AWS IAM Specialist

Overview

Remote
$60 - $70
Contract - W2

Skills

AWS
IAM

Job Details

Job Summary

We are seeking an experienced AWS IAM Specialist to join our Cloud Infrastructure team. The ideal candidate will be responsible for designing, implementing, and managing AWS Identity and Access Management (IAM) solutions to ensure secure, compliant, and efficient access controls across our AWS environments. The AWS IAM Specialist will collaborate with security, DevOps, and application teams to enforce least-privilege principles and enable secure operations in the cloud.

Key Responsibilities

IAM Design & Implementation

Design and implement IAM policies, roles, and permissions aligned with security best practices and compliance requirements.

Develop and manage IAM solutions including AWS Organizations, Service Control Policies (SCPs), and permission boundaries.

User & Access Management

Manage user identities, federated access, and multi-factor authentication for AWS resources.

Integrate AWS IAM with enterprise identity providers (e.g., Active Directory, Okta, Azure AD) for Single Sign-On (SSO).

Security & Compliance

Conduct IAM reviews, audits, and access certifications to ensure compliance with internal policies and external regulations.

Identify and remediate excessive permissions, orphaned identities, and policy misconfigurations.

Automation & Optimization

Develop automation scripts and tools (using AWS CLI, CloudFormation, Terraform, etc.) to manage IAM resources efficiently.

Implement guardrails and preventive controls to enforce secure access patterns.

Monitoring & Incident Response

Monitor AWS IAM usage and logs for anomalous activity using services like AWS CloudTrail and GuardDuty.

Participate in security incident investigations related to IAM.

Collaboration & Documentation

Collaborate with engineering, security, and compliance teams to define IAM requirements for new projects.

Maintain clear documentation of IAM architecture, processes, and policies.

Qualifications

Required

Bachelor s degree in Computer Science, Information Security, or a related field or equivalent experience.

3+ years of experience working with AWS IAM services in enterprise environments.

Strong knowledge of IAM concepts including:

Policies and permission models

Roles and trust relationships

Service Control Policies (SCPs)

Identity Federation and SSO

Resource-based policies

Experience with Infrastructure-as-Code tools (CloudFormation, Terraform).

Familiarity with security standards such as CIS Benchmarks, NIST, ISO 27001, or SOC2.

Preferred

AWS Certified Security Specialty, AWS Certified Solutions Architect, or similar certification.

Experience integrating AWS IAM with external identity providers (SAML, OIDC).

Knowledge of DevSecOps practices and secure cloud deployments.

Scripting skills (Python, PowerShell, Bash)

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.