Senior Cloud IAM Engineer

Key Responsibilities
• Design and implement cloud IAM architectures supporting Azure and Google Cloud environments
• Build and maintain workload identity federation models for cloud-native and AI/ML workloads
• Design and enforce privileged access models with just-in-time (JIT) access and role governance
• Align IAM policies and governance standards across multiple cloud platforms
• Implement and enhance OAuth 2.0, mTLS, and JWT-based authentication for APIs and services
• Integrate IAM-based secrets management into CI/CD pipelines and application workloads
• Secure AI/ML platforms, datasets, training pipelines, and inference endpoints through IAM controls
• Support IAM security for MLOps workflows and automated deployments
• Implement RBAC and ABAC models for cloud and hybrid workloads
• Integrate IAM logging and events with SIEM and monitoring platforms
• Ensure IAM practices align with industry security and compliance frameworks
• Partner with architects, platform teams, and developers to streamline IAM onboarding and adoption

Required Technical Skills
• Strong expertise in cloud identity platforms and directory services
• Hands-on experience with workload identity federation and managed identities
• Solid understanding of OAuth 2.0, mTLS, JWT, and API security patterns
• Experience designing and implementing privileged access management solutions
• Hands-on experience with secrets management platforms
• Knowledge of IAM best practices for securing AI/ML platforms and workloads
• Ability to design secure identity and secrets integration for CI/CD pipelines and automation workflows
• Proficiency with Infrastructure-as-Code and configuration management tools
• Experience securing IAM within CI/CD pipelines using modern identity federation patterns
• Strong understanding of cloud IAM policy models and access controls
• Experience integrating identity logs and signals with SIEM and monitoring tools
• Familiarity with IAM threat modeling, anomaly detection, and access risk mitigation