Kforce has a client in Phoenix, AZ that is seeking a highly skilled IAM (Identity and Access Management) Architect with deep expertise in Amazon Web Services (AWS). This individual will lead the design, implementation, and governance of secure identity solutions across the organization's cloud infrastructure. The role is critical in ensuring secure access to systems and data, aligned with industry best practices and compliance requirements. Key Responsibilities: * Design and implement scalable IAM architectures in AWS, including IAM policies, roles, federated access, and service control policies (SCPs) * Develop and enforce identity governance frameworks, including least privilege access, RBAC/ABAC models, and zero trust principles * Collaborate with security, DevOps, and application teams to integrate IAM solutions into CI/CD pipelines and cloud-native applications * Lead the evaluation and integration of third-party IAM tools (e.g., Okta, CyberArk, Ping Identity) with AWS environments * Conduct risk assessments and audits of IAM configurations and recommend improvements * Define and document IAM standards, procedures, and best practices * Provide mentorship and guidance to engineering teams on IAM-related topics* 7+ years of experience in Identity and Access Management, with at least 3 years focused on AWS * Experience with infrastructure as code (IaC) tools such as Terraform or AWS CloudFormation * Deep understanding of AWS IAM, Organizations, Cognito, SSO, and related services * Strong knowledge of authentication protocols (SAML, OAuth2, OIDC, LDAP) * Familiarity with compliance standards such as SOC 2, HIPAA, ISO 27001, or NIST * Proficiency in scripting languages (Python, Bash, etc.) for automation * AWS certifications such as AWS Certified Security - Specialty or Solutions Architect - Professional are highly desirable