CareerZen Logo
Company logo

IAM Consultant

OZ Solutions Group

Contract

Brooklyn, NY

Job description

We are seeking an IAM Consultant to join the team.

Work Location: Hybrid - Brooklyn, NY & Remote (2 days in office/3 days remote)

Schedule: Normal business hours Monday-Friday 35 hours/week (not including mandatory unpaid meal break after 6 hours of work).

Scope:

  • Assess and develop a roadmap for OTI’s disparate directories consolidation
  • Provide guidance and implementation support for integration with Entra and other IAM security enhancements
  • Architect and implement Citywide-level PKI modernization, including infrastructure changes for reduced certificate lifespans
  • Advice on governance, compliance, lifecycle management and automation of digital certificates
  • Lead migration planning, risk assessment, and mitigation for directories and PKI modernization
  • Perform technical knowledge transfer, upskilling internal teams on new infrastructure and practices

Tasks:

  • PKI Architecture, Engineering and Administrator – 40%
  • Entra ID Architecture, Engineering and Administrator – 30%
  • Directory Architecture, Engineering and Administrator – 20%
  • IAM Level 3 Technical Support – 10%

Mandatory Skills/Experience:

  • 12 years in IAM architect, engineering, administration and operations with focus on directory services and PKI
  • Deep expertise in Active Directory (on-prem and hybrid), Entra ID, and eDirectory
  • Hands-on experience in designing and operating Microsoft PKI, including certificate authority management, certificate lifecycle, and automation
  • Solid understanding of modern authentication/authorization protocols (OAuth, SAML, Kerberos, etc.)
  • Experience with security roadmap development, risk assessment, and compliance (NIST, ISO, SOX or PCI-DSS)
  • Strong documentation, communication, and stakeholder management skills

Desirable Skills/Experience:

  • Experience with cloud PKI services
  • Familiarity with Entra ID Governance, Conditional Access Policy, and modern security controls
  • Experience automating PKI workflows (API/script-based certificate management)
  • Multi-forest, multi-tenant IAM architecture expertise
  • Prior experience working with NYC agency
  • Working knowledge of enterprise ITSM, change management, and project management methodologies

Special Requirements:

  • Ability to work cross-functionality with technical and business stakeholders in a complex enterprise
  • Availability to provide after-hours support to critical migrations and incident response

Job Type: Contract

Pay: $60.00 - $75.00 per hour

Expected hours: 35 per week

Experience:

  • IAM architect, engineering, administration and operations: 10 years (Preferred)

Ability to Commute:

  • Brooklyn, NY 11201 (Required)

Work Location: Hybrid remote in Brooklyn, NY 11201

Apply