Senior Information Security Architect (AWS-Focused)

Project Overview

We are seeking a Senior Information Security Architect with strong expertise in AWS cloud environments. This role focuses on designing and leading secure cloud architectures aligned with enterprise security policies industry standards and regulatory frameworks.

The selected candidate will drive AWS security architecture initiatives across multiple projects working closely with product owners enterprise architects and other stakeholders. This role offers the potential for contract-to-hire after six months (option required though not guaranteed).

Key Responsibilities

• Lead AWS security architecture initiatives across multiple concurrent projects.
• Design and implement secure cloud solutions aligned with enterprise security policies standards and procedures.
• Ensure compliance with industry security frameworks such as NIST and OWASP.
• Conduct threat modeling and identify security risks in system and cloud architectures.
• Design and enforce data security controls including encryption masking tokenization and access management.
• Define and implement identity and access management (IAM) strategies.
• Architect secure DevSecOps and CI/CD pipelines.
• Implement security controls for infrastructure APIs containers and applications.
• Collaborate with cross-functional stakeholders to ensure secure and resilient system integrations.
• Provide architectural guidance for high availability resiliency and secure SaaS integrations.

Required Qualifications

• Proven experience as a Senior Information Security Architect with strong AWS expertise.
• Deep hands-on experience with AWS architecture and core services including compute IAM RDS networking messaging data storage CI/CD AI/ML ETL serverless ECS/EKS and resource policies.
• Strong background in Information Security Architecture including application security API security DevSecOps pipeline security infrastructure security authentication and authorization (AuthN/Z) encryption key management and data discovery.
• Experience with security monitoring and posture management tools such as SIEM CSPM and CWPP.
• Hands-on experience designing systems based on industry standards and conducting threat modeling to implement mitigating controls.
• Experience with system design principles including API-driven architecture open standards stateless architecture resiliency high availability and SaaS integrations.
• Experience working within security frameworks such as OWASP NIST CIS FEDRAMP ISO and SOX.
• Ability to work onsite in Reston VA three days per week.
• Must be eligible for W2 conversion (USC/GC required if working as IC).

Technical & Soft Skills

Technical Skills:

• AWS Cloud Architecture and Security
• Cloud Security Best Practices and AWS Well-Architected Framework
• Threat Modeling
• Data Security (Encryption Masking Tokenization)
• Identity & Access Management
• DevSecOps and CI/CD Security
• Container Security
• SIEM CSPM CWPP
• Systems and SaaS Integration
• AI/ML exposure (preferred)

Soft Skills:

• Ability to lead security architecture initiatives independently
• Strong stakeholder collaboration skills
• Strategic thinking and risk assessment capabilities
• Clear communication and documentation skills
• Ability to manage multiple projects simultaneously