onsite

IAM Cloud Governance Engineer - KeyBank

Software Engineer

Design and enforce governance for cloud identities, privileged and service accounts across hybrid multi‑cloud environments, collaborating with IAM, risk, and audit teams to meet security and regulatory requirements.

About the role

Key Responsibilities

Define and maintain the enterprise governance framework for cloud‑based identities, privileged access, and non‑human service accounts.
Partner with IAM engineering, cloud platform (AWS, Azure, GCP) teams, risk management, audit, and application owners to ensure policy alignment and compliance.
Act as the escalation point for governance‑related incidents, providing guidance and remediation for privileged access violations.
Develop and enforce security controls, audit trails, and reporting mechanisms for identity lifecycle management across hybrid and multi‑cloud environments.
Continuously assess regulatory obligations and update governance processes to address emerging threats and compliance standards.

Requirements

5+ years of experience in Identity and Access Management, with a focus on cloud governance and privileged access management.
Strong hands‑on knowledge of AWS, Azure, and Google Cloud Platform identity services (e.g., IAM, Azure AD, Cloud Identity).
Proven experience designing and implementing security policies, audit frameworks, and risk mitigation strategies for cloud environments.
Excellent collaboration and communication skills to work with cross‑functional teams and drive governance initiatives.
Relevant certifications (e.g., CISSP, CCSP, AWS Certified Security) are a plus.

Skills

awsazure

CompanyKeyBank

DepartmentEngineering

LocationBrooklyn, Ohio, United States

Experience3+ years

Tenurefull-time

LevelMid-Level

Salary150,000

Posted June 22, 2026