Cloud Engineer - IAM

Job Title: Cloud Engineer - IAM

Duration: 6 months Contract

Location: Plano TX

Pay Rate: $79.00 hourly

JOB DESCRIPTION

What were looking for

Cloud Engineering team is seeking a highly skilled Cloud Engineer Identity. This senior-level role is responsible for designing and managing cloud identity and access management (IAM) solutions that ensure secure scalable and compliant access across clients cloud environments.

You will lead initiatives that strengthen our identity governance enforce least-privilege access and support automation and compliance across AWS and other platforms. This role requires deep technical expertise in IAM strong collaboration skills and a passion for secure cloud architecture.

What youll be doing

IAM Implementation: Assist in configuring and managing IAM roles policies and permission boundaries across AWS environments.

Access Controls: Support the enforcement of least-privilege access and RBAC/ABAC models across cloud accounts.

Infrastructure as Code (IaC): Contribute to the development of reusable IAM modules using Terraform or AWS CDK.

CI/CD Support: Help integrate identity validation into CI/CD pipelines to ensure secure deployments.

Security & Compliance: Collaborate with security teams to align IAM practices with compliance standards and audit requirements.

Monitoring & Troubleshooting: Monitor IAM activity and assist in investigating identity-related issues using tools like AWS CloudTrail and Config.

Team Collaboration: Work with engineering security and compliance teams to support identity initiatives and improve IAM processes.

Requirements:

I would like to see candidates with more Python coding experience. Id like to add they should also have experience with Lambda as it relates to Python. We use a lot of Lambda that is triggered by different events.

We implement our solutions using Terraform and soon to be Harness. If would be great if the candidate has Harness experience in addition to Terraform.

Years of experience: 7-10 years with 3 5 years specifically in cloud engineering DevOps or identity and access management (IAM) roles

3 days onsite in a week and down the line would be 4 days. (Plano TX)

Interview Process: 2 rounds of interview and Last round would be in person round.

Qualifications/ What you bring (Must Haves) Highlight Top 3-5 skills

3 5 years of hands-on experience in cloud engineering DevOps or identity and access management (IAM) roles.

Strong expertise in AWS Identity Center IAM Organizations and Single Sign-On (SSO).

Proficient in Infrastructure as Code (IaC) using tools such as Terraform AWS Cloud Development Kit (CDK) or similar.

Solid understanding of identity governance access control principles and least privilege enforcement.

Skilled in Python for automation scripting and integration tasks.

Familiarity with AWS monitoring and auditing tools like CloudTrail AWS Config and Security Hub.

Experience with CI/CD pipelines version control (e.g. Git) and deployment automation.

Knowledge of cloud security best practices including encryption key management and compliance frameworks.

Comfortable working in multi-account AWS environments and managing cross-account access.

Added bonus if you have (Preferred):

Leadership skills (Someone who has led the team).

- Total years of experience 7 -10 years.

- Interview process: 2 rounds and MS teams In-person. (Technical round).

- STAR based.