AWS Cloud Security Architect- Remote (Anywhere in the U.S.)

GuidePoint Security is seeking a highly skilled Cloud Security Architect with deep expertise in AWS to lead the design, assessment, and governance of secure cloud environments for clients. The ideal candidate will combine technical excellence in AWS and multi-cloud platforms with strong client advisory skills.

Requirements

• Design secure cloud architectures and reference models for AWS and multi-cloud environments
• Conduct in-depth cloud security assessments to identify security misconfigurations, architecture and cloud operations risks, and compliance gaps
• Advise clients on AWS identity and access management strategies including IAM roles, policies, federation, and ABAC/RBAC models
• Develop and implement cloud governance strategies including tagging taxonomies, policy enforcement with SCPs, RCPs, DPs, and Policy as Code patterns
• Perform threat modeling and risk assessments for cloud-native applications and workloads
• Guide secure implementation of Infrastructure as Code with Terraform, CloudFormation, and AWS CDK
• Integrate security controls into client CI/CD pipelines and DevOps workflows
• Map cloud security controls to regulatory frameworks like PCI, SOC 2, HITRUST, NIST, ISO 27001, etc.
• Assist clients with continuous compliance and audit readiness in cloud environments
• Prepare and present client deliverables such as security roadmaps, process improvements, gap analyses, architecture diagrams, cloud security strategies, and custom deliverables based on the needs of the client
• Lead AWS security workshops, technical interviews, and stakeholder briefings
• Contribute to internal methodologies, templates, and reusable assessment frameworks
• Mentor junior consultants and support knowledge sharing within the consultancy
• Assist with scoping and pre-sales activities including proposals and statements of work (SOWs)
• Scripting or automation skills (e.g., Python, Bash, or PowerShell)
• Development knowledge or experience with Infrastructure as Code (IaC), such as Terraform, CloudFormation, or CDK
• Working knowledge with the Cloud Security Alliance (CSA) Cloud Control Matrix (CCM)
• Familiarity with DevSecOps practices and integrating security into CI/CD pipelines

Benefits

• Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)
• Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family) and GPS will contribute in one lump sum: ($500 per EE annually / $1000 per family annually (includes spouse/children/family options)
• Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans
• 12 corporate holidays and a Flexible Time Off (FTO) program
• Healthy mobile phone and home internet allowance
• Eligibility for retirement plan after 2 months at open enrollment
• Pet Benefit Option