Call Notes:
Message Body
1. Candidates with a combination of AWS and Security certifications are typically the strongest fit for this role.
2. Certification details and validation information must be clearly listed on the resume.
AWS Certifications (Required / Strongly Preferred)
- AWS Solutions Architect - Professional
- AWS Security Specialty
Security Certifications (Required / Strongly Preferred)
________________________________________
Candidate Experience Expectations
Cloud Security Expertise
Seek candidates who have played a significant and hands on deep expertise role in cloud security programs, including:
- Architecting multiple complex application migrations to AWS
- Designing complex, large scale AWS architectures
- Operating as a senior level architect capable of developing, articulating, and presenting complex security architectures to senior leadership
- Influencing and shaping direction, roadmaps, and overall security architecture vision
AWS expertise is mandatory.
Avoid candidates with minimal or surface level exposure to AWS. Deep, hands on architectural experience is required.
________________________________________
Technical Competency Requirements
IAM Expertise
- Candidate must demonstrate 9/10 or 10/10 proficiency in AWS IAM policies (e.g., policy construction, least privilege design, permissions boundaries, identity federation).
Network Security Expertise
- Candidate must demonstrate 9/10 or 10/10 proficiency in AWS network security controls (e.g., VPC design, security groups, NACLs, PrivateLink, WAF, routing, segmentation).
Core Security Competencies
Candidates must show strong expertise across foundational security pillars, including:
1. Encryption (KMS, envelope encryption, key rotation, data at rest / in transit)
2. Identity Management (IAM, SSO, federation, identity lifecycle)
3. Authentication & Authorization (OAuth, OIDC, SAML, RBAC/ABAC models)
4. Network Controls (segmentation, firewalling, ingress/egress patterns, zero trust principles)
Description:
Title: Consultant - InfoSec Architect V
Hiring for a Senior Information Security Architect position primarily focusing on AWS. This position requires deep expertise in Information Security principles including Business Security Architecture, Threat Modelling, Data Security (data encryption, masking, tokenization, data access controls), AWS Cloud and Systems architecture. This individual must be able to architect and ensure the security and compliance of the cloud environments based on enterprise cloud security policies, standards, procedures and industry best practices and frameworks (NIST, OWASP)
- This is a potential contract to hire (not necessarily but need the option) after 6 months.
- Candidate is expected to come to Reston office three times a week
- Self-starter and Senior Architect who can lead the AWS Security architecture program in multiple projects simultaneously by collaborating with numerous stakeholders (Product owners, Enterprise Architect)
Must Have
1 Public Cloud: AWS Experience
Deep Expertise and proven Track record in AWS Architecture and AWS Services (Compute, IAM, RDS, Resource Policies, Network, Messaging, Data Storage, CI/CD, AI/ML, ETL, Serverless, ECS/EKS). Experience with AWS security pillars, best practices and well designed architecture. Experience in AI/ML is preferable.
2 Information Security Architecture
Key experience: Application security, Threat Modelling, API Security, DevSecOps, Pipeline security, Infrastructure security, AuthN/Z, Encryption, Key Management, Data discovery and encryption, SIEM, CSPM, CWPP, Access Controls, Container Security
- Industry security standards and frameworks (OWASP, NIST CIS, FED Ramp, ISO, SOX etc.).
- Experience designing Architectures based on Security Standards and threat model the designs to identify issues and design mitigating controls.
3. Systems Architecture
- Key experience: System Design, API Driven architecture, Open Standards, stateless, Resiliency, High Availability, System and SaaS Integrations.
Nice to Have
1. AWS advanced Certification (Professional, Specialty), Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP) or equivalent