Cloud IAM Engineer

Position Purpose

You will play a key role in shaping and maintaining our security infrastructure within the Google Cloud Platform (GCP) and Microsoft Azure environments, ensuring the highest standards of Identity and Access Management (IAM). This engineering position focuses on enabling IAM modernization, transformation, and execution for GPC’s unified IAM platforms.

Responsibilities

Serve as a subject matter expert (SME) on key principles of Identity and Access Management, with expertise in GCP and Azure environments.

Design, implement, and manage access control and security policies within GCP and Azure environments.

Review, implement, and manage security tools and processes to detect and respond to suspicious or unauthorized access in the cloud, addressing any critical gaps.

Establish IAM governance and policies, including access request and approval processes.

Develop and maintain access control policies, roles, and permissions for GCP resources to ensure users and services have the appropriate level of access.

Integrate IAM solutions into continuous integration and continuous deployment (CI / CD) pipelines, enabling automated security and access control checks during development and deployment processes.

Assist in improving internal best practices and cutting-edge service offerings.

Collaborate closely with cross-functional teams, including IT, security, and compliance, to align IAM policies with organizational goals.

Conduct proof of concepts (POCs) in Azure and GCP environments.

Build and execute automation frameworks for deployments in GCP and Azure cloud environments.

Implement, manage, and maintain DevSecOps tools (e.g., Terraform, Python, Ansible) to automate operational processes in Azure and GCP platforms.

Work with Cloud Engineers to design and build a cloud foundation that enables AppDev teams.

Define and implement policies using various cloud posture management tools.

Partner with senior leaders to make engineering and business decisions that enhance security.

Collaborate with wider engineering teams to ensure alignment and integration of security practices.

Ensure compliance with industry standards through regular reviews and audits.

Stay updated on developments and innovations in IAM and cloud security.

Requirements

Bachelor’s degree (or equivalent) in Information Technology, Computer Science, or a related field.

2+ years of experience using Cloud IAM services on either Google Cloud Platform (GCP) or Azure.

2+ years of experience with Infrastructure as Code (IaC) tools such as Terraform or Cloud Build.

2+ years of experience designing and implementing Terraform security modules.

Hands-on coding experience with Python, Java, or JavaScript.

Knowledge of containerization and orchestration technologies (e.g., Docker, GKE, AKS).

Strong experience in setting up and managing CI / CD pipelines (e.g., Jenkins, GitLab CI / CD, GitHub Actions, JFrog).

Proficiency in scripting languages such as Bash, PowerShell, or Groovy.

Familiarity with information security concepts such as authentication and access control, least privilege, and zero trust (preferred).

Experience with Linux / Unix and Windows operating systems.

GCP Security Certification or Azure Security Certification (preferred).

Nice to have

Location

Krakow / Hybrid