Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join us as a Cloud IAM Business Analyst, mapping access-management processes and conducting gap analysis.
- Company: We are a global recruitment specialist supporting clients across EMEA, APAC, US, and Canada.
- Benefits: Enjoy a hybrid work model with 60% office and 40% home, plus competitive pay.
- Why this job: Be part of a dynamic team, enhancing security across multi-cloud environments while developing your skills.
- Qualifications: 5+ years in IT security or IAM, with hands-on experience in AWS, Azure, and GCP.
- Other info: Candidates often shortlisted within 48 hours; apply now to kickstart your career!
The predicted salary is between 43200 - 72000 ÂŁ per year.
We are a Global Recruitment specialist that provides support to the clients across EMEA, APAC, US and Canada. We have an excellent job opportunity for you.
Location: Grosvenor House, 1 Wellington St, Sheffield City Centre, Sheffield S1 4NB, Hybrid, (60% office 40% home).
Duration: 28/11/2025
Rate: 406GBP/Day (Inside IR35)
Role Description:
- BA - Should excel at eliciting and documenting requirements, mapping “as-is” and “to-be” access-management processes, conducting gap analysis, and producing clear reports and presentations for stakeholders.
- Strong communication skills to align Security, DevOps, and business teams, plus a data-driven mindset for analysing IAM logs and evaluating risk.
- On the cloud side, they must understand IAM constructs in AWS (users, roles, policies, permission boundaries), Azure (Azure AD, RBAC, PIM), GCP (principals, roles, policy bindings), and Alibaba Cloud (RAM users, groups, roles, and policy management).
- Familiar with SaaS identity management—SSO protocols (SAML, OAuth/OIDC), SCIM provisioning, and entitlement workflows—to identify gaps, over-privileged accounts, and recommend least-privilege controls across multi-cloud (including Ali Cloud) and SaaS environments.
Cloud-Specific IAM Knowledge (Required):
- AWS IAM: In-depth understanding of IAM users/groups/roles/policies, permission boundaries, service-linked roles, and AWS Organizations (SCPs). Hands-on experience reviewing existing IAM policies (JSON), detecting overly broad permissions (e.g., “*” or wildcard actions), and recommending fine-grained least-privilege models.
- Azure Active Directory & Azure RBAC: Knowledge of Azure AD concepts: users, groups, applications/service principals, managed identities, Conditional Access policies. Familiarity with Azure RBAC roles (built-in and custom) and PIM (Privileged Identity Management) best practices for just-in-time elevation.
- GCP IAM: Understanding of GCP IAM constructs: Principals (Users, Service Accounts, Groups), Roles (primitive, predefined, custom), Service Account Keys, and Organization-level policies. Experience reviewing IAM policy bindings (via GCP IAM or Terraform state) and recommending Organization/Folder/Project-level least-privilege structures.
- Kubernetes RBAC & Cloud-Native Identities: Solid grasp of Kubernetes RBAC entities—Role, Cluster Role, Role Binding, ClusterRoleBinding—and how they map to Kubernetes API groups. Awareness of how cloud-provider-managed Kubernetes (EKS, AKS, GKE) integrates with cloud IAM.
- SaaS Application Identity Management: Familiarity with Single Sign-On (SSO) protocols (SAML, OAuth 2.0/OIDC) and identity providers (Azure AD, GCDS, AWS IAM). Understanding of SCIM provisioning, user lifecycle workflows (onboarding/offboarding), and entitlement catalogue management for major SaaS (e.g., Office 365).
Required Skills & Experience:
- 5+ years as a Business Analyst (or similar) focused on IT security, governance, or IAM.
- Hands-on experience mapping and documenting IAM processes in AWS, Azure, and GCP.
- Practical knowledge of AWS IAM (users/roles/policies), Azure AD & RBAC, and GCP IAM (roles/bindings).
- Familiarity with Kubernetes RBAC (Role Bindings, ClusterRoleBindings) and how those ties into cloud IAM.
- Proven track record analysing SaaS-based identity integrations (e.g., SAML SSO, SCIM provisioning).
- Strong gap-analysis skills, able to pinpoint missing or weak access controls.
- Comfortable using cloud consoles, CLIs (AWS, Azure, GCP and Ali) and reviewing IaC (Terraform/CloudFormation) for IAM-related misconfigurations.
- Excellent stakeholder management; able to facilitate cross-functional workshops and drive consensus.
If you are interested in this position and would like to learn more, please send through your CV and we will get in touch with you as soon as possible. Please note, candidates are often shortlisted within 48 hours.
Cloud IAM BA employer: eTeam
Contact Detail:
eTeam Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Cloud IAM BA
✨Tip Number 1
Familiarise yourself with the specific IAM constructs mentioned in the job description, such as AWS IAM, Azure AD, and GCP IAM. Having a solid understanding of these will not only help you during interviews but also demonstrate your commitment to the role.
✨Tip Number 2
Prepare to discuss your experience with gap analysis and how you've identified and resolved access control issues in previous roles. Be ready to share specific examples that highlight your analytical skills and problem-solving abilities.
✨Tip Number 3
Brush up on your communication skills, especially in terms of aligning technical teams with business objectives. Practice explaining complex IAM concepts in simple terms, as this will be crucial when working with stakeholders from different backgrounds.
✨Tip Number 4
Engage with online communities or forums related to cloud IAM and security. Networking with professionals in the field can provide valuable insights and may even lead to referrals, increasing your chances of landing the job with us.
We think you need these skills to ace Cloud IAM BA
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your experience as a Business Analyst, particularly in IT security and IAM. Emphasise your hands-on experience with AWS, Azure, and GCP IAM processes, as well as any relevant projects you've worked on.
Showcase Relevant Skills: Clearly outline your skills related to cloud IAM constructs, such as AWS IAM policies, Azure AD roles, and GCP IAM bindings. Use specific examples to demonstrate your understanding of these technologies and how you've applied them in previous roles.
Highlight Communication Abilities: Since strong communication skills are essential for this role, include examples of how you've successfully aligned different teams (like Security, DevOps, and business teams) in past projects. This will show your ability to facilitate cross-functional collaboration.
Prepare a Strong Cover Letter: Write a cover letter that not only expresses your interest in the Cloud IAM BA position but also summarises your relevant experience and skills. Make sure to mention your familiarity with SaaS identity management and gap analysis, as these are key aspects of the role.
How to prepare for a job interview at eTeam
✨Know Your IAM Constructs
Make sure you have a solid understanding of IAM constructs across AWS, Azure, GCP, and Alibaba Cloud. Be prepared to discuss specific examples of how you've managed users, roles, and policies in these environments.
✨Demonstrate Your Analytical Skills
Be ready to showcase your gap analysis skills. Prepare to discuss past experiences where you identified weaknesses in access controls and how you recommended improvements.
✨Communicate Effectively
Strong communication is key for this role. Practice articulating complex IAM concepts in a way that non-technical stakeholders can understand, as you'll need to align various teams.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that test your problem-solving abilities. Think about how you would approach real-world IAM challenges and be ready to explain your thought process.
