Job Description
DocuSign Envelope ID: BF5AD917-C1D4-4B6F-8F98-8838A59CA8AC
• Engineer and deploy AWS IAM resources including users, groups, roles, and policies using AWS CloudFormation templates and
following Cloud IAM team processes and procedures
• Day-to-day delivery of the AWS IAM configuration required to support business requirements, application integrations, workloads,
regulatory compliance, and all other platform efforts or deliverables
• Actively monitor and respond accordingly to AWS IAM configuration changes, events, and alerts following applicable CIE team
process and procedures
• Evaluates existing AWS IAM permission policies and adjust them as needed to enforce principle of least privilege.
• Ensure effective security protection controls and hardening requirements are in place for all AWS IAM resources
• Ensure all AWS IAM resources and configuration adhere to and compliant with all corporate policies/standards, industry best
practices/benchmarks, and regulatory requirements
• Participates in Agile team’s ceremonies.
• Updates assigned Jira stories daily as required by the Agile team to provide status and next steps.
• Ensures service requests contain proper approvals and documentation prior to starting the work and deconflicts discrepancies with
the CIE Service Management Lead.
• Creates new or updates existing CFN templates per requirements outlined in the service requests and Agile stories.
• Actively (immediately on the same day) coordinates with the CIE Service Management Lead to resolve conflicting requirements or
unclear information in Jira stories or service requests.
• Ensures principle of least privilege is implemented in every template policy prior to creating Pull Requests.
• Ensures security controls are implemented in the CFN templates as required to ensure we maintain a secured Cloud IAM posture.
• Troubleshoots CFN template syntax errors and escalates to the CIE Service Management Lead as needed to ensure same day
resolution.
• Troubleshoots errors logged in in the CFN StackSet’s Stack Instance or Operations tabs as needed to advance the fulfillment of
service requests.
• Follows process documentation to ensure proper governance and request to implementation traceability is in place.
• Performs AWS IAM compliance event follow-up and remediation with account owners to resolve event conditions.
• DevOps/IaC/PaC familiarity
• Git/Jenkins/BitBucket/JIRA
Currently, there aren't any salaries for this role at CBTS shared by other job seekers.
View more salaries from CBTS →Achieve your dream job with our top-notch tools!
Resume Checker
Our free resume checker analyzes the job description and identifies important keywords and skills missing from your resume in just a minute!
AI InterviewPrep
Utilizing advanced AI, our tool generates tailored interview questions based on your industry, role, and experience. Practice and receive feedback on your answers in real time!
Resume Builder
Let us show you the differences between a bad, good, and great resume, and guide you in building a resume that helps you stand out to employers, ensuring you land your next position faster!