Adroit Innovative Solutions Inc
Website:
adroitinnovative.com
Job details:
Job Title: Cloud Identity (Security & Identity Governance)
Remote: India
Shift: 11-7 PM IST
Overview
We are seeking a Cloud Identity professional focused on the security side of identity governance, operating at enterprise scale. This role sits within Security Operations and is responsible for evaluating, analysing, and reducing identity risk across a highly cloud based environment (~70% cloud).
This is not a traditional IAM operations or provisioning role. We are specifically looking for someone with a security lens who understands identity as an attack surface, can operate identity security tools (CIEM), and can evaluate identity risk when dealing with hundreds of thousands to millions of identities.
The ideal candidate has experience across both workforce (human) identities and workload / non-human identities (NHI) and understands how identity works in cloud environments well enough to analyse access, entitlements, and blast radius—not to build cloud infrastructure.
Key Responsibilities
•Operate security identity governance and CIEM tooling (e.g., Veza or similar) to analyze identity risk, run reports, and produce actionable findings.
•Perform identity graph analysis to understand direct and indirect access paths across cloud, SaaS, and data platforms.
•Analyse privileged access, entitlement sprawl, and toxic permission combinations across identities.
•Model privilege escalation paths and explain how access can be abused or expanded.
•Perform cloud entitlement modelling at scale, focusing on risk—not provisioning.
•Support multi cloud IAM posture assessment (AWS, Azure, GCP) from an identity risk perspective.
•Conduct SaaS entitlement analysis to uncover hidden or inherited access.
•Perform data access modelling to understand who (or what) can access sensitive data and how.
•Model and communicate blast radius: if an identity is compromised, what systems, data, and privileges are exposed?
•Partner with security operations, cloud security, IAM, and application teams to drive remediation based on risk findings.
•Help define and mature processes for identity security posture management (ISPM) at massive scale.
Required Experience
•4+ years of experience in identity security, identity governance, or cloud identity risk (not access provisioning or lifecycle ops)
•Strong understanding of identity as an attack surface, including identity graph analysis and indirect access risk
•Hands-on experience analysing privileged access, entitlement sprawl, and toxic permission combinations
•Experience operating identity risk or CIEM tools (e.g., Veza or similar) to analyze access, generate findings, and run reports
•Demonstrated ability to evaluate identity risk at scale (hundreds of thousands to millions of identities)
•Experience with both workforce identities (human) and workload / non human identities (service accounts, roles, integrations)
•Understanding of cloud identity concepts across AWS, Azure, and/or GCP (role-based access, trust relationships, entitlements)
•Ability to model and explain privilege escalation paths, blast radius, and exposure impact
•Strong security mindset with the ability to translate technical identity findings into clear risk narratives
•Experience partnering with security operations, IAM, cloud security, and application teams to drive remediation
What This Role Is NOT
• ❌ Not an IAM operations role
• ❌ No day-to-day access provisioning, ticket queues, or JML workflows
• ❌ Not a cloud engineering or infrastructure role
• ❌ Not workforce identity only (Okta only, HR driven IAM profiles)
Candidates should be comfortable discussing:
• Workload Identity / Non Human Identity (NHI)
• Identity graph analysis
• Privilege escalation path modelling
• Cloud entitlement modelling at scale
• Multi cloud IAM posture assessment
• SaaS entitlement analysis
• Data access modelling
• Blast radius modelling based on identities
Click on Apply to know more.