AWS IAM Engineer

T-Rex Solutions is looking to select an AWS IAM Engineer to support the US Department of the Treasury TCloud enterprise cloud development effort. This effort aims to facilitate holistic multi-cloud solutions (AWS, Azure, OCI and GCP) to meet the Department of Treasury’s enterprise-wide infrastructure needs. The ideal candidate will have a strong background in managing and securing AWS environments, with a focus on creating, evaluating, and optimizing IAM policies. This role will require expertise in writing efficient and secure IAM policies, analyzing existing policy statements against guardrails and best practices, and crafting Service Control Policies (SCP) to maintain the principle of least privilege and ensure compliance with organizational security standards. The candidate must also have a strong understanding of Role trust policies and how to tightly control access using targeted principals and layered conditional statements.

Responsibilities:

• Design, implement, and manage IAM policies, roles, and users within the AWS environment.
• Create and evaluate IAM policies, trust policies, and SCP policies to ensure secure access to AWS resources.
• Analyze policy statements service by service to identify excessive permissions or potential impacts to guardrails.
• Scope IAM policies to specific resources or conditions to maintain the principle of least privilege.
• Conduct regular audits and reviews of IAM policies to ensure compliance with security best practices and organizational policies.
• Collaborate with cross-functional teams to integrate IAM best practices into development and operational workflows.
• Develop and maintain documentation for IAM policies, procedures, and configurations.
• Respond to security incidents and perform root cause analysis to prevent future occurrences.
• Stay updated on AWS IAM services and industry best practices to ensure our environment is secure and compliant.
• Use AWS services like CloudTrail, CloudWatch, and Access Analyzer to audit existing policies and recommend changes based on actual usage.
• Help us review IAM changes that are needed when adding new services to the approved service catalog.

Requirements:

• Bachelor's Degree and at least 4 years of experience. 8 Years of Experience in Lieu of a degree.
• Must be U.S Citizen.
• Must be able to obtain a Public Trust clearance to start.
• Experience working with IAM technologies, such as AWS IAM, Active Directory, Azure AD, Okta, or similar IAM tools.
• Knowledge of security protocols such as SAML, OAuth, OpenID Connect, LDAP, and other identity-related standards.
• Understanding of user access control models, such as Role-Based Access Control (RBAC) and Attribute-Based Access Control (ABAC).
• Familiarity with cloud platforms (AWS, Azure, Google Cloud) and how IAM integrates with cloud environments.
• Strong verbal, written, interpersonal, troubleshooting, and analytical skills.

Desired:

• AWS or relevant cloud certifications
• Experience with Azure, OCI or GCP cloud infrastructure
• Experience with scripting languages (e.g., Python, Bash)
• Agile, Scrum, JIRA, Service now

T-Rex Overview

Established in 1999, T-Rex Solutions, LLC is a proven mid-tier business providing data-centric mission services to the Federal government as it increasingly tries to secure and leverage the power of data. We design, integrate, secure, and deploy advanced technical solutions for our customers so they can efficiently fulfill their critical objectives. T-Rex offers both IT and professional services to numerous Federal agencies and is a leader in providing high quality and innovative solutions in the areas of Cloud and Infrastructure Services, Cyber Security, and Big Data Engineering.

T-Rex is constantly seeking qualified people to join our growing team. We have built a broad client base through our devotion to delivering quality products and customer service, and to do that we need quality individuals. But more than that, we at T-Rex are committed to creating a culture that supports the development of every employee's personal and professional lives. T-Rex has made a commitment to maintain the status of an industry leader in compensation packages and benefits which includes competitive salaries, performance bonuses, training and educational reimbursement, Transamerica 401(k) and Cigna healthcare benefits.

T-Rex is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, sex (including pregnancy and sexual orientation), parental status, national origin, age, disability, family medical history or genetic information, political affiliation, military service, or other non-merit based factors.

In compliance with pay transparency guidelines, the annual base salary range for this position is $100,000 - $125,000. Please note that the salary information is a general guideline only. T-Rex considers factors such as (but not limited to) scope and responsibilities of the position, candidate’s work experience, education/training, key skills, internal peer equity, as well as market and business considerations when extending an offer.

T-Rex offers a diverse and collaborative work environment, exciting opportunities for professional growth, and generous benefits, including: PTO available to use immediately upon joining (prorated based on start date), paid parental leave, individual and family health, vision, and dental benefits, annual budget for training, professional development and tuition reimbursement, and a 401(k) plan with company match fully vested after 60 days of employment among other benefits.