Overview
Skills
Job Details
Job Title: Identity and Access Management (IAM) Migration Consultant
Duration: 1+ Year
Work Location: Clearwater, FL (Remote- occasional onsite may be requested)
Required Certification: CJIS Certification (must be obtained prior to or during onboarding)
Position Overview
We are seeking a highly skilled Identity & Access Management (IAM) Migration Consultant to support our organization s migration from Okta to Microsoft Entra ID. The consultant will play a key role in modernizing our identity infrastructure, maximizing our investment in Microsoft s cloud identity platform, and helping transition services off legacy systems.
Key Responsibilities:
- Lead and support the migration of SAML/OIDC applications, authentication policies, and identity workflows from Okta to Microsoft Entra ID.
- Configure and optimize Conditional Access, Authentication Methods, Self-Service Password Reset (SSPR), and Multi-Factor Authentication (MFA) policies.
- Design and implement multi-tenant and B2C identity strategies.
- Support hybrid identity scenarios involving Active Directory (AD), Entra Connect, and cloud-first identity models.
- Set up and manage test tenants for validation, experimentation, and proof-of-concept work.
- Implement delegated administration and role-based access control (RBAC) in Entra and Microsoft 365, following least privilege principles.
- Assist with identity lifecycle management, including onboarding/offboarding and stale object cleanup.
- Collaborate with internal teams to implement Identity Governance (Access Reviews, Entitlement Management, Access Packages).
- Document configurations, processes, and migration plans.
- Provide guidance on best practices for secure remote access, identity lifecycle management, and decommissioning legacy systems.
Required Skills & Experience:
(Candidates should provide details on their experience with each of the following, including references and years of experience.)
- Strong hands-on experience with Microsoft Entra ID (formerly Azure AD) Conditional Access, MFA, SSPR, Authentication Methods, and Identity Governance.
- Proven experience migrating identity services from Okta to Microsoft Entra.
- Experience with test tenant setup and management for validation/experimentation.
- Familiarity with delegating permissions in Entra and Microsoft 365 using least privilege models.
- Practical experience with identity lifecycle management, including stale object cleanup.
- Experience with hybrid identity environments (AD, Entra Connect, cloud-first).
- Experience with multi-tenant and B2C identity configurations.
- Strong PowerShell scripting for identity automation.
- Experience with Microsoft Graph API and Entra ID custom extensions.
- Strong programming/scripting skills (Java, Python, C#, Bash).
Highly Desired Skills:
- Microsoft certifications (e.g., SC-300, SC-100, AZ-500).
- Knowledge of Zero Trust principles and secure access design.
- Strong troubleshooting and problem-solving skills.
- Ability to work independently and collaboratively in a fast-paced environment.
- Excellent communication and documentation skills.
- DevOps experience.
- Experience with AWS IAM and AWS Managed AD.
- Experience with HR-as-Master identity management.
- Experience with Privileged Access Management (PAM).
Certifications:
Required:
- CJIS Certification
- Microsoft Identity and Access Administrator Associate (SC-300)
Preferred:
- Microsoft Security, Compliance, and Identity certifications (e.g., SC-100, AZ-500)