Job Title: AWS IAMLocation:, Bangalore, Chennai ,Hyderabad,Kolkata,Mumbai,Pune,GurgaonJob Type: ContractExperience Level: 3+YearsWork of Mode : HybridRequired skillsa. Monitoring and Incident Management: Monitor overall application health, integration, respond to and resolve incidents, and perform root cause analysis. b. Change and release management: Prioritize, test, and implement minor release updates and patching related to AWS services. Perform release testing in the customer-provided test environment during the implementation phase. Obtain sign-off from the Client on change requests.c. Working with AWS Vendor: Facilitate the resolution of identified defects/bugs that impact the normal use of the services, on behalf of the Client, under the Client's agreement.d. Customer support: Provide second line (L2/L3) helpdesk assistance to the Client's first line (L1) helpdesk team to resolve end user issues and questions. This includes responding to Client Service Owner requests to disable accounts for an individual user or provide temporary user account access.e. Metrics and Reporting: Report on operational performance, Service Level Agreement (SLA), service metrics, and transaction volume. Client's FreshService will be the system of record for reporting the timing of response SLAs, and incident metrics.f. Governance: Establish governance processes, including setting communication schedules and procedures for managing client team cadences.g. User Management: Provide assistance to provision, de-provision and manage AWS IAM users, groups, credentials, and permissions. Provide assistance to manage non-human and machine identities.h. Role Management: Create, manage, and delete AWS IAM roles (related to AWS IAM framework), assigning these roles to users, applications, or services as required, and updating/reviewing role permissions. Perform access review of user, group, and role.i. Policy Management: Create and manage AWS IAM policies that define permissions, attaching these policies to users, groups, or roles. Provide centralize management of multiple AWS accounts and apply security policies to control the permissions via Service Control Policies (SCPs)j. Group Management: Create and manage AWS IAM groups to manage permissions for multiple users includes creating, modifying, and disabling user accounts, assigning appropriate group memberships, and managing access permissions.k. Access Management: Programmatic provisioning and de-provisioning of access keys, managing password policies and configurating multi-factor authentication (MFA). Define access control list (ACL) for AWS accounts to manage the access to AWS resources such as Amazon S3, AWS Web Application Firewall (WAF), and Amazon Virtual Private Cloud (VPC). l. Secret Management: Assist AWS secret management processes by creating, managing, rotating, and auditing the secrets in AWS secrets manager.m. Troubleshooting: Provide assistance for AWS IAM related issues, such as access issues, permission issues, or policy misconfigurations.n. AWS role modification: Analyze and modify AWS IAM roles with excessive permissions as identified by Client, to enhance the security of AWS environment.o. AWS SIP (Security Improvement Program) Collaborate with AWS Vendor team on SIP on regular cadence to improve the security posture. Implement the controls as suggested by working with Stakeholders.p. Collaborate with application teams to understand privilege requirements and implement appropriate access controls.q. Maintain and enhance secret management programs involving AWS and CyberArk components.