IAM Architect

Overview

On Site
$$80/hr
Accepts corp to corp applications
Contract - W2
Contract - Independent
Contract - 6-12+ month(s)

Skills

IAM Architect directory services PKI Active Directory OAuth SAML Kerberos NIST ISO SOX ITSM (NYC OR State of NY OR OTI)

Job Details

Phone/Skype Hire. Onsite from day 1/Hybrid

Location: Brooklyn, NY

Duration: 12- 24+ months (High Possibility of Further Extensions)

Responsibilities

Assess and develop a roadmap for OTI's disparate directories consolidation

Provide guidance and implementation support for integration with Entra and other IAM security enhancements

Architect and implement Citywide-level PKI modernization, including infrastructure changes for reduced certificate lifespans

Advice on governance, compliance, lifecycle management and automation of digital certificates

Lead migration planning, risk assessment, and mitigation for directories and PKI modernization

Perform technical knowledge transfer, upskilling internal teams on new infrastructure and practices

TASKS:

PKI Architecture, Engineering and Administrator 40%

Entra ID Architecture, Engineering and Administrator 30%

Directory Architecture, Engineering and Administrator 20%

IAM Level 3 Technical Support 10%

Skills Needed

  • 12 years in IAM architect, engineering, administration, and operations with focus on directory services and PKI
  • Deep expertise in Active Directory (on-prem and hybrid), Entra ID, and eDirectory
  • Hands-on experience in designing and operating Microsoft PKI, including certificate authority management, certificate lifecycle, and automation
  • Solid understanding of modern authentication/authorization protocols (OAuth, SAML, Kerberos, etc.)
  • Experience with security roadmap development, risk assessment, and compliance (NIST, ISO, SOX or PCI-DSS)
  • Strong documentation, communication, and stakeholder management skills
  • Experience with cloud PKI services
  • Familiarity with Entra ID Governance, Conditional Access Policy, and modern security controls
  • Experience automating PKI workflows (API/script-based certificate management)
  • Multi-forest, multi-tenant IAM architecture expertise
  • Prior experience working with NYC agency
  • Working knowledge of enterprise ITSM, change management, and project management methodologies
  • Ability to work cross-functionality with technical and business stakeholders in a complex enterprise
  • Availability to provide after-hours support to critical migrations and incident response
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

About Software People, Inc.