Cloud Engineer II - IAM

CBTS serves enterprise and midmarket clients in all industries across the United States and Canada. CBTS combines deep technical expertise with a full suite of flexible technology solutions--including Application Modernization, Managed Hybrid Cloud, Cybersecurity, Unified Communications, and Infrastructure solutions. From developing and deploying modern applications and the secure, scalable platforms on which they run, to managing, monitoring, and optimizing their operations, CBTS delivers comprehensive technology solutions for its clients' transformative business initiatives.

For more information, please visit

OnX is a leading technology solution provider that serves businesses, healthcare organizations, and government agencies across Canada. OnX combines deep technical expertise with a full suite of flexible technology solutions—including Generative AI, Application Modernization, Managed Hybrid Cloud, Cybersecurity, Unified Communications, and Infrastructure solutions. From developing and deploying modern applications and the secure, scalable platforms on which they run, to managing, monitoring, and optimizing their operations, OnX delivers comprehensive technology solutions for its clients’ transformative business initiatives.

For more information, please visit

• Engineer and deploy AWS IAM resources including users, groups, roles, and policies using AWS Cloud Formation templates and following Cloud IAM team processes and procedures
• Day-to-day delivery of the AWS IAM configuration required to support business requirements, application integrations, workloads, regulatory compliance, and all other platform efforts or deliverables
• Actively monitor and respond accordingly to AWS IAM configuration changes, events, and alerts following applicable CIE team process and procedures
• Evaluates existing AWS IAM permission policies and adjust them as needed to enforce principle of least privilege.
• Ensure effective security protection controls and hardening requirements are in place for all AWS IAM resources
• Ensure all AWS IAM resources and configuration adhere to and compliant with all corporate policies/standards, industry best practices/benchmarks, and regulatory requirements
• Participates in Agile team’s ceremonies.
• Updates assigned Jira stories daily as required by the Agile team to provide status and next steps.
• Ensures service requests contain proper approvals and documentation prior to starting the work and deconflicts discrepancies with the CIE Service Management Lead.
• Creates new or updates existing CFN templates per requirements outlined in the service requests and Agile stories.
• Actively (immediately on the same day) coordinates with the CIE Service Management Lead to resolve conflicting requirements or unclear information in Jira stories or service requests.
• Ensures principle of least privilege is implemented in every template policy prior to creating Pull Requests.
• Ensures security controls are implemented in the CFN templates as required to ensure we maintain a secured Cloud IAM posture.
• Troubleshoots CFN template syntax errors and escalates to the CIE Service Manager