×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer

GCP IAM Architect

Job in Irving, Dallas County, Texas, 75084, USA
Listing for: Publicis Sapient
Full Time position
Listed on 2026-01-12
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer
Salary/Wage Range or Industry Benchmark: 150000 - 195000 USD Yearly USD 150000.00 195000.00 YEAR
Job Description & How to Apply Below
  • 6021 Connection Drive - 6021 Connection Drive Irving, Texas 75039 United States
  • Design and implement comprehensive IAM strategies and solutions on GCP, including Google Cloud Identity, IAM roles and policies, organization policies, deny policies, and Workload Identity Federation
  • Configure and manage federated identity solutions using Ping Federate to enable seamless SSO between on-premises Active Directory and GCP services
  • Implement and manage OIDC Federation, SAML-based authentication, and OAuth 2.0 flows for enterprise applications
  • Design and deploy role-based access control (RBAC) frameworks, custom IAM roles, and least-privilege access models across GCP organizations and projects
  • Configure and manage Google Cloud Directory Sync (GCDS) for automated user and group provisioning from Active Directory to Google Cloud Identity
  • Implement service account management strategies, including key rotation, impersonation policies, and workload identity configurations

Security & Compliance:

  • Establish and enforce security best practices for IAM, including conditional access policies, context-aware access controls, and security key enforcement
  • Design and implement encryption strategies using GCP Cloud KMS and Hashicorp Vault for secrets management
  • Implement network security controls including VPC Service Controls, private Google access, and secure connectivity patterns
  • Ensure compliance with security frameworks and regulatory requirements through proper IAM configurations and audit logging
  • Design, implement, and manage scalable cloud infrastructure solutions on GCP platform aligned with IAM requirements
  • Automate IAM provisioning, configuration, and lifecycle management using Infrastructure as Code (IaC) tools such as Terraform
  • Collaborate with software engineering teams to integrate IAM requirements into application architectures and CI/CD pipelines
  • Develop automated workflows for user onboarding/offboarding, access reviews, and privilege management

Monitoring & Optimization:

  • Implement monitoring and alerting for IAM-related events using Cloud Logging, Cloud Monitoring, and Security Command Center
  • Conduct regular access reviews, privilege audits, and IAM policy optimizations
  • Troubleshoot and resolve complex issues related to authentication, authorization, federation, and access management
  • Monitor and optimize cloud infrastructure resources to ensure performance, availability, and cost-efficiency

Documentation & Governance:

  • Develop and maintain comprehensive documentation for IAM architectures, federation configurations, and operational procedures
  • Establish IAM standards, policies, and governance frameworks aligned with organizational security requirements
  • Stay current with GCP IAM capabilities, authentication protocols, and industry best practices
  • Provide technical leadership and guidance to development and operations teams on IAM best practices

Required

Skills & Experience:

  • Extensive hands‑on experience with GCP IAM technologies, including Google Cloud Identity, IAM policies, organization policies, Workload Identity Federation, and service account management
  • Proven experience configuring and managing Ping Federate for enterprise SSO and federated identity integration with Active Directory
  • Deep understanding of authentication and authorization protocols: SAML 2.0, OAuth 2.0, OIDC, and JWT
  • Strong experience with Google Cloud Directory Sync (GCDS) for AD integration and user provisioning
  • Hands‑on experience with Hashicorp Vault and GCP Cloud KMS for secrets and key management
  • Proficiency with Infrastructure as Code using Terraform for IAM resource provisioning
  • Experience with GCP security services: VPC Service Controls, Security Command Center, Policy Intelligence, and Cloud Asset Inventory
  • Strong understanding of identity lifecycle management, access governance, and privileged access management concepts
Additional Information

Benefits of Working Here

  • Flexible vacation policy; time is not limited, allocated, or accrued
  • 16 paid holidays throughout the year
  • Generous parental leave and new parent transition program
  • Corporate gift matching program

Pay Range: $150,000 - $195,000

The range shown represents a grouping of relevant ranges currently in…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search