed, classified, observable, ROI-tracked capability — and convert into a PTM full-time hire on successful delivery. 

Why this role exists

Proactive Technology Management (PTM) Fusion has committed to a 90-day Power Platform and Copilot Studio governance program for a Fortune-class regulated enterprise client. The engagement runs in two phases: 

• Phase 1 — Discovery & Assess (30 days). Inventory and risk-rank the estate (apps, flows, agents, environments, sensitivity-labeled data flows). Map current ALM, identity, Center of Excellence (CoE) Kit, and Microsoft Purview posture against PTM and Microsoft baselines. Quantify Copilot Studio agent exposure and observability gaps. Deliver a prioritized governance backlog with measurable ROI. 

• Phase 2 — Implement & Govern (60 days). Stand up the CoE Kit, Power Platform DLP and environment strategy, and Purview-aligned classification, labeling, and retention policy. Wire Application Lifecycle Management (ALM) pipelines for both makers and pro-developers. Operationalize Copilot Studio agent governance — authentication, content moderation, audit. Light up an Azure Monitor and Log Analytics observability surface tied to the agreed value metric. 

What you'll deliver

• A risk-ranked inventory of every app, flow, agent, environment, sensitivity label, and DLP policy across the client tenant. 
• A current-state assessment of ALM, identity, Power Platform DLP, Microsoft Purview information protection, retention, audit, and Compliance Manager posture — mapped to PTM and Microsoft reference architectures. 
• A prioritized governance backlog with one-line ROI rationale per item, ready to drive Phase 2 scope confirmation. 
• A deployed and operating Power Platform CoE Kit with environment strategy, tenant- and environment-level DLP policies, and connector classification rationale. 
• ALM pipelines (Power Platform Pipelines or ALM Accelerator + GitHub Actions / Azure DevOps) serving both citizen-developer and pro-developer paths. 
• A Purview governance baseline: sensitivity label taxonomy with auto-labeling rules, M365 DLP policies covering Exchange / SharePoint / OneDrive / Teams / Endpoint, retention label and policy framework, audit (Standard or Premium) configuration, and Compliance Manager assessment posture. 
• Copilot Studio agent governance with authenticated Entra-bound knowledge sources, content controls, audit logging, Purview-for-Copilot DSPM-for-AI configuration, and red-team review of high-exposure agents. 
• A live observability surface built on Azure Monitor, Log Analytics, Application Insights, and Power BI — including diagnostic settings on Power Platform, KQL workbooks for governance KPIs, alert rules on policy drift, and an executive dashboard reporting against the value metric agreed during Discovery. 
• Solution Architecture Document (SAD), Solution Design Document (SDD), and milestone roadmap authored against PTM templates and reviewed under our Maker-Checker discipline. 

Who you are

You can hold a discovery conversation with a Chief Information Officer in the morning, run an Event Storming session with a finance director after lunch, and ship a Dataverse security-role design before dinner. You communicate in plain language to business owners and in precise technical terms to engineers, often in the same meeting. 

You believe governance is a value engine, not a brake. You measure success in ROI delivered, not artifacts produced.

Requirements

Power Platform & Copilot Studio (depth required) 

• 5+ years delivering on Microsoft Power Platform in enterprise or mid-market environments, with at least 2 full lifecycles of CoE Kit deployment and operation. 
• Deep working knowledge of Power Platform ALM: solution layering, managed solutions, environment strategy, Power Platform Pipelines or the ALM Accelerator, and integration with GitHub Actions or Azure DevOps. 
• SailPoint - Proven expertise with Identity Governance & Administration (IGA) platforms, specifically SailPoint  
• Hands-on experience implementing, configuring, and maintaining SailPoint solutions (e.g., IdentityIQ, IdentityNow) 
• Dataverse — security model, table and relationship design, plug-ins, business rules, and auditing. 
• Power Platform DLP policies — connector classification, tenant- vs environment-level scoping, endpoint filtering for HTTP and SQL connectors, custom connector handling. 
• Copilot Studio — agent topic design, knowledge sources, generative answers, plugins and connectors, authentication, content moderation, and audit. You have stood up at least one production-grade agent end-to-end. 

Microsoft Purview & M365 governance (depth required) 

• Microsoft Purview Information Protection — sensitivity label taxonomy design, manual labeling, auto-labeling policies (client-side and service-side), and label-driven encryption. 
• Microsoft Purview Data Loss Prevention across Exchange, SharePoint, OneDrive, Teams, and Endpoint DLP, including policy tuning, incident triage, and integration with Power Platform DLP. 
• Data classification using built-in, custom, exact-data-match, and trainable classifiers. 
• Retention labels and retention policies, records management, and disposition review. 
• Microsoft Purview Audit (Standard and Premium), audit log search and export, and integration with downstream SIEM. 
• Microsoft Compliance Manager — assessment selection, improvement actions, and executive reporting. 
• Purview for Copilot — DSPM for AI configuration, sensitivity-aware grounding, prompt and response auditing.  

Identity & observability (depth required) 

• Microsoft Entra ID — app registrations, service principals, conditional access, and how all of the above bind to Power Platform DLP and Purview policies. 
• Azure Monitor and Log Analytics — workspace design, diagnostic settings on Power Platform and Dataverse, KQL fluency, workbook authoring, alert rules, and action groups. 
• Application Insights for component-level telemetry on custom connectors, plug-ins, and Copilot Studio agents. 
• Power BI dashboards that report a value metric a non-technical executive can act on. 

Consulting craft (depth required) 

• Demonstrated ability to author and present architecture artifacts to a CTO-level audience: C4 diagrams, SADs, SDDs, milestone roadmaps. 
• A discovery toolkit you actually use — Lean UX, BPMN, Event Storming, or comparable methods for translating ambiguous client problems into a prioritized backlog with measurable outcomes. 

Strongly Preferred

• Microsoft certifications: PL-600 (Power Platform Solution Architect), PL-400 (Developer), SC-400 (Information Protection & Compliance Administrator), SC-300 (Identity & Access Administrator). 
• Experience integrating Power Platform with Microsoft Fabric, Dataverse long-term retention, or Azure SQL. 
• Microsoft Sentinel integration for governance signals and audit-log SIEM tier. 
• Familiarity with Bicep + Azure Developer CLI (azd) for any Azure-side resources adjacent to the Power Platform estate. 
• Prior delivery in regulated environments (medical device, life sciences, healthcare, or financial services) and comfort with the documentation discipline that comes with them. 
• Experience as a subcontractor or partner-of-partner — you know how to represent PTM cleanly inside multi-vendor delivery teams and inside the end client’s governance forums. 

How you work

• Search before assumptions. You verify against current docs, the client tenant, and runtime evidence before recommending. Confidence without evidence is not a substitute for either. 
• Contracts before code. You define the interface — security roles, environment policies, label taxonomy, ALM gates — before anyone builds against it. 
• Validators before delivery. Every governance control ships with a test that proves it works and an alert that fires when it stops working. 
• Maker-Checker over solo heroics. You welcome a second pair of eyes on every material design decision, and you give the same in return. 
• Plain and clear language. A 12-year-old can follow your milestone narrative. A CTO trusts your architecture. A business owner sees the ROI line. 

Engagement details

• Engagement structure. Contract-to-hire. Initial term covers the full 90-day engagement (30 days Discovery + 60 days Implementation). Conversion to PTM Fusion full-time hire on successful delivery and mutual fit. 
• Capacity. This posting is for one full-time-equivalent role. PTM may staff a second practitioner alongside you depending on scope confirmed at the close of Discovery; we are open to candidates interested in either the lead or the partnered configuration. 
• Location. Remote, US-based. 
• Compensation. Competitive contract rate during the engagement; market-aligned base, performance bonus, and benefits package on conversion. Final terms commensurate with experience and certifications. 
• Start. Immediate. Discovery kicks off as soon as the right candidate is in seat. 

Benefits

Possibility of contract-to-hire