The Identity and Access Management Practice (IAMP) is seeking procurement of one (1) Fee-for-Service (FFS) resources to support the products and services of the IAMP Digital Credentials team (DCT), including the Enterprise Credentials Platform (ECP).
The resources will be sourced through the Managed Service Provider (MSP) for Contingent IT Resources Vendor of Record (VOR), with an estimated procurement value of $288,540. The engagement assignments will cover the period from April 1, 2026, to March 31, 2027.
Digital Identity Project Specific responsibilities:
Responsibilities/Assignment Deliverables:
• To take a leadership role acting on behalf of ODS Program Implementation Office, and the Ontario Digital Service for the technology architecture, design and build of a digital credential platform and related products
• To design and maintain a digital credential technology architecture representing the necessary ecosystem components that is based on the world wide web consortium (W3C) verifiable credentials (VC) model, utilizing decentralized identifiers (DIDs), DIDComm communication protocols, and related industry standards and frameworks such as the PCTF, NIST and eIDAS etc
• Work with ministry/OPS staff to lead the development of key (technology) architecture artefacts to support the architectural gating process
• Development of an implementation roadmap and options for a verifiable credential model approach, that takes into consideration the requisite components, technology required/involved, ministry readiness, market readiness and maturity; develop short term tactical and longer term strategic implantation plans and options
• Identify and evaluate commercially ready products and open source solutions that are viable for use and implementation; including assessment and recommendations of products
• Align the technology architecture for digital credentialing (VC Model, DID) with the Enterprise Identity and Access Management solution to ensure integration where required, including alignment with the OPS policy on identity and credential assurance levels.
• Work with product teams to develop the technology requirements and to ensure alignment towards the enterprise solution approach and roadmap.
• Lead and work with technical and product development engineers to develop functional proofs of concept, pilot implementations and/or final product implementations of solutions that align with the enterprise digital credential solutions roadmap, including digital wallets, mobile apps on iOS/Android devices, web sites and back-end infrastructure.
Lead multi-disciplinary and globally distributed teams to solution delivery, utilizing collaboration platforms and agile delivery methodology.
Engage with, and facilitate contributions from the OpenSource community to solve solution challenges, obtain advice and to align Ontario’s approach with the direction of the community.
• Provide technology advice and recommendations to executives, management and product teams working on digital credentialing solutions; prepare communications/briefing material as required to effectively communicate recommendations and/or findings from assessments
• Provide expertise and guidance to product, policy and technical implementation teams regarding use, adoption and alignment with industry standards to maximize interoperability and avoid product lock-in; develop recommendations for adoption of standards and related frameworks for digital identity.
General Role Responsibilities:
Develops, recommends, implements and manages the technical architecture (hardware, software, database and communications) which will be used for all or specific applications in a large, distributed cross-platform environment.
Responsibilities also include the identification of relevant information and the determination of the environment, which will be used for development.
General Skills:
Leadership experience in the development and implementation of technical architectures at the specified experience level
Extensive experience with at least three different platforms, operating systems, environments, database technologies, and communications protocols
Experience with middleware and gateways
Knowledge of performance considerations in different environments
Experience in structured methodologies for the design, development and implementation of applications
Extensive experience in systems analysis and design in large systems environments
Knowledge and experience designing processes around ITIL and is able to guide others using this methodology
Experience translating business requirements into reporting needs
Experience preparing conceptual, logical and/or physical processes and data models
Experience developing, recommending, implementing and managing technical architecture
Experience in the use of Computer Aided Software Engineering (CASE) tools and other software tools such as project management tools
Awareness of emerging technologies, trends and directions
Excellent analytical, problem-solving and decision-making skills; verbal and written communication skills; interpersonal and negotiation skills
A team player with a track record for meeting deadlines
Experience in developing enterprise architecture deliverables (e.g. models)
Desirable Skills:
Experience in developing enterprise architecture deliverables (e.g. models) based on Ontario Government Enterprise Architecture processes and practice
Knowledge and understanding of Enterprise Content Management (Open Text ECM applications)
Knowledge and understanding of Information Management principles, concepts, policies and practices
MANDATORY 1 of 2: Technical Experiences
OWF ACA-Py Cloud Agent centralized issuer service;
Credo Framework for digital wallets (formerly AFJ);
OWF Bifold Wallet
JOSE/COSE, Oauth2 JWT/JWS, ECDSA/EdDSA, JOSE/COSE, ECC/RSA, TLS, PKI, X.509 certificates, IETF Status Lists, device‑bound keys for holder binding (e.g., SD‑JWT+KB (key binding) and mdoc transaction signing).
Zero Knowledge Proofs (ZKP) ;
Oauth2 OpenID Connect, OIDC4VC, OIDC4VP
DIF Presentation Exchange
DIDComm
DID methods: DID:KEY, DID:WEB, DID:PEER (RFC0627)
Knowledge with ISO/IEC 18013‑5 (mdoc/mDL) and 18013‑7 (online presentation); familiarity with 23220‑4 operational protocols is an asset.
Digital wallet development experience in native and/or hybrid app; hardware level encryption (HLE), use of secure elements on mobile devices (e.g., Apple Secure Enclave).
ReactNative,
Mobile Development
Microsoft Azure and RedHat OpenShift
MANDATORY 2 of 2: Leadership Experiences
Demonstrated Technology Leadership, and Vision - Develop, socialize and obtain buy in for multi-year technology roadmaps, and must include recent example involving digital credentials based on SSI and W3C
Facilitate and build partnerships to establish high performing teams
Excellent communication skills with ability to engage with a variety of technical professionals and non technical executives. Experienced working within the public sector.
Experienced with leading and developing architectural documents, such as solutions requirements and architecture designs
****************
Required Skills
• Demonstrated Technology Leadership, and Vision - Develop, socialize and obtain buy in for multi-year technology roadmaps, and must include recent example involving digital credentials
• 10+ years in designing and developing enterprise technology solutions in complex environments, with experience in both public/broader public and private sectors
• Experience in developing digital credential solutions, including digital wallet solutions on mobile (ie. iOS and Android) devices, distributed ledger technologies, verifiable credentials (VC), verifiable credential registries, verifiable presentations, decentralized identifiers (DIDs), use cryptographic suites/tools, zero-knowledge proofs
• Extensive knowledge of related standards and market direction - W3C, DIF, TrustOverIP, OIDC and Open Wallet Foundation. Specific technologies JWT/JWS, JSON-LD, Public/Private key cryptography (EdDSA, EcDSA), zero knowledge proofs , DIDComm, ACA-Py, Credo Framework for Digital Wallet, Oauth2 OpenID Connect, OIDC4VC, OIDC4VP
• Experience with and understanding of the W3C Verifiable Credential (VC) Data Model, VC Implementation Guidelines, Decentralized Identifiers, trust registries and frameworks.
• Experience with designing/developing digital credential solutions that use/are integrated with trust registries/status lists including use of wallet applications on mobile devices and/or in cloud based environments
• Expertise in designing, building and configuring infrastructure in an Azure cloud environment
• Experience in developing solutions utilizing hardware level encryption (HLE) in local and cloud based environments; secure elements on mobile devices (e.g Apple Secure Enclave)
• Extensive Mobile development experience on Android and IOS - React Native, Javascript, GitHub
• Expert knowledge and experiences on Web 2.0 technologies including HTML5, JavaScript, CSS3, jQuery, Python, Node.js
• Expert knowledge in designing and developing solutions using programming languages such as Java, C, C#,
• Expert knowledge and experience with RESTful API services
• Experience designing and developing cloud native solutions; use of containers, etc
• Leading technical software engineers through the design process, and demonstrating examples through functional code development.
• Experience leading architecture teams and delivery of key design artifacts - including solution requirements and solution architecture documents
• Mange team building through project delivery, use of collaboration platforms and agile project delivery. Experience working with cross-jurisdictional / interprovincial teams in a government a setting/environment
• Excellent written and illustration/design skills to formulate technical documentation; evaluation and comparison documents and recommendations for management decision
• Excellent verbal and presentation capability to brief senior management and executives on various components of the technical design, architecture and/or solution components.
Evaluation Criteria:
Technical - 50%
Analysis - 20%
Leadership Skills - 20%
Communications and Reporting - 10%
Applications for this position will be accepted until Friday, April 24, 2026 at 12:00 p.m..
If you meet the requirements for this role, please apply now.
Apply for This PositionClick "Apply." If no email opens, check your pop-up blocker or email your resume directly to resume@govtechtalentsolutions.ca, including the Requisition Number and Job Title in the subject line.