IAM Architect with AWS Exp in GA- Full time
Caliber Smart · Alpharetta, GA · 4 wk ago
Art & CreativeFull-time
Key Responsibilities
- AWS IAM Architecture & Design
- Design and implement secure, scalable, and enterprise-grade AWS IAM architectures.
- Develop and manage IAM strategies across single-account and multi-account AWS environments.
- Define role-based access control (RBAC) and least-privilege access models.
- Establish secure cross-account access and resource-sharing mechanisms.
- IAM Governance & Security
- Create, maintain, and optimize IAM policies, permissions boundaries, and trust relationships.
- Implement governance frameworks and IAM best practices across AWS environments.
- Ensure compliance with organizational security standards and cloud security policies.
- Solutioning & Stakeholder Support
- Partner with application teams, architects, and business stakeholders to translate requirements into secure IAM solutions.
- Provide technical guidance and recommendations for AWS authentication and authorization models.
- Lead IAM design discussions and architecture reviews.
- Troubleshooting & Operational Support
- Diagnose and resolve complex IAM-related access and authentication issues.
- Analyze AWS CloudTrail logs, access logs, and related monitoring data to identify root causes.
- Proactively identify security gaps and recommend remediation strategies.
- Documentation & Communication
- Produce detailed architecture diagrams, technical documentation, IAM standards, and operational procedures.
- Communicate technical concepts clearly to both technical and non-technical audiences.
- Lead knowledge-sharing sessions and mentor engineering teams on AWS IAM best practices.
- AWS Identity & Access Management
- Deep expertise in AWS IAM, including:
- IAM Policies
- Roles and Trust Relationships
- Permission Boundaries
- Service Control Policies (SCPs)
- Federation and SSO integrations
- Cross-Account Access Management
- AWS Multi-Account Architecture
- Strong experience designing IAM solutions across complex multi-account AWS environments.
- Knowledge of AWS Organizations and governance frameworks.
- Security & Compliance
- Strong understanding of cloud security principles and identity governance.
- Experience implementing least-privilege access models and security best practices.
- Monitoring & Troubleshooting
- Hands-on experience with:
- AWS CloudTrail
- Access Analyzer
- CloudWatch Logs
- IAM Access Reviews
- Strong root-cause analysis and troubleshooting skills.
- Documentation & Leadership
- Excellent communication and stakeholder management skills.
- Ability to lead technical discussions and provide architecture guidance.
- Strong documentation and presentation capabilities.
- AWS Certified Solutions Architect – Professional
- AWS Certified Security – Specialty
- Experience with IAM automation using Infrastructure as Code (Terraform, CloudFormation, CDK)
- Experience with enterprise identity providers such as Azure AD, Okta, Ping Identity, or SailPoint
- Knowledge of Zero Trust and Identity Governance frameworks