Job Details

Senior Cloud IAM Engineer (Multi-Cloud & AI Security)

About the Role
We are seeking a Senior Cloud IAM Engineer to design, implement, and manage identity and access management solutions across multi-cloud environments. This role focuses on securing cloud and hybrid workloads with modern IAM architectures, workload identity federation, privileged access management, and secrets management.

You will play a key role in modernizing IAM frameworks, embedding security controls into DevSecOps pipelines, and securing AI/ML platforms and workloads. The ideal candidate brings deep technical expertise in cloud identity, automation, and governance, with the ability to collaborate across engineering, architecture, and platform teams.

Key Responsibilities
• Design and implement cloud IAM architectures supporting Azure and Google Cloud environments
• Build and maintain workload identity federation models for cloud-native and AI/ML workloads
• Design and enforce privileged access models with just-in-time (JIT) access and role governance
• Align IAM policies and governance standards across multiple cloud platforms
• Implement and enhance OAuth 2.0, mTLS, and JWT-based authentication for APIs and services
• Integrate IAM-based secrets management into CI/CD pipelines and application workloads
• Secure AI/ML platforms, datasets, training pipelines, and inference endpoints through IAM controls
• Support IAM security for MLOps workflows and automated deployments
• Implement RBAC and ABAC models for cloud and hybrid workloads
• Integrate IAM logging and events with SIEM and monitoring platforms
• Ensure IAM practices align with industry security and compliance frameworks
• Partner with architects, platform teams, and developers to streamline IAM onboarding and adoption

Required Technical Skills
• Strong expertise in cloud identity platforms and directory services
• Hands-on experience with workload identity federation and managed identities
• Solid understanding of OAuth 2.0, mTLS, JWT, and API security patterns
• Experience designing and implementing privileged access management solutions
• Hands-on experience with secrets management platforms
• Knowledge of IAM best practices for securing AI/ML platforms and workloads
• Ability to design secure identity and secrets integration for CI/CD pipelines and automation workflows
• Proficiency with Infrastructure-as-Code and configuration management tools
• Experience securing IAM within CI/CD pipelines using modern identity federation patterns
• Strong understanding of cloud IAM policy models and access controls
• Experience integrating identity logs and signals with SIEM and monitoring tools
• Familiarity with IAM threat modeling, anomaly detection, and access risk mitigation

Experience & Education
• 5+ years of overall IT experience, with at least 3 years focused on cloud engineering or security
• Experience working in Agile or DevOps engineering environments
• Bachelor's degree in Computer Science, Engineering, or a related field (or equivalent experience)
• Cloud or security certifications are strongly preferred
• Background with directory services and identity federation technologies is a plus
• Banking experience is a plus