IAM AWS Architect

• · Design, architect, and implement
  AWS IAM solutions
  , including policies, roles, permissions, and federation.
• · Provide strategic guidance on identity lifecycle management, authentication, authorization, and access governance.
• · Collaborate with security, cloud, and application teams to ensure best practices in AWS security architecture.
• · Conduct security assessments, audits, and reviews of IAM configurations and entitlements.
• · Ensure compliance with industry standards and regulatory frameworks (e.g., ISO 27001, NIST, GDPR, HIPAA).
• · Define standards and frameworks for role-based access control (RBAC), least privilege, and Zero Trust principles.
• · Troubleshoot complex access management issues and recommend improvements
• · Assume ownership of Identity & Access Management system integration and work closely with teams to complete development and customization tasks
• · Prepare high level and low level design documents

• · Excellent understanding of Identity and Access Management solutioning, consulting and configuration experience.
• · Hands-on experience in designing and implementing AWS IAM solutions for human and non-human identities
• · Strong knowledge of Identity and Access Management concepts, including Identity Life cycle management, role definition, request processes, access reviews, access controls and privileges, authentication, authorization, MFA, SSO, federation, etc.
• · Expertise in cloud security and secure design principles.
• · Good understanding of Privileged Access Management (PAM) tools and framework.
• · Have worked on at least 2 AWS or other IAM deployments.
• · Strong Software Development Background.
• · Strong problem resolution capability & delivery focus.

• ·
  AWS IAM, authentication and access control to AWS, access governance within AWS.
• · Excellent domain and consulting knowledge of Identity and Access Management
• · Excellent working knowledge of at least one IDAM tool – Okta, Cyber Ark

• · Excellent Communication and documentation skills
• · Must be good at thinking and understanding end-to-end identity and access management business requirements and solutions
• · Other IDAM tools, such as, SailPoint, Okta and Cyber Ark will be added advantage

Cloud Hybrid is an equal opportunity employer inclusive of female, minority, disability and veterans, (M/F/D/V). Hiring, promotion, transfer, compensation, benefits, discipline, termination and all other employment decisions are made without regard to race, color, religion, sex, sexual orientation, gender identity, age, disability, national origin, citizenship/immigration status, veteran status or any other protected status. Cloud Hybrid will not make any posting or employment decision that does not comply with applicable laws relating to labor and employment, equal opportunity, employment eligibility requirements or related matters.

Nor will Cloud Hybrid require in a posting or otherwise U.S. citizenship or lawful permanent residency in the U.S. as a condition of employment except as necessary to comply with law, regulation, executive order, or federal, state, or local government contract