IAM CONSULTANT - HYBRID in BROOKLYN, NY - 1 YEAR CONTRACT

Overview

Hybrid
Depends on Experience
Contract - W2
Contract - Independent
Contract - 12 Month(s)
Able to Provide Sponsorship

Skills

Active Directory
Authentication
Cloud Computing
ISO 9000
Kerberos
PCI DSS
OAuth
PKI
Regulatory Compliance
Sarbanes-Oxley
SAML
Migration
API
Authorization

Job Details

Title: IAM Consultant

Client is seeking an experienced IAM Consultant to support the Citywide Identity and PKI Modernization project. Join our Infrastructure Resilience team as we consolidate disparate directories and modernize our citywide PKI in alignment with industry best practices and regulatory standards.

Location: Hybrid (2 Metrotech Center, Brooklyn, NY) 2 days onsite, 3 days remote
Schedule: Monday Friday, 35 hours/week
Assignment Duration: 1 year (projected start: 10/06/2025 projected end: 10/04/2026)

Responsibilities:

  • Assess and develop a roadmap for directory consolidation across OTI

  • Provide guidance and support for integration with Entra and other IAM security enhancements

  • Architect and implement a citywide PKI modernization, including infrastructure changes for reduced certificate lifespans

  • Advise on governance, compliance, lifecycle management, and automation for digital certificates

  • Lead migration planning, risk assessment, and mitigation for directories and PKI modernization

  • Conduct technical knowledge transfer and upskill internal teams on new infrastructure and best practices

Key Focus Areas:

  • PKI Architecture, Engineering, Administration 40%

  • Entra ID Architecture, Engineering, Administration 30%

  • Directory Architecture, Engineering, Administration 20%

  • IAM Level 3 Technical Support 10%

Mandatory Skills & Experience:

  • Minimum 12 years in IAM architecture, engineering, administration, and operations, especially directory services and PKI

  • Deep expertise with Active Directory (on-prem and hybrid), Entra ID, and eDirectory

  • Hands-on with Microsoft PKI (certificate authority management, lifecycle, automation)

  • Thorough understanding of modern authentication/authorization protocols (OAuth, SAML, Kerberos, etc.)

  • Experience in security roadmap development, risk assessment, and regulatory compliance (NIST, ISO, SOX, PCI-DSS)

  • Exceptional documentation, communication, and stakeholder management abilities

Desirable Experience:

  • Cloud PKI services

  • Entra ID Governance, Conditional Access Policy, modern security controls

  • Automating PKI workflows (API/script-based cert management)

  • Multi-forest, multi-tenant IAM architecture

  • Experience with NYC agencies

  • Familiarity with enterprise ITSM, change management, and project management

Special Requirements:

  • Ability to work cross-functionally with complex technical and business stakeholders

  • Availability for after-hours support during critical migrations and incident response

Note: No more than two submissions per vendor for this assignment. Background check may be required for selected candidates.

Apply now if you are an IAM subject matter expert ready to modernize identity services for NYC!

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.