IAM Consultant; PKI and Entra

• Assess and develop a roadmap for OTI’s disparate directories consolidation
• Provide guidance and implementation support for integration with Entra and other IAM security enhancements
• Architect and implement Citywide-level PKI modernization, including infrastructure changes for reduced certificate lifespans
• Advice on governance, compliance, lifecycle management and automation of digital certificates
• Lead migration planning, risk assessment, and mitigation for directories and PKI modernization
• Perform technical knowledge transfer, upskilling internal teams on new infrastructure and practices

• PKI Architecture, Engineering and Administrator – 40%
• Entra , Engineering and Administrator – 30%
• Directory Architecture, Engineering and Administrator – 20%

• 12 years in IAM architect, engineering, administration and operations with focus on directory services and PKI
• Deep expertise in Active Directory (on-prem and hybrid), Entra , and eDirectory
• Hands-on experience in designing and operating Microsoft PKI, including certificate authority management, certificate lifecycle, and automation
• Experience with security roadmap development, risk assessment, and compliance (NIST, ISO, SOX or PCI-DSS)
• Strong documentation, communication, and stakeholder management skills

• Experience with cloud PKI services
• Familiarity with Entra , Conditional Access Policy, and modern security controls
• Experience automating PKI workflows (API/script-based certificate management)
• Prior experience working with NYC agency
• Working knowledge of enterprise ITSM, change management, and project management methodologies

• Ability to work cross-functionality with technical and business stakeholders in a complex enterprise
• Availability to provide after-hours support to critical migrations and incident response

DIGITAL TECHNOLOGIES LLC is an equal opportunity employer inclusive of female, minority, disability and veterans, (M/F/D/V). Hiring, promotion, transfer, compensation, benefits, discipline, termination and all other employment decisions are made without regard to race, color, religion, sex, sexual orientation, gender identity, age, disability, national origin, citizenship/immigration status, veteran status or any other protected status. DIGITAL TECHNOLOGIES LLC will not make any posting or employment decision that does not comply with applicable laws relating to labor and employment, equal opportunity, employment eligibility requirements or related matters.

Nor will DIGITAL TECHNOLOGIES LLC require in a posting or otherwise U.S. citizenship or lawful permanent residency in the U.S. as a condition of employment except as necessary to comply with law, regulation, executive order, or federal, state, or local government contract.