×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

Cloud Architect

Job in Quincy, Norfolk County, Massachusetts, 02171, USA
Listing for: Mastek
Full Time position
Listed on 2025-12-27
Job specializations:
  • IT/Tech
    Cybersecurity
Job Description & How to Apply Below

Job Title

AWS Cloud Engineer, SSO (OIDC/SAML), Application Development

Location

Quincy, MA (4 days/week)

Job Type

FTE / CWR

Experience

12+ years (with strong hands‑on AWS and Application Development experience)

Role Summary

We are seeking an experienced AWS Cloud Engineer with deep expertise in Single Sign‑On (SSO) integrations using OIDC/SAML
, and strong software development skills. This role will design, build, secure, and operate scalable cloud‑native data platforms
, with a focus on identity federation, access governance, and application development. The ideal candidate combines cloud infrastructure engineering, IAM, and hands‑on development to deliver secure, reliable, automated solutions.

Key Responsibilities
  • Implement network architectures using VPCs, subnets, security groups, NACLs, VPC endpoints, and private connectivity.
SSO & Identity Federation
  • Design and implement Redshift SSO using OIDC and/or SAML 2.0.
  • Integrate Redshift with enterprise IdPs (e.g., Okta, Azure AD, Ping, Auth0, AWS IAM Identity Center).
  • Configure IAM roles, policies, and trust relationships for federated access.
  • Implement role‑based access control (RBAC) and fine‑grained authorization within Redshift.
  • Troubleshoot authentication, authorization, token, and federation issues end‑to‑end.
Development & Automation
  • Develop cloud‑native applications, services, or utilities using Python, Java, or similar languages.
  • Build automation for infrastructure provisioning using IaC (Terraform, AWS CDK, or Cloud Formation).
  • Develop CI/CD pipelines for infrastructure and application deployments.
  • Create APIs, Lambda functions, and event‑driven workflows to support data and identity use cases.
Security, Governance & Compliance
  • Apply AWS security best practices, including least privilege, encryption at rest and in transit, and secure secrets management.
  • Implement audit logging and monitoring using Cloud Trail, Cloud Watch, and AWS Config.
  • Support compliance requirements (SOC2, HIPAA, PCI, or similar, as applicable).
Required Qualifications
  • 10+ years of hands‑on experience in AWS cloud engineering.
  • Proven experience implementing SSO using OIDC and/or SAML 2.0.
  • Proficiency in at least one programming language (Python preferred; Java acceptable).
  • Strong knowledge of AWS IAM, STS, role assumption, and federated identity models.
  • Experience with Infrastructure as Code (Terraform, CDK, or Cloud Formation).
  • Solid understanding of networking concepts (DNS, TLS, VPC routing, private endpoints).
  • Experience with Linux‑based environments and scripting.
Preferred / Nice‑to‑Have Skills
  • Experience with AWS IAM Identity Center (SSO).
  • Familiarity with Okta, Azure AD, Ping Federate, or Auth0 integrations.
  • Exposure to containerization (Docker) and orchestration (ECS/EKS).
Seniority Level

Mid‑Senior level

Employment Type

Full‑time

Job Function

Information Technology

#J-18808-Ljbffr
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search