AWS Security Architect

Role: AWS Solutions Architect
Location: Reston VA, in person interviews Hybrid 3 days onsite
Duration: 9 months(Potential Contract-to-Hire)

Seeking a very senior security architect with strong hands-on AWS expertise and deep security architecture experience. Must design and implement security controls across AWS platforms and support multiple business applications.

Must-Have Skills:

• Advanced AWS (IAM, networking, data stores, security services)
• Security architecture & control implementation
• Enterprise architecture experience
• Strong understanding of access controls, zero trust, network & application security, logging/monitoring
• Exposure to CI/CD and automation

Preferred Certs: AWS Architect, AWS Professional/Security Specialty, CISSP.
GenAI: No coding required, but mandatory understanding of GenAI systems, risks, and security controls.

Responsibilities:

• Support 3 4 projects simultaneously
• Architecture reviews (2 6-week cycles)
• Participate in Architecture Review Board
• Design secure architecture aligned to AWS standards and cross-account controls

Hiring for a Senior Information Security Architect position primarily focusing on AWS. This position requires deep expertise in Information Security principles including Business Security Architecture, Threat Modelling, Data Security (data encryption, masking, tokenization, data access controls), AWS Cloud and Systems architecture. This individual must be able to architect and ensure the security and compliance of the cloud environments based on enterprise cloud security policies, standards, procedures and industry best practices and frameworks (NIST, OWASP)

Must Have:

1 Public Cloud: AWS Experience

Deep Expertise and proven Track record in AWS Architecture and AWS Services (Compute, IAM, RDS, Resource Policies, Network, Messaging, Data Storage, CI/CD, AI/ML, ETL, Serverless, ECS/EKS). Experience with AWS security pillars, best practices and well-designed architecture. Experience in AI/ML is preferable.

2 Information Security Architecture

Key experience:

• Application security, Threat Modelling, API Security, DevSecOps, Pipeline security, Infrastructure security, AuthN/Z, Encryption, Key Management, Data discovery and encryption, SIEM, CSPM, CWPP, Access Controls, Container Security
• Industry security standards and frameworks (OWASP, NIST CIS, FED Ramp, ISO, SOX etc.).
• Experience designing Architectures based on Security Standards and threat model the designs to identify issues and design mitigating controls.

Systems Architecture

• Key experience: System Design, API Driven architecture, Open Standards, stateless, Resiliency, High Availability, System and SaaS Integrations.

Nice to Have

• AWS advanced Certification (Professional, Specialty), Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP) or equivalent

Regards

Tim Patten

tim (at) pullskill (dot) com

551-272-o2o3