CEIPAL is looking for an experienced AWS Cloud IAM Specialist to secure cloud identity infrastructure through policy design, drift remediation, and proactive threat modeling.
Requirements
- 5+ years in cloud IAM or AWS security engineering roles
- Strong experience with AWS IAM, SCPs, and trust policies
- Proficiency in Terraform or AWS CDK for identity enforcement
- Familiarity with cloud threat modeling and identity attack techniques
- Experience with AWS Identity Center and permission boundaries
- AWS Certified Security – Specialty or equivalent
- Experience with cloud security posture management (CSPM) tools
Responsibilities
- Design and optimize IAM policies, SCPs, and trust relationships in AWS
- Enforce identity controls using Infrastructure as Code (Terraform, CDK)
- Remediate drift in AWS Identity Center and ensure consistent access posture
- Collaborate with cloud security and IAM teams to simulate identity-based threats
- Identify misconfigurations and excessive permissions across AWS accounts
Other
- Hybrid Schedule onsite in Fort Mill, SC; Austin, TX; Tempe, AZ; San Diego, CA
- 4 mo. Contract (extension possible based on project needs)
- Background Check :Yes
- Candidate must be authorized to work without sponsorship ::No
