AWS Cloud Engineer (Redshift SSO Integration Using OIDC/SAML)

Long Finch Technologies

Boston, MA

Posted On: Oct 06, 2025

Posted On: Oct 06, 2025

Job Overview

Job Type

Contract - Corp-to-Corp, Contract - W2, Contract - Independent

Experience

10 - 15 Years

Salary

Depends on Experience

Work Arrangement

On-Site

Travel Requirement

0%

Required Skills

  • Cloud Engineer
  • Identity & Access Specialist
  • AWS Redshift
  • IAM authentication
  • SSO
  • OAuth 2.0
  • Azure AD
Job Description

We are seeking a skilled Cloud Engineer / Identity & Access Specialist with hands-on experience implementing Single Sign-On (SSO) authentication for Amazon Redshift using Active Directory (AD) federation with OIDC/SAML. The ideal candidate will have a strong background in AWS Identity and Access Management (IAM), enterprise IdPs (Azure AD, Okta, Ping, etc.), and secure integration of data platforms into corporate identity ecosystems.

 

Key Responsibilities
  • Design, implement, and maintain SSO authentication flows for Amazon Redshift using OIDC/SAML-based federation with Active Directory and enterprise IdPs.
  • Configure and manage IAM roles, trust policies, and STS token-based authentication to enable secure Redshift access.
  • Integrate Redshift with Azure AD/Okta/other IdPs to support role-based access control (RBAC) for business and technical users.
  • Automate Redshift credential management using AWS SDKs, Redshift API (GetClusterCredentials), and token-based authentication.
  • Collaborate with security and compliance teams to ensure solutions meet enterprise security standards (MFA, conditional access, least privilege).
  • Troubleshoot and optimize JDBC/ODBC client connectivity for BI tools (Tableau, Power BI, etc.) using federated authentication.
  • Document authentication flows, policies, and procedures for both technical teams and end users.

 

Required Skills/Experience
  • Strong hands-on experience with AWS Redshift (provisioned or serverless) and IAM authentication.
  • Expertise in SSO protocols: SAML 2.0, OAuth 2.0, and OpenID Connect (OIDC).
  • Experience federating Active Directory / Azure AD / Okta / Ping Identity with AWS IAM for application authentication.
  • Familiarity with AWS STS, IAM Roles, and trust policies for cross-service authentication.
  • Experience integrating Redshift with BI/reporting tools (e.g., Tableau, Power BI) using token-based authentication.
  • Proficiency with AWS CLI / SDKs / API for managing temporary credentials.
  • Strong understanding of identity governance, RBAC, and data security best practices.

Job ID: LF250111

Posted By

Mayank Rawat

Bilingual Recruiter