AWS Data Lake IAM Engineer

Job Description:

Responsibilities:

• AWS Lake Formation Implementation: Configure and manage AWS Lake Formation to establish secure, scalable data lakes, ensuring robust data governance and access control.
• IAM Configuration: Implement and manage AWS IAM solutions, including role-based access control (RBAC) and least privilege access to protect critical systems and data.
• Access Control Automation: Develop automated access control mechanisms to streamline user access management and enhance security.
• User Lifecycle Management: Build and maintain tooling for efficient user lifecycle management, including onboarding, offboarding, and access reviews.
• Identity Governance: Implement identity governance practices to ensure regular review, validation, and auditing of user access permissions.
• Data Security and Compliance: Utilize AWS Lake Formation to enforce data governance policies and ensure compliance with export control regulations.
• Documentation: Create and maintain detailed documentation of configurations, processes, and security protocols for internal use and audits.
• 5+ years of experience with AWS services, with at least 2 years of hands-on experience with Lake Formation. Strong command of IAM, KMS, S3 bucket policies, and VPC security controls.
• Deep understanding of Lake Formation resource links, cross-account permissions, and data mesh architecture principles.
• Experience with data cataloging, classification, encryption, and auditing in cloud environments.
• Familiarity with CI/CD pipelines, Terraform/CloudFormation, and Infrastructure as Code (IaC) practices.
• Experience with data classification and tagging strategies in Lake Formation for effective policy enforcement.
• Experience performing security assessments and audits of existing AWS data lake environments and provide actionable recommendations