Senior Cloud IAM Engineer

Role Overview

This role focuses on expanding cloud capabilities into the US Government air-gapped classified cloud environment. You will manage entitlements and permissions within cloud services (AWS, Azure/EntraID, or GCP) and automate identity administration, authentication, and authorization for resources in air-gapped networks. You will work closely with cloud engineering and Cybersecurity teams to build solutions tailored to the unique requirements of the DoD and Intel agencies of the US Government.

Responsibilities

• Manage entitlements and permissions in cloud services environments including AWS, Azure/EntraID, or GCP.
• Automate identity administration, authentication, and authorization to resources in air-gapped networks.
• Implement infrastructure and compliance as code using CI/CD pipelines.
• Utilize standard federation protocols including OAUTH, OIDC, SAML, and SCIM.
• Collaborate with Cybersecurity and engineering teams to meet DoD and Intel agency requirements.

Requirements

• 5+ years of experience as a cloud engineer with a focus on IAM.
• Experience centralizing authentication/authorization and implementing RBAC/PBAC.
• Proficiency in managing infrastructure as code using tools such as GitHub and Terraform.
• Experience developing automation tools in Python or other programming languages.
• Experience integrating cloud platforms with external tools like Okta or EntraID for centralized authentication and SSO.
• Experience utilizing SIEM tools (such as Splunk) for log aggregation, analysis, threat playbooks, and auditing.
• Familiarity with NIST 800-53 and DoD/Intel control frameworks.
• Familiarity with identity governance workflows and user lifecycle management (joiners, movers, leavers).
• Bachelor's degree or higher in computer science, cybersecurity, or comparable work/educational experience.

Security Clearance

• Applicants must have the ability to obtain and maintain a U.S. government-issued security clearance at the TS/SCI w/CI Poly level.
• An active TS/SCI w/CI Poly is strongly preferred.

Compensation & Benefits

This role offers a competitive compensation package that may include a base salary, bonus plan or role-specific commission, and annual refresh stock grants. Benefits include comprehensive health coverage and professional development support. Compensation offers are determined by factors such as geography, experience, skills, and business needs.

Work Environment

This role follows a flexible work approach, requiring at least 50% of time spent in the office or in the field with customers and partners each quarter to maintain community and connection.