Senior Information Security Architect

Job Title: Senior Information Security Architect
Location: Reston, VA (Primary) / Plano, TX (Hybrid – 3 days onsite per week)
Duration: Long Term

Work Arrangement:
• Hybrid role requiring onsite presence three days per week in Reston, VA (Plano, TX option available based on business needs)
• Long-term contract engagement
• Candidates must be authorized to work in the U.S.
• Strong stakeholder collaboration and executive communication skills required
• This role supports enterprise-wide AWS cloud security initiatives

Position Overview:
We are seeking a Senior Information Security Architect with deep expertise in AWS cloud security architecture. This role will lead security design and governance efforts across multiple AWS-based initiatives, ensuring cloud environments meet enterprise security policies, regulatory standards, and industry best practices.

The ideal candidate is a self-driven senior architect capable of leading AWS security programs across concurrent projects while partnering closely with Product Owners, Enterprise Architects, and engineering teams. This role requires strong expertise in business security architecture, threat modeling, encryption strategies, and secure systems design.

Key Responsibilities:
• Lead AWS security architecture across multiple enterprise initiatives
• Design and implement secure AWS architectures aligned with enterprise cloud security policies
• Perform threat modeling and identify security risks in application and infrastructure designs
• Architect data protection strategies including encryption, masking, tokenization, and access controls
• Implement secure IAM models, authentication/authorization mechanisms, and key management strategies
• Ensure compliance with NIST, OWASP, CIS, FedRAMP, ISO, SOX, and related frameworks
• Architect and secure CI/CD pipelines and DevSecOps workflows
• Provide security guidance for containerized workloads (ECS/EKS) and serverless environments
• Partner with stakeholders to align cloud architecture with resiliency, availability, and integration standards
• Develop mitigation strategies and security controls based on risk assessments

Mandatory Qualifications:
• 10+ years of experience in Information Security and Systems Architecture
• Deep hands-on AWS architecture experience across services including Compute, IAM, RDS, Networking, Messaging, Data Storage, CI/CD, ETL, Serverless, ECS/EKS
• Strong understanding of AWS Well-Architected Framework and Security Pillars
• Proven experience in Threat Modeling and Security Architecture design
• Expertise in Application Security, API Security, Infrastructure Security, and Container Security
• Strong experience with encryption (at rest and in transit), key management, tokenization, and data discovery
• Experience implementing DevSecOps and securing CI/CD pipelines
• Experience with SIEM, CSPM, CWPP, and enterprise access control frameworks
• Strong knowledge of industry standards (NIST, OWASP, CIS, FedRAMP, ISO, SOX)
• Experience designing high-availability, resilient, API-driven systems
• Ability to lead multiple projects and collaborate with cross-functional teams

Preferred Qualifications:
• AWS Advanced Certification (Professional or Specialty)
• CISSP, CCSP, or equivalent security certification
• Experience securing AI/ML workloads in AWS
• Financial services or regulated industry experience