Demo

Sr. DevOps Engineer (Google Cloud IAM )

capgemini
capgemini Salary
Alpharetta, GA Full Time
POSTED ON 4/7/2026
AVAILABLE BEFORE 6/7/2026

  • We are seeking a Google Cloud IAM DevOps Engineer with strong expertise in Identity and Access Management automation on Google Cloud Platform GCP This role focuses on building secure and scalable IAM architectures automating identity lifecycle management and implementing certificate based authentication using X509 certificates

  • The ideal candidate will have experience building IAM automation using Terraform GitHub Actions Python and Shell scripting while implementing enterprise grade identity federation and certificate management solutions

Key Responsibilities:

Google Cloud IAM Engineering:

  • Design and implement secure IAM architectures on Google Cloud

  • Manage IAM roles policies and permissions using least privilege principles

  • Create and maintain Service Accounts and Service Account key policies

  • Implement Workload Identity Pools and Providers for external workloads accessing GCP securely

  • Implement Workforce Identity Federation to allow enterprise workforce authentication without service account keys

X509 Certificate Identity Management:

  • Design and manage X509 certificate-based authentication systems for workloads and external integrations

  • Implement certificate lifecycle management including issuance rotation and revocation

  • Automate certificate provisioning and renewal processes

  • Integrate certificate authentication with identity federation and secure workload authentication

Infrastructure as Code DevOps:

  • Develop reusable Terraform modules to automate IAM and identity federation infrastructure

  • Implement GitHub Actions pipelines to deploy and manage IAM configurations

  • Maintain automated pipelines for IAM resource provisioning

Automation Scripting:

Develop automation tools using

  • Python

  • Shell scripting

Use scripting to automate:

  • IAM role audits

  • Service account lifecycle management

  • Certificate provisioning and rotation

Required Skills:

Google Cloud:

Strong hands-on experience with

  • Google Cloud IAM

  • Service Accounts

  • Workload Identity Pools

  • Workload Identity Federation

  • Workforce Identity Federation

  • DevOps Infrastructure as Code

Terraform:

  • Module development

  • IAM resource automation

  • Infrastructure lifecycle management

GitHub Actions:

  • CICD pipeline creation

  • Infrastructure deployment automation

Programming Automation:

  • Python

  • Shell scripting Bash

Security Identity:

  • Identity federation OIDC SAML

  • X509 certificate management

  • Certificate lifecycle management

  • Secure authentication architectures

  • Least privilege access models

Preferred Qualifications:

  • Experience integrating with enterprise identity providers Okta Azure AD Ping etc

  • Familiarity with PKI infrastructure and certificate authorities

  • Experience building IAM automation platforms at enterprise scale

  • Experience implementing certificate-based workload authentication

What You'll Work On:

  • Enterprise scale Google Cloud IAM automation

  • Identity federation platforms

  • X509 certificate-based authentication solutions

  • Secure CICD pipelines for cloud identity provisioning

  • Infrastructure as Code driven IAM governance

The pay range that the employer in good faith reasonably expects to pay for this position is $43.92/hour - $68.62/hour. Our benefits include medical, dental, vision and retirement benefits. Applications will be accepted on an ongoing basis.

Tundra Technical Solutions is among North America’s leading providers of Staffing and Consulting Services. Our success and our clients’ success are built on a foundation of service excellence. We are an equal opportunity employer, and we do not discriminate on the basis of race, religion, color, national origin, sex, sexual orientation, age, veteran status, disability, genetic information, or other applicable legally protected characteristic. Qualified applicants with arrest or conviction records will be considered for employment in accordance with applicable law, including the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. Unincorporated LA County workers: we reasonably believe that criminal history may have a direct, adverse and negative relationship with the following job duties, potentially resulting in the withdrawal of a conditional offer of employment: client provided property, including hardware (both of which may include data) entrusted to you from theft, loss or damage; return all portable client computer hardware in your possession (including the data contained therein) upon completion of the assignment, and; maintain the confidentiality of client proprietary, confidential, or non-public information. In addition, job duties require access to secure and protected client information technology systems and related data security obligations.

Salary : $44 - $69

If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution. Compensation Planning
Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right. Surveys & Data Sets

What is the career path for a Sr. DevOps Engineer (Google Cloud IAM )?

Sign up to receive alerts about other jobs on the Sr. DevOps Engineer (Google Cloud IAM ) career path by checking the boxes next to the positions that interest you.
Income Estimation: 
$92,369 - $122,605
Income Estimation: 
$117,024 - $149,811
Income Estimation: 
$117,024 - $149,811
Income Estimation: 
$137,568 - $176,908
Employees: Get a Salary Increase
View Core, Job Family, and Industry Job Skills and Competency Data for more than 15,000 Job Titles Skills Library

Job openings at capgemini

Oracle- Associate OCI - Application Consultant
Apply
  • capgemini Burlington, VT
  • Choosing Capgemini means choosing a company where you will be empowered to shape your career in the way you’d like, where you’ll be supported and inspired ... more
  • 9 Days Ago
Data Technical Lead (Microsoft Fabric)
Apply
  • capgemini Hartford, CT
  • Lead end-to-end delivery on Microsoft Fabric OneLake Lakehouse Data Pipelines Synapse in Fabric Power BI setting reference patterns and engineering standar... more
  • 9 Days Ago
Mainframe Engineer Sr
Apply
  • capgemini Phoenix, AZ
  • Responsibilities: Design develop and maintain COBOL programs on IBM zOS mainframe systems Create modify and optimize JCL scripts for batch job execution Wo... more
  • 9 Days Ago
Salesforce Agentforce Business Analyst
Apply
  • capgemini Nashville, TN
  • Choosing Capgemini means choosing a company where you will be empowered to shape your career in the way you’d like, where you’ll be supported and inspired ... more
  • 9 Days Ago
View More Jobs at capgemini

Not the job you're looking for? Here are some other Sr. DevOps Engineer (Google Cloud IAM ) jobs in the Alpharetta, GA area that may be a better fit.

Sr Engineer, DevOps
Apply
  • Landis Gyr Alpharetta, GA
  • At Landis Gyr , we don’t just manage energy—we lead the transformation toward a smarter and more sustainable energy future. With a net revenue of USD 1.73 ... more
  • Just Posted
Sr DevOps Analytics Platform Engineer (Databricks)
Apply
  • U.S. Bank Atlanta, GA
  • At U.S. Bank, we’re on a journey to do our best. Helping the customers and businesses we serve to make better and smarter financial decisions and enabling ... more
  • 4 Days Ago
View More Jobs

AI Assistant is available now!

Feel free to start your new journey!