DevOps Engineer

Hello **,** We have the following openings at **Montreal Canada F2F is required.** Kindly send your updated resume if interested at mjakhar@webmsi.com and you may reach out to me at 248\-233\-6240\. Job Title Google Cloud IAM DevOps Engineer Location Montreal Canada Only local F2F is required Duration 12 months and possible Contract\-To\-Hire any time after 90 days **Job Description: *CGEMJP00334239 \- Google Cloud IAM DevOps Engineer \- Montreal Canada F2F is required*** **Job Description:** "We are seeking a **Google Cloud IAM DevOps Engineer** with strong expertise in Identity and Access Management automation on Google Cloud Platform GCP This role focuses on building secure and scalable IAM architectures automating identity lifecycle management and implementing certificate based authentication using X509 certificates The ideal candidate will have experience building IAM automation using Terraform GitHub Actions Python and Shell scripting while implementing enterprisegrade identity federation and certificate management solutions Key Responsibilities Google Cloud IAM Engineering Design and implement secure IAM architectures on Google Cloud Manage IAM roles policies and permissions using least privilege principles Create and maintain Service Accounts and Service Account key policies Implement Workload Identity Pools and Providers for external workloads accessing GCP securely Implement Workforce Identity Federation to allow enterprise workforce authentication without service account keys X509 Certificate Identity Management Design and manage X509 certificate based authentication systems for workloads and external integrations Implement certificate lifecycle management including issuance rotation and revocation Automate certificate provisioning and renewal processes Integrate certificate authentication with identity federation and secure workload authentication Infrastructure as Code DevOps Develop reusable Terraform modules to automate IAM and identity federation infrastructure Implement GitHub Actions pipelines to deploy and manage IAM configurations Maintain automated pipelines for IAM resource provisioning Automation Scripting Develop automation tools using Python Shell scripting Use scripting to automate IAM role audits Service account lifecycle management Certificate provisioning and rotation Required Skills Google Cloud Strong hands on experience with o Google Cloud IAM o Service Accounts o Workload Identity Pools o Workload Identity Federation o Workforce Identity Federation DevOps Infrastructure as Code Terraform o Module development o IAM resource automation o Infrastructure lifecycle management GitHub Actions o CICD pipeline creation o Infrastructure deployment automation Programming Automation Python Shell scripting Bash Security Identity Identity federation OIDC SAML X509 certificate management Certificate lifecycle management Secure authentication architectures Least privilege access models Preferred Qualifications Experience integrating with enterprise identity providers Okta Azure AD Ping etc Familiarity with PKI infrastructure and certificate authorities Experience building IAM automation platforms at enterprise scale Experience implementing certificate based workload authentication What Youll Work On Enterprise scale Google Cloud IAM automation Identity federation platforms X509 certificate based authentication solutions Secure CICD pipelines for cloud identity provisioning Infrastructure asCode driven IAM governance Regards Manish Jakhar **Millennium Software Inc.** Cell: 248\-233\-6240 2000 Town Center, Suite 300, Southfield, MI, 48075 Visit us at www.webmsi.com