Overview
On Site
USD 65.00 - 75.00 per hour
Contract - W2
Skills
Scripting
Finance
Soft Skills
Customer Facing
RBAC
Authentication
System On A Chip
Sarbanes-Oxley
PCI DSS
Regulatory Compliance
Cloud Computing
Terraform
Identity Management
SailPoint
Oracle Policy Automation
Google Cloud Platform
Google Cloud
API
Authorization
Management
Financial Services
Health Care
Taxes
Life Insurance
Collaboration
Partnership
Business Transformation
Law
Job Details
This is a fully remote job on a 6-month W2 contract that has potential to extend. Candidates must have experience in Google Cloud Platform (Google Cloud Platform) from an IAM standpoint. Candidates without strong experience in that cloud platform will not be considered. Experience with SailPoint is nice to have.
Top Skills' Details
Description
Our financial services client is launching a multi-year cloud modernization on Google Cloud. This role augments the Internal Identity & Access Management team (not customer-facing) to design and implement Google Cloud Platform-native IAM for a new cell-based architecture. You'll define the IAM model (human and workload identities), secure GKE workloads, and codify everything in Terraform-partnering closely with platform, security, and application teams.
Key Responsibilities
Design Google Cloud Platform IAM for a multi-project/cell-based model (human & workload identities, least-privilege RBAC, IAM Conditions, org policies, SA lifecycle).
Secure GKE: implement Workload Identity, workload/service accounts, namespace/RBAC strategy, and controls that support service-to-service auth.
Service Mesh & s2s Auth: define and enable secure service-to-service authentication (mTLS, identity propagation/issuers, policy enforcement) using a mesh or equivalent patterns.
Infrastructure as Code: build and maintain Terraform modules for IAM, org/folder/project policies, GKE identity integrations, and policy-as-code guardrails.
Compliance by design: align IAM patterns to PayPal standards and common frameworks (e.g., SOC/SOX, PCI-DSS) with pragmatic controls and evidence paths.
Collaboration & ownership: partner with multiple platform/app teams; drive work forward, propose best practices, and shoulder ownership of outcomes.
Skills
Iam, Identity access management, Google Cloud Platform, Cloud, terraform, GKE, identity management, Google cloud, sailpoint, policy compliance
Top Skills Details
Iam,Identity access management,Google Cloud Platform,Cloud,terraform,GKE,identity management,Google cloud
Additional Skills & Qualifications
Nice-to-Have / Good-to-Have
Pay and Benefits
The pay range for this position is $65.00 - $75.00/hr.
Eligibility requirements apply to some benefits and may depend on your job
classification and length of employment. Benefits are subject to change and may be
subject to specific elections, plan, or program terms. If eligible, the benefits
available for this temporary role may include the following:
Medical, dental & vision
Critical Illness, Accident, and Hospital
401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available
Life Insurance (Voluntary Life & AD&D for the employee and dependents)
Short and long-term disability
Health Spending Account (HSA)
Transportation benefits
Employee Assistance Program
Time Off/Leave (PTO, Vacation or Sick Leave)
Workplace Type
This is a fully remote position.
Application Deadline
This position is anticipated to close on Nov 11, 2025.
>About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.
The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
About TEKsystems and TEKsystems Global Services
We're a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We're a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We're strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We're building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com.
The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
Top Skills' Details
- Deep Google Cloud Platform IAM expertise: custom roles vs. predefined roles, IAM Conditions, service accounts, org policies, folder/project hierarchy,
- GKE security & identity: GKE Workload Identity, SA design, and securing workload identities in multi-project environments.
- Service mesh & s2s auth: strong understanding of mesh-based identity issuance/verification, policy enforcement.
- Terraform at scale: scripting at scale experience
- End-to-end IAM implementation experience in a regulated (financial) or large-scale enterprise.
- Soft skills: ownership mindset, excellent collaboration, clear written/visual articulation of architecture and tradeoffs.
Description
Our financial services client is launching a multi-year cloud modernization on Google Cloud. This role augments the Internal Identity & Access Management team (not customer-facing) to design and implement Google Cloud Platform-native IAM for a new cell-based architecture. You'll define the IAM model (human and workload identities), secure GKE workloads, and codify everything in Terraform-partnering closely with platform, security, and application teams.
Key Responsibilities
Design Google Cloud Platform IAM for a multi-project/cell-based model (human & workload identities, least-privilege RBAC, IAM Conditions, org policies, SA lifecycle).
Secure GKE: implement Workload Identity, workload/service accounts, namespace/RBAC strategy, and controls that support service-to-service auth.
Service Mesh & s2s Auth: define and enable secure service-to-service authentication (mTLS, identity propagation/issuers, policy enforcement) using a mesh or equivalent patterns.
Infrastructure as Code: build and maintain Terraform modules for IAM, org/folder/project policies, GKE identity integrations, and policy-as-code guardrails.
Compliance by design: align IAM patterns to PayPal standards and common frameworks (e.g., SOC/SOX, PCI-DSS) with pragmatic controls and evidence paths.
Collaboration & ownership: partner with multiple platform/app teams; drive work forward, propose best practices, and shoulder ownership of outcomes.
Skills
Iam, Identity access management, Google Cloud Platform, Cloud, terraform, GKE, identity management, Google cloud, sailpoint, policy compliance
Top Skills Details
Iam,Identity access management,Google Cloud Platform,Cloud,terraform,GKE,identity management,Google cloud
Additional Skills & Qualifications
Nice-to-Have / Good-to-Have
- SailPoint exposure (helpful; team uses it).
- Policy-as-code (e.g., OPA/Gatekeeper), admission controls.
- Google Cloud Platform API gateway patterns (e.g., Apigee) and identity/authorization integration.
- Secrets management, KMS patterns.
- Experience in finserv - Financial Services - industry (preferred) or other regulated industries (healthcare, etc.).
Pay and Benefits
The pay range for this position is $65.00 - $75.00/hr.
Eligibility requirements apply to some benefits and may depend on your job
classification and length of employment. Benefits are subject to change and may be
subject to specific elections, plan, or program terms. If eligible, the benefits
available for this temporary role may include the following:
Medical, dental & vision
Critical Illness, Accident, and Hospital
401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available
Life Insurance (Voluntary Life & AD&D for the employee and dependents)
Short and long-term disability
Health Spending Account (HSA)
Transportation benefits
Employee Assistance Program
Time Off/Leave (PTO, Vacation or Sick Leave)
Workplace Type
This is a fully remote position.
Application Deadline
This position is anticipated to close on Nov 11, 2025.
>About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.
The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
About TEKsystems and TEKsystems Global Services
We're a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We're a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We're strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We're building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com.
The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.