IAM Specialist (Remote)

---

Job description

Client: Climate Corp

Duration: 6 months +

Location: Remote

In this position, you'll be writing automation to approve AWS IAM policy change requests. You will be working with our cloud engineering and security engineering teams to define criteria for approving AWS IAM policy changes. Your primary role will be to express those approval criteria using regular expressions (regexes) and Python scripts in order to automate IAM policy change approvals using Parliament, a Python IAM Lint project from Duo Security. The end result will be a set of rules in Parliament that will pre-filter requests and annotate them such that the requests is prepared for final approval in a git merge request.

Candidates will be required to complete a regex skill assessment prior to interviewing for this position.

The role can take on other automation tasks within the space of security and cloud engineering, that require similar skillsets.

What You Will Do:

• Pre-review AWS IAM requests in a git merge request
• Update python regex rules in parliament
• Document the rules so they can be audited and updated
• Make suggestions for overall process improvements to the IAM Approval process.
• Implement other automation tasks that come up in security and cloud engineering.

Basic Qualifications

• 1+ years of experience with Regular Expressions, including complex ones
• 1+ years of experience with a scripting language, ideally Python
• Understanding of AWS IAM and AWS systems
• Understanding of cloud service development processes

Preferred Qualifications

• Experience with Duo Parliament
• 1+ years of experience with Python
• 1+ years of experience with AWS IAM policy writing, especially with federated service roles.

• What is a day like in this role? What 3-5 responsibilities will occupy their time?

In this position, you'll be writing automation to approve AWS IAM policy change requests. You will be working with our cloud engineering and security engineering teams to define criteria for approving AWS IAM policy changes. Your primary role will be to express those approval criteria using regular expressions (regexes) and Python scripts in order to automate IAM policy change approvals using Parliament, a Python IAM Lint project from Duo Security. The end result will be a set of rules in Parliament that will pre-filter requests and annotate them such that the requests is prepared for final approval in a git merge request.

• Tell me about the team dynamic/culture.

Product Security Engineering is a thriving team that does Security Engineering for Climate (DFS) Development, and Cloud Engineering is also a thriving team that works closely with ProdSec that builds our Cloud Infrastructure.

• What are the 'must haves' to be successful in this role?

Scripting experience (preferably Python) and understanding of regular expressions. Exposure to cloud permissions and a basic understanding of AWS IAM and cloud service development.

• What is the long term plan for the role?

If successful, the role should automate itself to a maintenance and continuous improvement position. Long term the role will morph into other security automation or if the project is very successful, it may scale into other areas directly.

Per our client's policy, individuals hired for this position must be fully vaccinated against COVID-19 unless otherwise prohibited by law. We comply with federal, state and local laws with regard to accommodations related to this policy.

- provided by Dice