Hi All,
Hope everything going well,
Kindly share suitable profile to sandhya@synergyassure.com or reach me at +1-726-229-1448
Job Description / Justification:
Infrastructure Resilience is undertaking a major transformation
of its Identity Access Management ecosystem by consolidating
disparate directories and modernizing Citywide PKI to align with
industry best practices and regulatory demands.
Assignment Number and Title:
Labor Category Specialist 3
Work Location:
On Site
Hybrid: Work location & Remote
Remote: Monday- Friday; 9-5
Scheduled Work Hours: Normal business hours Monday-Friday 35 hours/week (not
including mandatory unpaid meal break after 6 hours of work).
Projected Assignment Start Date: 11/24/2025
Projected Assignment End Date: 11/22/2026
Total Estimated Assignment
Note: Normal Business Hours, Monday through Friday (not including
a mandatory unpaid meal break after 6 hours of work), 35
work hours per week. If the consultant works more than 35
hours per week, the consultant must request overtime in the
Agency's timekeeping system and the project manager must
approve those hours worked above the weekly maximum.
SCOPE OF SERVICES:
• Provide guidance and implementation support for integration with Entra and other IAM
security enhancements
The Citywide Identity and PKI Modernization project.
IAM CONSULTANT
Professional IT Services
Assess and develop a roadmap for Agency’s disparate directories consolidation
Hours:
2 of 3
• Architect and implement Citywide-level PKI modernization, including infrastructure
changes for reduced certificate lifespans
• Advice on governance, compliance, lifecycle management and automation of digital
certificates
• Lead migration planning, risk assessment, and mitigation for directories and PKI
modernization
• Perform technical knowledge transfer, upskilling internal teams on new infrastructure
and practices
TASKS:
• PKI Architecture, Engineering and Administrator – 40%
• Entra ID Architecture, Engineering and Administrator – 30%
• Directory Architecture, Engineering and Administrator – 20%
• IAM Level 3 Technical Support – 10%
MANDATORY SKILLS/EXPERIENCE Note: Candidates who do not have the mandatory skills will
not be considered.
•
directory services and PKI
• Deep expertise in Active Directory (on-prem and hybrid), Entra ID, and eDirectory
• Hands-on experience in designing and operating Microsoft PKI, including certificate
authority management, certificate lifecycle, and automation
• Solid understanding of modern authentication/authorization protocols (OAuth, SAML,
Kerberos, etc.)
• Experience with security roadmap development, risk assessment, and compliance
(NIST, ISO, SOX or PCI-DSS)
• Strong documentation, communication, and stakeholder management skills
13 years in IAM architect, engineering, administration and operations with focus on
DESIRABLE SKILLS/EXPERIENCE:
• Experience with cloud PKI services
• Familiarity with Entra ID Governance, Conditional Access Policy, and modern security
controls
• Experience automating PKI workflows (API/script-based certificate management)
• Multi-forest, multi-tenant IAM architecture expertise
•
Working knowledge of enterprise ITSM, change management, and project management
methodologies
SPECIAL REQUIREMENTS: N/A
• Ability to work cross-functionality with technical and business stakeholders in a
complex enterprise
Background check may be required for the selected candidate.
MWBE- 7-858-0704A_ IAM CONSULTANT (RI 0693A) Page 3 of 3
