Title: IAM CONSULTANT (RI 0693A)
Location: 2 Metrotech Center, NY
Duration: 12 Months
Client: NYC Office of Technology and Innovation
Note: Hybrid role
Job Description:
- Assess and develop a roadmap for OTI s disparate directories consolidation
- Provide guidance and implementation support for integration with Entra and other IAM security enhancements
- Architect and implement Citywide-level PKI modernization, including infrastructure changes for reduced certificate lifespans
- Advice on governance, compliance, lifecycle management and automation of digital certificates
- Lead migration planning, risk assessment, and mitigation for directories and PKI modernization
- Perform technical knowledge transfer, upskilling internal teams on new infrastructure and practices
TASKS:
- PKI Architecture, Engineering and Administrator 40%
- Entra ID Architecture, Engineering and Administrator 30%
- Directory Architecture, Engineering and Administrator 20%
- IAM Level 3 Technical Support 10%
MANDATORY SKILLS/EXPERIENCE:
- 12 years in IAM architect, engineering, administration and operations with focus on directory services and PKI
- Deep expertise in Active Directory (on-prem and hybrid), Entra ID, and eDirectory
- Hands-on experience in designing and operating Microsoft PKI, including certificate authority management, certificate lifecycle, and automation
- Solid understanding of modern authentication/authorization protocols (OAuth, SAML,
- Kerberos, etc.)
- Experience with security roadmap development, risk assessment, and compliance (NIST, ISO, SOX or PCI-DSS)
- Strong documentation, communication, and stakeholder management skills
DESIRABLE SKILLS/EXPERIENCE:
- Experience with cloud PKI services
- Familiarity with Entra ID Governance, Conditional Access Policy, and modern security controls
- Experience automating PKI workflows (API/script-based certificate management)
- Multi-forest, multi-tenant IAM architecture expertise Prior experience working with NYC agency
- Working knowledge of enterprise ITSM, change management, and project management methodologies
SPECIAL REQUIREMENTS:
- Ability to work cross-functionality with technical and business stakeholders in a complex enterprise
- Availability to provide after-hours support to critical migrations and incident response
If you are: bright, motivated, skilled, a difference-maker, able to get things done, work with minimum direction,
enthusiastic, a thinker, able to juggle and multi-task, communicate effectively, and lead, then we would like to
hear from you. We need exceptionally capable people for this role for our client, so get back to us and tell us why
you think you are a fit.
About Us:
Since 2000, Tri-Force Consulting Services () has been an MBE/SDB certified IT
Consulting firm in the Philadelphia region. Tri-Force specializes in IT staffing, software development (web and
mobile apps), systems integration, data analytics, system automation, cybersecurity, and cloud technology
solutions for government and commercial clients. Tri-Force works with clients to overcome obstacles such as
increasing productivity, increasing efficiencies through automation, and lowering costs. Our clients benefit from
our three distinguishing core values: integrity, diligence, and technological excellence. Tri-Force is a six-time
winner among the fastest-growing companies in Philadelphia and a four-time winner on the Inc. 5000 list of the
nation's fastest-growing companies.
Never miss an opportunity! Create an alert based on the job you applied for.
