Senior AWS Cloud Security Solution Architect – IAM, SCP Governance & Terraform Automation jobs in United States
info-icon
This job has closed.
company-logo

Scalence L.L.C. · 4 weeks ago

Senior AWS Cloud Security Solution Architect – IAM, SCP Governance & Terraform Automation

positionAlpharetta, GA
timeFull-time
remoteOnsite
senioritySenior Level
date7+ years exp

Scalence L.L.C. is seeking a Senior AWS Cloud Security Solution Architect to design, implement, and oversee cloud security solutions for AWS environments. The role involves assessing current AWS accounts, managing IAM roles, and ensuring compliance with security policies and regulatory requirements.

Information Technology & Services
badNo H1Bnote

Responsibilities

Lead discovery and assessment of current AWS accounts, IAM roles, SCPs, and Terraform modules. Identify security gaps and develop a phased implementation roadmap in collaboration with stakeholders
Design and validate Service Control Policies (SCPs) to enforce least privilege, root user lockdown, and IP whitelisting. Ensure policies are tested in non-production environments before rollout
Audit and refactor IAM roles to eliminate over-permissioning, deprecate shared roles, and implement least-privilege, function-specific access with clear permission boundaries
Develop and document secure, auditable break-glass access procedures, including MFA enforcement, time-bound access, and approval workflows
Review and update Terraform modules to ensure secure-by-default configurations, including encryption, tagging, and logging. Oversee peer reviews and validation in staging environments
Lead functional and negative testing of IAM and SCP changes, ensuring compliance with security benchmarks and operational requirements
Oversee deployment of validated controls and modules to production, monitor for anomalies, and ensure comprehensive documentation and knowledge transfer

Qualification

AWS Cloud ComputingCloud SecurityIAM ManagementTerraformCompliance FrameworksSolution DesignDevOps AutomationRelevant CertificationsTechnical LeadershipCommunication Skills

Required

Must have 7+ years of Experience in Amazon Web Service(AWS) Cloud Computing
Must have 7+ years of Experience in Cloud Computing (General)
Must have Experience in SAP Cloud Architecture
Assessment Roadmap Development Lead discovery and assessment of current AWS accounts, IAM roles, SCPs, and Terraform modules
Identify security gaps and develop a phased implementation roadmap in collaboration with stakeholders
Security Policy Control Design Design and validate Service Control Policies (SCPs) to enforce least privilege, root user lockdown, and IP whitelisting
Ensure policies are tested in non-production environments before rollout
IAM Role Management Audit and refactor IAM roles to eliminate over-permissioning, deprecate shared roles, and implement least-privilege, function-specific access with clear permission boundaries
Break-Glass Access Develop and document secure, auditable break-glass access procedures, including MFA enforcement, time-bound access, and approval workflows
Infrastructure as Code (IaC) Review and update Terraform modules to ensure secure-by-default configurations, including encryption, tagging, and logging
Oversee peer reviews and validation in staging environments
Testing Validation Lead functional and negative testing of IAM and SCP changes, ensuring compliance with security benchmarks and operational requirements
Production Rollout Documentation Oversee deployment of validated controls and modules to production, monitor for anomalies, and ensure comprehensive documentation and knowledge transfer
Deep expertise in AWS security controls, IAM, SCPs, and compliance frameworks relevant to financial services
Proven ability to design scalable, secure architectures and translate business requirements into technical solutions
Experience leading cross-functional teams, conducting stakeholder workshops, and presenting architectural decisions to both technical and non-technical audiences
Hands-on experience with Terraform, CI/CD pipelines, and automation of cloud infrastructure
Strong documentation, presentation, and stakeholder management skills
Bachelor's or Master's degree in Computer Science, Engineering, or related field
10+ years of experience in IT, with at least 5 years in cloud architecture and security roles
Applicants must be able to work directly for Artech on W2

Preferred

Relevant certifications (e.g., AWS Certified Solutions Architect, TOGAF, CISSP) are highly desirable

Company

Scalence L.L.C.

twitter
company-logo
In today’s dynamic and competitive market, success hinges on mastering three key areas: Data Intelligence, Business Resilience, and Digital Experience.
location
Morristown, New Jersey, US
people-size501-1000 employees
web-link
https://www.scalence.com/

Funding

Current Stage
Late Stage
Company data provided by crunchbase