CEIPAL
Join to apply for the
AWS IAM Cloud Specialist
role at
CEIPAL
Base pay range: $110.00/hr - $110.00/hr
AWS Cloud IAM Specialist – 4 mo. Contract (extension possible based on project needs) Hybrid Schedule: onsite in Fort Mill, SC; Austin, TX; Tempe, AZ; San Diego, CA
About The Role We are looking for an experienced AWS Cloud IAM Specialist to join our Offensive Identity Team. This role focuses on securing cloud identity infrastructure through policy design, drift remediation, and proactive threat modeling.
Key Responsibilities
Design and optimize IAM policies, SCPs, and trust relationships in AWS
Enforce identity controls using Infrastructure as Code (Terraform, CDK)
Remediate drift in AWS Identity Center and ensure consistent access posture
Collaborate with cloud security and IAM teams to simulate identity-based threats
Identify misconfigurations and excessive permissions across AWS accounts
Required Skills & Experience
5+ years in cloud IAM or AWS security engineering roles
Strong experience with AWS IAM, SCPs, and trust policies
Proficiency in Terraform or AWS CDK for identity enforcement
Familiarity with cloud threat modeling and identity attack techniques
Experience with AWS Identity Center and permission boundaries
Preferred Qualifications
AWS Certified Security – Specialty or equivalent
Experience with cloud security posture management (CSPM) tools
Knowledge of MITRE ATT&CK for Cloud and identity-based tactics
Additional Skills
AWS IAM experience
1+ year of experience using Wiz
Understanding of IAM user lifecycle
8+ years of experience
Background Check: Yes
#J-18808-Ljbffr
AWS IAM Cloud Specialist
role at
CEIPAL
Base pay range: $110.00/hr - $110.00/hr
AWS Cloud IAM Specialist – 4 mo. Contract (extension possible based on project needs) Hybrid Schedule: onsite in Fort Mill, SC; Austin, TX; Tempe, AZ; San Diego, CA
About The Role We are looking for an experienced AWS Cloud IAM Specialist to join our Offensive Identity Team. This role focuses on securing cloud identity infrastructure through policy design, drift remediation, and proactive threat modeling.
Key Responsibilities
Design and optimize IAM policies, SCPs, and trust relationships in AWS
Enforce identity controls using Infrastructure as Code (Terraform, CDK)
Remediate drift in AWS Identity Center and ensure consistent access posture
Collaborate with cloud security and IAM teams to simulate identity-based threats
Identify misconfigurations and excessive permissions across AWS accounts
Required Skills & Experience
5+ years in cloud IAM or AWS security engineering roles
Strong experience with AWS IAM, SCPs, and trust policies
Proficiency in Terraform or AWS CDK for identity enforcement
Familiarity with cloud threat modeling and identity attack techniques
Experience with AWS Identity Center and permission boundaries
Preferred Qualifications
AWS Certified Security – Specialty or equivalent
Experience with cloud security posture management (CSPM) tools
Knowledge of MITRE ATT&CK for Cloud and identity-based tactics
Additional Skills
AWS IAM experience
1+ year of experience using Wiz
Understanding of IAM user lifecycle
8+ years of experience
Background Check: Yes
#J-18808-Ljbffr