Contact
Telegram

Cloud Engineer

Unify Talent - IT, Digital & Tech Recruitment United Kingdom
Remote
This Job is No Longer Active This position is no longer accepting applications

Job Description


AWS Engineer

£475-500 per day, Outside IR35

Fully Remote

Initially until the end of the year (likely extensions onto next project phase)


Background to the Project:


The project aims to develop and implement a federated identity & authentication

management service using Keycloak, integrated with AWS secure landing zone, to facilitate Single Sign-On (SSO) capabilities and enhance joiners, movers, leavers (JML) processes.


Objectives of this project:


1. Understand current infrastructure and AWS secure landing zone.

2. Review existing Terraform scripts and identity strategy documents.

3. Define architecture for federated identity services.

4. Modify Terraform scripts to align with AWS secure landing zone.

5. Trial deployment with one service (e.g., OpenEyes).

6. Documentation and training for internal teams.


Project Key Deliverables:


Discovery Phase:

- Understand current infrastructure and AWS secure landing zone.

- Review existing Terraform scripts and Identity and Authentication Management (IAM) strategy documents.

- Review the DEV infrastructure for the KeyCloak containers (VPC level and based on known keycloak scripts, and from software repository (TO BE PROVIDED). These may need versioning and confirmation with regard to Entra integration.


1. ID server

2. Authentication Server

3. Authorisation server


Skills / Experience needed:


AWS experience


Infrastructure as Code (IaC)

● Terraform / OpenTofu

● AWS CloudFormation / AWS CDK

● CI/CD: Experience integrating IAM/IdM deployments into CI/CD pipelines

(CodePipeline, GitHub Actions, GitLab)

● CIS Benchmark compliance

● Core IAM Platform -Keycloak (working knowledge of features, extension

points, deployment topologies, and limitations). OIDC/OAuth 2.0 and SAML protocol expertise


Scripting & Orchestration

● Python (Boto3)

● AWS CLI


Integration Tools

● External Identity Providers (IdPs): Hands-on configuration and integration

experience with at least one major IdP like Microsoft Entra ID (Azure AD),

Okta, or Ping Identity using SAML 2.0 and SCIM for automatic user and group provisioning


Core Experience

● Security Automation

● Policy Auditing

● DevSecOps Integration


Professional Capabilities:


● Hands-on Problem Solving

● Quality Assurance & Testing

● Automation Mindset

● Version Control and CI/CD Proficiency

● Technical Translator

● Cross-Functional Interface

● Operational Documentation

● Knowledge Sharing


Urgent Contract starting on the 3rd of November - please apply by submitting your latest CV for immediate review by our Talent team.


Thank you!


Job Overview
Posted Date Oct 23, 2025
Employment Type Contract
Experience Level Mid-Senior level
Location United Kingdom
Category Devops
Company Unify Talent - IT, Digital & Tech Recruitment
Mentioned Skills
python cis server oauth saml aws terraform cloud infrastructure as code aws cdk cloudformation gitlab
Industries
it services and it consulting

Subscribe our newsletter

New Things Will Always Update Regularly