IAM & Cloud Migration Consultant

Job Title: IAM & Cloud Migration Consultant (AWS → GCP) — Python / TerraformLocations: Dallas, TX (Onsite) and San Francisco, CA (Onsite)Interview: In-person interviews - need local candidates onlyOverviewWe are seeking experienced IAM and cloud migration consultants to lead AWS-to-GCP migration efforts, design secure identity architectures, and automate infrastructure using Terraform and Python. Candidates will work onsite with engineering and security teams to deliver production-grade platform migration, IAM design/implementation, and automation for enterprise workloads.Key ResponsibilitiesLead and execute AWS to GCP migration activities for application and platform workloads.Design, implement, and operate GCP IAM solutions: roles, permissions, service accounts, conditions, and security policies.Build and maintain infrastructure as code using Terraform: reusable modules, remote state, environments/workspaces, and CI/CD integrations.Develop Python automation for provisioning, deployment, IAM management, monitoring, and incident remediation.Deploy and operate GKE clusters, containerized workloads, and related networking/load-balancer configurations.Create and maintain CI/CD pipelines (GitHub Actions, Jenkins, GitLab CI, Cloud Build) for infrastructure and application deployments.Implement monitoring, logging, and observability for migrated applications and infrastructure.Collaborate with architects, application teams, security, and operations to ensure secure, compliant migrations.Troubleshoot production incidents, do root-cause analysis, and implement long-term fixes.Document designs, runbooks, and standard operating procedures.Required Qualifications — Advanced (Senior) (80–85/hr)5+ years cloud infrastructure experience; 3+ years specifically with GCP.Proven experience leading AWS-to-GCP migrations, including replatforming or lift-and-shift strategies.Deep hands-on GCP experience (Compute Engine, GKE, Cloud Storage, VPC, Pub/Sub, Cloud Build, Monitoring & Logging).Strong Terraform expertise: writing reusable modules, state management, workspaces, CI/CD automation, and IaC best practices.Advanced Python scripting experience for automation and integrations (GCP SDK, requests, REST APIs).Solid Kubernetes experience (GKE operations, helm, pod troubleshooting).Hands-on with CI/CD tools and containerization workflows (GitHub Actions, Jenkins, Cloud Build, Docker).Strong Linux administration and networking fundamentals (DNS, TCP/IP, VPNs, firewall rules).Experience designing and implementing IAM (roles, policies, service accounts) at scale.Excellent communication skills; experience working onsite with cross-functional teams.Required Qualifications — Intermediate (70–75/hr)2–4 years of GCP experience and 2+ years Terraform and Python experience.Practical experience with GCP core services (Compute Engine, GKE, Cloud Storage, VPC, IAM).Comfortable writing Terraform modules, managing remote state, and applying IaC best practices.Python scripting for automation, SDK usage, and basic REST integrations.Familiar with CI/CD pipelines and basic container/Kubernetes operations.Strong troubleshooting skills for cloud infrastructure and production support.Good collaboration and communication skills.Technical Must-Haves (both levels)GCP: Compute Engine, GKE, Cloud Storage, VPC, IAM, Pub/Sub, Cloud Build, Monitoring/Logging.Terraform: reusable modules, remote state, workspaces/environments, plan/apply discipline.Python: scripting, GCP SDK usage, automation tasks.CI/CD & DevOps: GitHub Actions/Jenkins/GitLab CI/Cloud Build, Docker.Kubernetes: Docker images, K8s manifests, Helm basics, GKE troubleshooting.Linux & Networking fundamentals.Nice-to-HaveVertex AI / MLOps exposureAnsible or other configuration management toolsObservability: Prometheus, Grafana, DatadogCloud security/compliance experience (CIS, IAM policy hardening)Multi-cloud experience (AWS/Azure) and migration toolsFinOps / cost optimization experienceTerraform Enterprise / Sentinel experienceBehavioral & Soft SkillsProven ability to work onsite with engineering and security stakeholders.Strong documentation and runbook creation skills.Self-starter, able to work independently and mentor junior engineers.Comfortable in an Agile/Scrum environment and on-call rotation.Interview & Hiring LogisticsInterview type: In-person technical interviews (hands-on whiteboard or laptop), followed by behavioral panel.Dallas & San Francisco: candidate must be able to work onsite full-time for the contract duration.Expected start: immediate to 4 weeks.Contract length: typical 6–12 months with possible extensions.