Cloud IAM Engineer
Role details
Job location
Tech stack
Job description
-
Collaborate with cross-functional cloud teams including security, infrastructure, service engineering and business application teams to define and implement IAM roles and policies required to build, support and consume services in public cloud.
-
Define and develop security controls and tools to ensure IAM implementation in public cloud environments are compliant with cloud security standards and policies.
-
Build automation and libraries to enable developers to create IAM identities and permissions through self-service. Deliver IAM solutions through CI/CD pipelines with automated testing and validation.
-
Build and enhance Python-based frameworks used for:
o Security control orchestration o Detection and response workflows
- Develop integrations with:
o Cloud services (APIs, services, identity layers) o Security tooling and platforms
- Contribute to:
o Preventative controls (policy enforcement, OPA/Rego) o Detective controls (event-driven detection logic)
- Write and maintain:
o Automated unit tests o Integration and behavioral tests
-
Support CI/CD integration and continuous validation of controls
-
Collaborate with:
o Security Controls Engineers o Threat Modelers o Cloud Architects
Requirements
This is not a traditional security or IAM role. It is a development-heavy engineering role requiring strong coding expertise. Candidates must have proven Python development experience.
-
Minimum of 3 years of hands-on experience working with cloud-native services in AWS or GCP.
-
Advanced proficiency in Python (non-negotiable)
-
Experience with:
o API development and integrations o Writing scalable, production-grade code
-
Automated testing framework
-
Experience in the design and implementation of enterprise security solutions in Financial Services or a large complex and/or global environment
-
Highly motivated self-starter with excellent interpersonal and communication skills
-
Ability to work independently, multi-task, and take ownership of various parts of a project or initiative.
-
Relevant certifications such as CISSP, AWS Certified Security Specialty, Google Professional Cloud Security Engineer are desirable
-
MUST pass a Karat Assessment - Python focused
Critical Competencies:
-
Experience with infrastructure as code (IaC) tools: Terraform and CloudFormation
-
Proficiency in Python, Go or Java
-
Proficiency in unit testing frameworks such as Behave, pytest or Junit
-
Proficiency in developing and securing SOAP and REST based web service APIs
-
Experience in DevOps and agile methodologies and automated solution delivery and testing through CI/CD pipelines, Qualifications : BACHELOR OF COMPUTER SCIENCE
Benefits & conditions
(part of Tata group) 3.93.9 out of 5 stars Irving, TX $100,000 - $130,000 a year