As an IAM Security Analyst you will play a key role in efficiently managing user identities and access across the enterprise. You will be responsible for implementing technologies and designing processes to ensure users have the authorized access to resources and systems.
What You'll Do:
- Infrastructure as Code: Manage IAM cloud resources using Terraform, Bicep, or CloudFormation.
- Automation: Develop custom scripts/hooks to automate manual provisioning tasks or API integrations.
- Monitoring: Implement logging and alerting for identity-related security events (e.g., using SIEM tools).
- Pipeline Management: Maintain the CI/CD pipelines for deploying IAM configurations and custom connectors.
- Identity Automation & Orchestration: Design and implement automated workflows for user onboarding, offboarding, and role-based access control (RBAC).
- Infrastructure as Code (IaC): Manage IAM infrastructure
- CI/CD Integration: Build and maintain deployment pipelines to automate the delivery of identity services and security policies.
- Protocol Mastery: Act as the subject matter expert to support secure application integration.
- Secrets Management: Own the lifecycle of credentials, certificates, and API keys using enterprise tools.
- Monitoring & Compliance: Develop automated logging and alerting for identity-related events to ensure SOX, FRH, SOC2, HIPAA, or GDPR compliance.
- Define and enforce access control policies, including role-based access controls (RBAC), attributes based access control (ABAC) and policy based access controls (PBAC).
- Define and enforce privileged access management (PAM) policies to secure sensitive systems and data.
- Manager user onboarding, off boarding and role changes, ensuring adherence to security policies and compliance requirements.
- Elaborate with cross-functional teams, including IT, security and compliance to ensure IAM aligns with business goals.
- Communicate IAM-related updates and recommendations to stakeholders.
- Maintain comprehensive documentation of IAM policies, processes and configurations.
- Generate reports and metrics related to IAM activities and security posture.
- Experience: 6-10 years in IT, with at least 3 years focused specifically on IAM within a DevOps or Site Reliability Engineering (SRE) context.
- IAM Tools: Deep hands-on experience with at least one major platform.
- Programming & Scripting: High proficiency in Python (essential), with additional experience in Java, Go, or PowerShell.
AI/ML Frameworks: Practical experience with ML libraries
- Containerization: Experience securing and managing identities within Kubernetes (K8s) and Docker environments.
- Architecture Knowledge: Strong understanding of Zero Trust Architecture (ZTA) and Least Privilege principles.
- Version Control: Expert-level knowledge of Git and various branching strategies.
- IAM Domain Knowledge: Deep understanding of identity protocols including SAML, OAuth2, OIDC, and SCIM. Familiarity with RBAC (Role-Based Access Control) and ABAC (Attribute-Based Access Control) models.
Data & Analytics
- Data Handling: Ability to query and manipulate large identity datasets using SQL or NoSQL databases.
- API Mastery: Expert-level experience consuming and designing RESTful APIs for complex system integrations.
Cloudflare Compensation & Benefits Highlights
-
Healthcare Strength — Employer-verified medical, dental, and vision coverage, mental-health/EAP support, FSAs/HSAs, disability and life insurance, and pet insurance for U.S. employees are explicitly included. The overall package is presented as comprehensive across core health protections.
-
Leave & Time Off Breadth — Unlimited/flexible PTO, paid holidays and sick time, plus three paid volunteer days per year are highlighted. These policies indicate generous time-off flexibility beyond standard accrual models.
-
Equity Value & Accessibility — Employees commonly receive equity alongside an Employee Stock Purchase Plan with a discounted purchase feature. Relocation support and home-office stipends further reinforce access to ownership and distributed-work enablers.
Cloudflare Insights
Similar Jobs
What We Do
Cloudflare, Inc. (NYSE: NET) is the leading connectivity cloud company on a mission to help build a better Internet. It empowers organizations to make their employees, applications and networks faster and more secure everywhere, while reducing complexity and cost. Cloudflare’s connectivity cloud delivers the most full-featured, unified platform of cloud-native products and developer tools, so any organization can gain the control they need to work, develop, and accelerate their business. Powered by one of the world’s largest and most interconnected networks, Cloudflare blocks billions of threats online for its customers every day. It is trusted by millions of organizations – from the largest brands to entrepreneurs and small businesses to nonprofits, humanitarian groups, and governments across the globe.
Why Work With Us
Cloudflare employees come from all walks of life. We are mission-driven, and our team is energized by a collaborative, creative environment that celebrates our differences and fosters new ways to grow together.
Gallery
Cloudflare Offices
Hybrid Workspace
Employees engage in a combination of remote and on-site work.
We are committed to developing a global team that is distributed with a flexible working approach. Doing this equitably and inclusively is essential to our success. Visit our careers site for more on 'How & Where We Work.'
