Job ID: JOB_ID_1513
Role Overview
As we move into 2026, the complexity of cloud security has reached unprecedented levels, necessitating the expertise of a Cloud Identity & Access Management (IAM) Architect. This role is pivotal for our client in San Francisco, focusing on the design and implementation of sophisticated identity frameworks that span multi-cloud environments, specifically Microsoft Azure and Google Cloud Platform (GCP). The successful candidate will lead the charge in transitioning legacy identity systems into modern, resilient architectures that prioritize Zero Trust principles and seamless user experiences.
Key Responsibilities
- Architect and deploy comprehensive IAM and Identity Governance and Administration (IGA) solutions across Azure and GCP.
- Design and implement advanced authentication protocols including OAuth 2.0, SAML 2.0, and OpenID Connect (OIDC) to ensure secure application integration.
- Enforce Zero Trust security models by leveraging MFA, FIDO2, and passwordless authentication technologies to mitigate credential-based attacks.
- Manage and optimize Azure Entra ID (formerly Azure AD) environments, including the use of ARM templates, Azure Monitor, and Azure Policy for automated governance.
- Oversee GCP identity services using GAM (Google Apps Manager), Cloud Operations Suite, and Deployment Manager for infrastructure-as-code (IaC) deployments.
- Integrate third-party identity providers like Okta into the enterprise ecosystem to provide a unified identity plane.
- Collaborate with DevOps teams to secure Azure Kubernetes Service (AKS) clusters through fine-grained RBAC and identity-pod binding.
- Conduct regular security audits and risk assessments of the identity infrastructure to ensure compliance with global data protection regulations.
Technical Requirements
The ideal candidate must possess a deep understanding of digital identity ecosystems. Proficiency in Microsoft Azure (Entra ID, AKS, ARM) and GCP (GAM, Cloud Operations) is mandatory. You should have a proven track record of implementing Okta and other IGA tools in large-scale enterprise settings. Experience with automation and scripting for identity lifecycle management is highly preferred.
Strategic Impact
In this 6+ month contract, you will not only be a technical lead but also a strategic advisor. You will help the organization navigate the shift toward decentralized identity and verifiable credentials, ensuring that security does not come at the cost of productivity. Your work in San Francisco will set the standard for the firm’s global security posture, making this a high-visibility role with significant long-term potential. We are looking for a visionary who understands that identity is the new perimeter in the modern cloud-native world.
Special Requirements
Onsite requirement in San Francisco, CA. Domain restriction: Must have extensive experience with both Azure and GCP environments.
Compensation & Location
Salary: $115 – $165 per year (Estimated)
Location: San Francisco, CA
Recruiter / Company – Contact Information
Recruiter / Employer: KK Software Associates
Email: ankitkumar.s@kksoftwareassociates.com
Recruiter Notice:
To remove this job posting, please send an email from
ankitkumar.s@kksoftwareassociates.com with the subject:
DELETE_JOB_ID_1513