IAM Engineer

Job Title- GCP IAM Engineer Location- Plano, TX 75093 Reporting Type- Onsite Work Timing- Regular Hours Monday to Friday, 9am to 5pm Duration- 8 months US Citizens and Green Card are only preferred W2 candidates are only preferred Local Candidates will be a preference Summary The GCP IAM Engineer will be responsible for implementing and operating identity and access management controls within Google Cloud Platform to securely onboard applications in a regulated environment. The role focuses on provisioning IAM roles, managing service accounts, automating access configurations using Terraform, and supporting identity integrations while ensuring compliance with enterprise security and audit standards. Responsibilities Provision and manage IAM (roles, bindings, service accounts) across projects using Terraform and Git-based workflows. Implement least-privilege patterns for application onboarding (runtime identity, human access, break-glass). Support identity integrations and group/role mappings as defined by enterprise standards. Produce onboarding evidence (access approvals, deployment records, audit log pointers) and maintain documentation/runbooks. Troubleshoot access issues and partner with platform/network/security teams to resolve blockers. Requirements Hands-on GCP IAM experience (roles, service accounts, policy inheritance concepts). Terraform fundamentals (modules, state basics) and Git/PR workflow discipline.

Scripting ability (Python) for automation/validation tasks. Familiarity with change/release processes and working in controlled environments. Success measures Onboarded apps meet access-control standards with minimal rework; IAM incidents reduced; evidence is audit-ready Skills IAM Engineer Google Cloud Platform