IAM Engineer

Identity and Access Management (IAM) Engineer IV
Remote working CST hours
6-month contract

Responsibilities

• Design, implement, and manage AWS IAM solutions at scale, including:
• Access Analyzer
• Service Control Policies (SCPs)
• Boundary Policies
• User and Role Management
• Implement and maintain Terraform-based automation for IAM policies and infrastructure.
• Integrate IAM solutions into CI/CD pipelines (GitHub Actions).
• Leverage new AWS capabilities such as Amazon Verified Permissions and Cedar policies.
• Collaborate closely with a team of engineers in a highly collaborative, paired-programming, and cross-training environment.
• Deliver IAM as a service for the organization, ensuring consistency, scalability, and security.

Required Skills

• 3 years of hands-on expertise in AWS IAM (Access Analyzer, SCPs, boundary policies, user/role management).
• Strong Terraform experience - mandatory requirement.
• Candidates without Terraform experience will be disqualified.
• Experience embedding IAM into DevOps pipelines (preferably GitHub Actions).
• Proven track record of delivering IAM at scale (not just one-off or app-specific implementations).
• Strong collaborative skills; comfortable working in small engineering team.