Skills

Problem Solving Python GitHub GitLab CI/CD Version Control AWS CloudFormation Quality Assurance Training Architecture Azure AWS CI/CD Pipelines Terraform Infrastructure as Code GitHub Actions

Job Specifications

AWS Engineer

£475-500 per day, Outside IR35

Fully Remote

Initially until the end of the year (likely extensions onto next project phase)

Background to the Project:

The project aims to develop and implement a federated identity & authentication

management service using Keycloak, integrated with AWS secure landing zone, to facilitate Single Sign-On (SSO) capabilities and enhance joiners, movers, leavers (JML) processes.

Objectives of this project:

1. Understand current infrastructure and AWS secure landing zone.

2. Review existing Terraform scripts and identity strategy documents.

3. Define architecture for federated identity services.

4. Modify Terraform scripts to align with AWS secure landing zone.

5. Trial deployment with one service (e.g., OpenEyes).

6. Documentation and training for internal teams.

Project Key Deliverables:

Discovery Phase:

- Understand current infrastructure and AWS secure landing zone.

- Review existing Terraform scripts and Identity and Authentication Management (IAM) strategy documents.

- Review the DEV infrastructure for the KeyCloak containers (VPC level and based on known keycloak scripts, and from software repository (TO BE PROVIDED). These may need versioning and confirmation with regard to Entra integration.

1. ID server

2. Authentication Server

3. Authorisation server

Skills / Experience needed:

AWS experience

Infrastructure as Code (IaC)

Terraform / OpenTofu

AWS CloudFormation / AWS CDK

CI/CD: Experience integrating IAM/IdM deployments into CI/CD pipelines

(CodePipeline, GitHub Actions, GitLab)

CIS Benchmark compliance

Core IAM Platform -Keycloak (working knowledge of features, extension

points, deployment topologies, and limitations). OIDC/OAuth 2.0 and SAML protocol expertise

Scripting & Orchestration

Python (Boto3)

AWS CLI

Integration Tools

External Identity Providers (IdPs): Hands-on configuration and integration

experience with at least one major IdP like Microsoft Entra ID (Azure AD),

Okta, or Ping Identity using SAML 2.0 and SCIM for automatic user and group provisioning

Core Experience

Security Automation

Policy Auditing

DevSecOps Integration

Professional Capabilities:

Hands-on Problem Solving

Quality Assurance & Testing

Automation Mindset

Version Control and CI/CD Proficiency

Technical Translator

Cross-Functional Interface

Operational Documentation

Knowledge Sharing

Urgent Contract starting on the 3rd of November - please apply by submitting your latest CV for immediate review by our Talent team.

Thank you!

About the Company

Unify was created to reshape the rules of the recruitment industry. With an authentic and transparent approach, we set out to connect top class talent with the most passionate, innovative and forward thinking employers in the UK Our mission is to do things differently, to keep things simple and streamlined to ensure the best for our candidates, clients and, of course, our planet. Unify was built on principles and this is reflected in our dedicated team. We’re a likeable, diverse, and refreshing team of professionals that no... Know more