Cloud Engineer - IAM/Entra Specialty

• Maintain and automate deployment of solutions for Entra Id integration with AWS Identity Center
• Configure and maintain Entra Id Enterprise App for AWS, including certificate/secret renewals, SAML assertion, API permissions, and SCIM provisioning
• Troubleshoot Entra Id Conditional Access Policies
• Maintain and automate AWS Account Access at scale via AWS Identity Center permission sets and AWS Account Vending/Factory
• Automate provisioning of Entra Id Entitlement Management Access Catalogs and Access Packages via Entra Id Graph API/SDK
• Automate provisioning of Entra Id PIM Groups via Entra Id Graph API/SDK
• Develop, maintain, and automate internal IAM self-service solutions for compliance and security (e.g., Access Reviews, Approval flows)
• Configure AWS IAM roles, trust and permission policies (Managed, Customer Managed, Inline)
• Right-size AWS IAM roles using AWS Access Analyzer and similar tools
• Develop and maintain Github Action workflows, IaC (Terraform), and scripts (Python, Bash, PowerShell)
• Refactor IAM Github Action workflows and related IaC to support Policy-as-Code enforcements
• Develop and maintain integration and acceptance tests and test reports for IAM code base
• Assist in data-driven decisions using AWS CloudTrail, Entra Audit, and other logs and analytics
• Respond and resolve incidents related to IAM, continuously improving solutions to prevent repeat incidents
• Provide support and guidance for developer and internal customer enquiries

• Strong experience with AWS IAM and Entra Id integration
• Proficiency in automating IAM deployments and self-service solutions
• Experience with Entra Id Enterprise App configuration and maintenance
• Familiarity with Entra Id Graph API/SDK for automation tasks
• Experience with AWS Identity Center, permission sets, and account vending solutions
• Proficiency in developing and maintaining Github Action workflows and IaC (Terraform)
• Experience with scripting languages (Python, Bash, PowerShell)
• Knowledge of Policy-as-Code principles and enforcement
• Experience with integration and acceptance testing for IAM solutions
• Strong analytical skills for data-driven decisions using logs and analytics
• English fluent

Additional languages are a plus

• An international community bringing together 110+ different nationalities
• An environment where trust has a central place: 70% of our key leaders started their careers at the first level of responsibilities
• A robust training system with our internal Academy and 250+ available modules
• A vibrant workplace that frequently gathers for internal events (afterworks, team buildings, etc.)
• Opportunity to turn your ideas into action and make a tangible impact on sustainability
• Empowered to design and lead projects that create real social or environmental impact through the WeCare Together program