Cloud IAM Engineer

Preferred characteristics:

• SME with IAM technologies, process and cloud capabilities
• Expertise in scripting, coding pipelines and jobs to enable full-scale automation
• Experience in cloud governance, audit, controls and compliance
• Cloud monitoring, detection, threat intelligence tools and resolution
• Adept professional communication with technical, product and business owners
• Ability to compile and drive Cloud IAM solutions with the requirements of engineering, product and application teams
• Experience working in Matrix teams and own deliverables

 
Job Duties & Responsibilities:

• Responsible for delivering Cloud IAM solution implementation and operations within multiple ARTs
• Owns day-to-day activities for ARTs with Cloud IAM solution, implementation, architecture feasibility
• Liaise between Cloud IAM Engineering, BAU and ARTs/ Engineering teams to effectively collaborate Cloud IAM engineering requirements, efforts and outcomes with ART roadmap and deliverables
• Operates in a Hub – spoke model, as a Cloud IAM SME for each ART assigned
• Participates and contributes to PI planning meetings in their assigned ART
• Understands the projects that are deployed on AWS and comprehends dependency on IAM team
• Does feasibility study on the task Accepts/diverts to other teams based on the study
• Collaborate with Risk, Assurance and other teams in defining and managing controls for Cloud IAM
• Understands the requirements that come from ART team for Role Creation/modification
• Operationalize ART-level work intake, Incidents, issues and manage the backlog required to enable ARTs to migrate and adapt Cloud platform standardization
• Conducts roles’ permissions security and compliance checks with CIE restricting requirements
• Creates Service Tickets and obtains approvals from role owners and accounts
• Prepares templates as needed for Ops (BAU) team
• Facilitates expediting specific access requests
• Provides break-fix troubleshooting support for the ART through ITIL Incidents.
• Drive implementation within ARTs adhering Cloud IAM standards, best practices and company security/ governance expectations
• Maintains access to architectural designs and documentation for the products in the ART
• Own ART-level backlog, work intake and tickets for their respective ARTs
• Provides Sprint updates to RTEs and Product Owners.

Technical Skills:

• 4+ years of experience engineering AWS IAM and/or AWS Security solutions.
• 7+ years of experience developing automated solutions using Python scripts, modules, and/or packages for managing AWS configuration.
• 4+ years of experience in planning, building, & managing AWS IAM Policies, SAML Roles, Cross-Account Roles, Service-Link Roles, and applying access conditions & restrictions.
• 4+ years of experience in the development & operational support of AWS IAM processes, application integrations, vulnerability management, workload support, regulatory compliance, and service delivery/management.
• 4+ years of experience developing Infrastructure-as-Code solutions via Terraform.
• 5+ years in CI/CD automation using industry standard tools (Bitbucket, Jenkins, EKS, ECR, Chef etc.) DevOps & CI/CD best practices.
• AWS / Cloud IAM implementation with AWS IAM, Identity Center, Access Analyzer and all associated AWS PaaS, IaaS services
• Strong understanding of identity and access management principles and best practices on AWS.