Job Certified IAM Consultant/Security Lead is shared with you

8 views
Skip to first unread message

Sheldon Fernandez

unread,
May 26, 2026, 5:39:00 PMMay 26
to Sheldon Fernandez

I’m working with Montgomery County on an opportunity and wanted to connect regarding a Security Architect / IAM and Cloud Security Lead role.

Please review the details below and let me know if you’re interested. If so, share your resume, rate expectations, and availability. If you are not open to relocation or the work model/location does not align with your preferences, please disregard this email, and I apologize for taking your time.

Additional Details:

Client: Montgomery County
Job ID: 26-32_3
Location: Norristown, PA (Hybrid)
Address: Norristown, PA 19404
Duration: 3 Years

Work Model:

  • Full-Time Hybrid role
  • Local or regional candidates preferred for onsite meetings, workshops, tabletop exercises, assessments, and incident coordination
  • Must be comfortable with onsite travel to County locations when required

About the Role:

This role serves as the Security Architect / IAM and Cloud Security Lead, responsible for leading IAM modernization, cloud/hybrid security architecture, zero trust initiatives, and technical remediation strategies. You’ll convert assessment findings into secure, scalable architectures aligned with NIST frameworks and County cybersecurity priorities.

Scope of the Project:

The focus is on strengthening identity security, cloud and hybrid environments, zero trust architecture, vulnerability remediation, endpoint security, logging/monitoring, and data protection strategies in a regulated public-sector environment.

Daily Duties / Responsibilities:

  • Lead secure architecture reviews across on-prem, cloud, and hybrid environments
  • Lead IAM strategy and technical assessments aligned to NIST 800-53 controls
  • Assess and improve Microsoft Entra ID, Active Directory, MFA, Conditional Access, RBAC, PAM/PIM, and identity lifecycle processes
  • Review endpoint security, network access controls, segmentation, and zero trust opportunities
  • Support security assessments, vulnerability remediation, and penetration testing reviews
  • Develop security architecture recommendations, technical roadmaps, and target-state designs
  • Support data protection, encryption, DLP, governance, and sensitive-data strategies
  • Evaluate security tooling (SIEM, EDR/XDR, DLP, IAM, PAM, cloud security, vulnerability platforms) for optimization and maturity
  • Collaborate with GRC and SecOps teams to improve detection, response, and compliance readiness
  • Participate in executive briefings to communicate technical risks and investment priorities
  • Guide technical SMEs across IAM, cloud, endpoint, network, and application security domains

Required Skills (Ranked):

  • 10+ years experience in Cybersecurity Architecture, IAM, Cloud Security, or Infrastructure Security
  • Strong hands-on experience with IAM modernization, Entra ID / Hybrid AD, MFA, RBAC, Conditional Access, and Privileged Access Management
  • Experience assessing cloud, hybrid, and on-prem security architectures
  • Strong knowledge of Zero Trust, NIST control implementation, secure configurations, logging, monitoring, and defense-in-depth
  • Experience leading technical workshops, architecture reviews, and remediation planning
  • Ability to communicate technical security risks to executive audiences

Preferred Certifications:

  • CISSP and/or CCSP (preferred)
  • Microsoft: SC-100, SC-200, SC-300, AZ-500, MS-102, Azure Solutions Architect
  • AWS Security Specialty
  • GIAC Cloud / Security Certifications

Environment and Tools:

  • Microsoft Entra ID / Active Directory
  • Azure / AWS Security Services
  • Microsoft Defender XDR / Sentinel
  • Intune / Purview / DLP
  • Conditional Access / MFA / PIM / PAM
  • SIEM / EDR / XDR Platforms
  • Tenable / Qualys / Rapid7
  • VPN / NAC / ZTNA / Network Segmentation
  • Encryption / Key Management / CASB / SSE
  • Visio / Lucidchart

Additional Skills:

  • Strong cybersecurity architecture and technical leadership capability
  • Strong stakeholder communication across technical and executive teams
  • Ability to work in regulated public-sector environments
  • Strong documentation and remediation planning capability

This is not a hands-on SOC or cloud admin role you’re expected to lead enterprise IAM, cloud security architecture, and zero trust transformation efforts. If someone only has operational security experience without architecture and IAM modernization leadership, they’ll struggle here.



Thanks,
Sheldon Fernandez
she...@elegantsolutions.us      
Elegant Enterprise-Wide Solutions, Inc
ISO 9001:2015, ISO 27001:2013, ISO 200000-1:2018 Certified Company
Prime on CIO-SP3 (8a & SB), eFAST, GSA Schedule 70, Seaport-e and State/ Local contracts
www.elegantsolutions.us
Elegant Enterprise-Wide Solutions, Inc. provides equal employment opportunities to all employees and applicants without regard to race, color, religion, sex, national origin, age, disability, veteran status, or any other legally protected status.
Confidentiality Notice: This email and any attachments may contain confidential and privileged information intended solely for the addressee. If you received this message in error, please notify the sender and delete it immediately.

Reply all
Reply to author
Forward
0 new messages