×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Consultant

AWS Solution architect

Job in Alpharetta, Fulton County, Georgia, 30239, USA
Listing for: Russell Tobin
Full Time position
Listed on 2026-02-07
Job specializations:
  • IT/Tech
    Cybersecurity, IT Consultant
Job Description & How to Apply Below

Overview

Assessment Roadmap Development Lead discovery and assessment of current AWS accounts, IAM roles, SCPs, and Terraform modules.

Identify security gaps and develop a phased implementation roadmap in collaboration with stakeholders.

Security Policy Control Design Design and validate Service Control Policies (SCPs) to enforce least privilege, root user lockdown, and IP whitelisting.

Ensure policies are tested in non-production environments before rollout.

IAM Role Management Audit and refactor IAM roles to eliminate over-permissioning, deprecate shared roles, and implement least-privilege, function-specific access with clear permission boundaries.

Break-Glass Access Develop and document secure, auditable break-glass access procedures, including MFA enforcement, time-bound access, and approval workflows.

Infrastructure as Code (IaC) Review and update Terraform modules to ensure secure-by-default configurations, including encryption, tagging, and logging.

Oversee peer reviews and validation in staging environments.

Testing Validation Lead functional and negative testing of IAM and SCP changes, ensuring compliance with security benchmarks and operational requirements.

Production Rollout Documentation Oversee deployment of validated controls and modules to production, monitor for anomalies, and ensure comprehensive documentation and knowledge transfer

Key Responsibilities
  • Assessment & Roadmap Development:
    Lead discovery and assessment of current AWS accounts, IAM roles, SCPs, and Terraform modules. Identify security gaps and develop a phased implementation roadmap in collaboration with stakeholders.
  • Security Policy & Control Design:
    Design and validate Service Control Policies (SCPs) to enforce least privilege, root user lockdown, and IP whitelisting. Ensure policies are tested in non-production environments before rollout.
  • IAM Role Management:
    Audit and refactor IAM roles to eliminate over-permissioning, deprecate shared roles, and implement least-privilege, function-specific access with clear permission boundaries.
  • Break-Glass Access:
    Develop and document secure, auditable break-glass access procedures, including MFA enforcement, time-bound access, and approval workflows.
  • Infrastructure as Code (IaC):
    Review and update Terraform modules to ensure secure-by-default configurations, including encryption, tagging, and logging. Oversee peer reviews and validation in staging environments.
  • Testing & Validation:
    Lead functional and negative testing of IAM and SCP changes, ensuring compliance with security benchmarks and operational requirements.
  • Production Rollout & Documentation:
    Oversee deployment of validated controls and modules to production, monitor for anomalies, and ensure comprehensive documentation and knowledge transfer.
Required Skills & Experience
  • Cloud Security & Compliance:
    Deep expertise in AWS security controls, IAM, SCPs, and compliance frameworks relevant to financial services.
  • Solution Design:
    Proven ability to design scalable, secure architectures and translate business requirements into technical solutions.
  • Technical Leadership:
    Experience leading cross-functional teams, conducting stakeholder workshops, and presenting architectural decisions to both technical and non-technical audiences.
  • Dev Ops & Automation:
    Hands-on experience with Terraform, CI/CD pipelines, and automation of cloud infrastructure.
  • Communication:
    Strong documentation, presentation, and stakeholder management skills.
Qualifications
  • Bachelor’s or Master’s degree in Computer Science, Engineering, or related field.
  • Relevant certifications (e.g., AWS Certified Solutions Architect, TOGAF, CISSP) are highly desirable.
  • 10+ years of experience in IT, with at least 5 years in cloud architecture and security roles.

Note:
Russell Tobin (Pride Global) offers eligible employees comprehensive healthcare coverage (medical, dental, and vision plans), supplemental coverage (accident insurance, critical illness insurance and hospital indemnity), a 401(k)-retirement savings, life & disability insurance, an employee assistance program, identity theft protection, legal support, auto and home insurance, pet insurance, and employee discounts with some preferred vendors

#J-18808-Ljbffr
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search