Enable job alerts via email!
AWS Cloud Services Architect with strong IAM experience to optimize cloud a cloud environment a[...]
S.i. Systems
London
On-site
GBP 80,000 - 100,000
Full time
Job summary
A global technology firm in London seeks an experienced AWS Cloud Services Architect to optimize cloud governance and IAM processes. The role requires expertise in IAM architecture, policy management, and AWS tools. Candidates with AWS certifications and strong analytical skills are preferred. This position offers the opportunity to work on cloud improvement projects for a leading organization.
Responsibilities
- Optimize IAM architecture, processes, policies, and governance.
- Author and troubleshoot IAM policies; debug using AWS tools.
- Automate IAM resource creation and policy management.
Skills
Education
Tools
Job description
Social network you want to login/join with:
col-narrow-left
S.i. Systems
London, United Kingdom
Other
-
Yes
col-narrow-right
caf340cd1ad4
10
12.08.2025
26.09.2025
col-wide
Our global client is seeking AWS Cloud Services Architect with strong IAM experience to optimize their cloud environment and improve processes, policies, and governance.
Must Have:
- Experience as a AWS Cloud Services Architect optimizing IAM architecture, processes, policies, and governance.
- Experience with IAM Users, Groups, and Roles including creating, managing, and assigning permissions, organizing into groups, and leveraging roles for access.
- Skilled at authoring and troubleshooting IAM policies, including inline and managed policies, and policies attached to users, groups, and roles.
- Understanding how to use permission boundaries to set maximum permissions for roles and users.
- Resource-Based Policies: Familiarity with policies attached directly to AWS resources like S3 buckets, Lambda functions, etc.
- Principle of Least Privilege: Ability to architect and maintain least-privilege access at scale.
Nice to have:
- AWS Certified Security – Specialty or AWS Certified Solutions Architect
Scope:
- Understand complex JSON-based IAM policies, including conditions, resource-level permissions, and the use of wildcards or variables.
- Interpret and analyze policy evaluation logic, including Allow and Deny statements, explicit vs. implicit denies, and conflicts.
- Debug policies using AWS Policy Simulator and CloudTrail logs to resolve access issues.
- Utilize service control policies (SCPs) in AWS Organizations for governance across accounts.
- Automate IAM resource creation and policy management using AWS CloudFormation, Terraform, or AWS CDK.
- Design reusable templates and modules for IAM roles, policies, and permission sets.
- Use AWS CLI, SDKs (like Boto3), and automation tools for managing IAM at scale.
- Build workflows for provisioning, de-provisioning, and rotating credentials.
- Set up and analyze AWS CloudTrail logs for IAM activity monitoring.
- Configure AWS Config rules for compliance and drift detection.
- Communicate IAM concepts clearly to technical and non-technical audiences.
- Collaborate with security, compliance, operations, and application teams.
- Document policies, processes, and incident response plans.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
Follow us
