IAM Architect with AWS Exp in GA- Full time

Role: IAM Architect with AWS Exp in GA

Location: Atlanta, GA (Onsite)

Job Type: Full-Time
 

Position Overview

Client is seeking an experienced AWS IAM Architect with deep expertise in AWS Identity and Access Management (IAM). The ideal candidate will be responsible for designing, implementing, governing, and troubleshooting enterprise-scale IAM solutions across complex AWS environments. This role requires a combination of strategic architecture, hands-on technical implementation, security best practices, and stakeholder collaboration.

Key Responsibilities

AWS IAM Architecture & Design

• Design and implement secure, scalable, and enterprise-grade AWS IAM architectures.
• Develop and manage IAM strategies across single-account and multi-account AWS environments.
• Define role-based access control (RBAC) and least-privilege access models.
• Establish secure cross-account access and resource-sharing mechanisms.

IAM Governance & Security

• Create, maintain, and optimize IAM policies, permissions boundaries, and trust relationships.
• Implement governance frameworks and IAM best practices across AWS environments.
• Ensure compliance with organizational security standards and cloud security policies.

Solutioning & Stakeholder Support

• Partner with application teams, architects, and business stakeholders to translate requirements into secure IAM solutions.
• Provide technical guidance and recommendations for AWS authentication and authorization models.
• Lead IAM design discussions and architecture reviews.

Troubleshooting & Operational Support

• Diagnose and resolve complex IAM-related access and authentication issues.
• Analyze AWS CloudTrail logs, access logs, and related monitoring data to identify root causes.
• Proactively identify security gaps and recommend remediation strategies.

Documentation & Communication

• Produce detailed architecture diagrams, technical documentation, IAM standards, and operational procedures.
• Communicate technical concepts clearly to both technical and non-technical audiences.
• Lead knowledge-sharing sessions and mentor engineering teams on AWS IAM best practices.

Required Skills & Experience

AWS Identity & Access Management

• Deep expertise in AWS IAM, including:
  • IAM Policies
  • Roles and Trust Relationships
  • Permission Boundaries
  • Service Control Policies (SCPs)
  • Federation and SSO integrations
  • Cross-Account Access Management

AWS Multi-Account Architecture

• Strong experience designing IAM solutions across complex multi-account AWS environments.
• Knowledge of AWS Organizations and governance frameworks.

Security & Compliance

• Strong understanding of cloud security principles and identity governance.
• Experience implementing least-privilege access models and security best practices.

Monitoring & Troubleshooting

• Hands-on experience with:
  • AWS CloudTrail
  • Access Analyzer
  • CloudWatch Logs
  • IAM Access Reviews
• Strong root-cause analysis and troubleshooting skills.

Documentation & Leadership

• Excellent communication and stakeholder management skills.
• Ability to lead technical discussions and provide architecture guidance.
• Strong documentation and presentation capabilities.

Preferred Qualifications

• AWS Certified Solutions Architect – Professional
• AWS Certified Security – Specialty
• Experience with IAM automation using Infrastructure as Code (Terraform, CloudFormation, CDK)
• Experience with enterprise identity providers such as Azure AD, Okta, Ping Identity, or SailPoint
• Knowledge of Zero Trust and Identity Governance frameworks