📍 Job Overview

• Job Title: AWS Cloud Security Architect - Remote (Anywhere in the U.S.)
• Company: GuidePoint Security
• Location: Remote (Anywhere in the U.S.)
• Job Type: Full-Time
• Category: Cloud Security Architect
• Date Posted: June 24, 2025
• Experience Level: Mid-Senior level (5-10 years)
• Remote Status: Remote (U.S. based only, some travel may be required)

🚀 Role Summary

• Key Responsibilities: Design secure cloud architectures, conduct in-depth security assessments, advise clients on AWS security strategies, and integrate security controls into CI/CD pipelines.
• Key Skills: AWS, cloud security, risk assessment, compliance mapping, infrastructure as code, DevSecOps, threat modeling, IAM, CSPM, CIEM, CWPP, scripting, mentoring, and client advisory.
• Preferred Certifications: CISSP, CCSP, CCSK, AWS Certified Security – Specialty, AWS Certified Solutions Architect – Professional, Microsoft Certified: Azure Security Engineer Associate, Google Professional Cloud Security Engineer.

📝 Enhancement Note: This role requires a strong background in AWS cloud security and a proven track record in designing secure architectures and assessing security posture. The ideal candidate will possess a deep understanding of AWS services, IAM patterns, and cloud-native security tools, as well as the ability to advise clients on security strategies and integrate security into DevOps workflows.

💻 Primary Responsibilities

• Architecture Design & Assessment:

  • Design secure cloud architectures and reference models for AWS and multi-cloud environments.
  • Conduct in-depth security assessments to identify security misconfigurations, architecture risks, and compliance gaps.
  • Map cloud security controls to regulatory frameworks like PCI, SOC 2, HITRUST, NIST, and ISO 27001.

• Security Strategy & Governance:

  • Advise clients on AWS identity and access management strategies, including IAM roles, policies, federation, and ABAC/RBAC models.
  • Develop and implement cloud governance strategies, including tagging taxonomies, policy enforcement with SCPs, RCPs, DPs, and Policy as Code patterns.
  • Guide secure implementation of Infrastructure as Code with Terraform, CloudFormation, and AWS CDK.

• Threat Modeling & Risk Assessment:

  • Perform threat modeling and risk assessments for cloud-native applications and workloads.
  • Identify and mitigate security risks in cloud environments and implement guardrails to prevent misconfigurations.

• Client Engagement & Mentoring:

  • Lead AWS security workshops, technical interviews, and stakeholder briefings.
  • Contribute to internal methodologies, templates, and reusable assessment frameworks.
  • Mentor junior consultants and support knowledge sharing within the consultancy.
  • Assist with scoping and pre-sales activities, including proposals and statements of work (SOWs).

📝 Enhancement Note: This role requires a strong consulting presence and the ability to communicate complex security concepts clearly to both technical and non-technical stakeholders. The ideal candidate will possess excellent communication skills, be comfortable leading workshops and briefings, and have experience mentoring junior staff.

🎓 Skills & Qualifications

Education: Bachelor’s or equivalent experience in Cybersecurity, Computer Science, Engineering, or related field.

Experience: Minimum of 5 years of designing AWS architecture and operating AWS workloads in medium to large AWS environments.

Required Skills:

• Deep expertise in AWS, including networking, data security, identity and access management, and automation.
• Strong knowledge of IAM patterns (RBAC, ABAC), federated access, permission boundaries, SCPs, and RCPs.
• Proficiency in Infrastructure as Code (Terraform, CloudFormation) and secure coding practices.
• Experience with CIEM, CSPM, or CWPP tools.
• Skilled in threat modeling, risk analysis, and mapping controls to frameworks (e.g., NIST, CIS, MITRE ATT&CK).
• Working knowledge of the Cloud Security Alliance (CSA) Cloud Control Matrix (CCM).
• Familiarity with DevSecOps practices and integrating security into CI/CD pipelines.
• Scripting or automation skills (e.g., Python, Bash, or PowerShell).

Preferred Certifications:

• CISSP, CCSP, CCSK, AWS Certified Security – Specialty, AWS Certified Solutions Architect – Professional, Microsoft Certified: Azure Security Engineer Associate, Google Professional Cloud Security Engineer.

📝 Enhancement Note: While certifications are not required, they are highly preferred and demonstrate a commitment to professional development and staying current with cloud and security trends. Candidates with relevant certifications will be given priority.

📊 Web Portfolio & Project Requirements

Portfolio Essentials:

• A portfolio showcasing secure AWS architecture designs and assessments.
• Case studies demonstrating risk assessment, compliance mapping, and threat modeling.
• Examples of cloud governance strategies and implementation of guardrails.
• Live demos or presentations of secure AWS implementations and client workshops.

Technical Documentation:

• Detailed architecture diagrams and security roadmaps.
• Process improvements, gap analyses, and custom deliverables based on client needs.
• Documentation of secure coding practices and Infrastructure as Code implementations.

📝 Enhancement Note: The ideal candidate will have a well-structured portfolio that demonstrates their ability to design secure AWS architectures, conduct in-depth security assessments, and advise clients on security strategies. The portfolio should include case studies, architecture diagrams, and documentation that showcases the candidate's technical expertise and problem-solving skills.

💵 Compensation & Benefits

Salary Range: $120,000 - $180,000 per year (based on experience and location)

Benefits:

• Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans) and GPS will contribute in one lump sum: ($500 per EE annually / $1000 per family annually (includes spouse/children/family options).
• Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans.
• 12 corporate holidays and a Flexible Time Off (FTO) program.
• Healthy mobile phone and home internet allowance.
• Eligibility for retirement plan after 2 months at open enrollment.
• Pet Benefit Option.

📝 Enhancement Note: The salary range provided is an estimate based on market research and industry standards for AWS cloud security architects with 5-10 years of experience. Actual compensation may vary based on the candidate's experience, skills, and location.

🎯 Team & Company Context

Company Culture:

• GuidePoint Security is a rapidly growing, profitable, privately-held value-added reseller that focuses exclusively on Information Security.
• The company has grown to over 1000 employees, established strategic partnerships with leading security vendors, and serves as a trusted advisor to more than 4,200 customers.
• GuidePoint's core values drive all aspects of the business and have been paramount to the company's success and establishment of an enjoyable workplace atmosphere.

Team Structure:

• The cloud security team consists of experienced security architects, engineers, and consultants who work collaboratively to deliver security consulting engagements.
• The team is structured to provide mentorship and guidance to junior staff and support knowledge sharing within the consultancy.
• The cloud security team works closely with internal pre-sales teams to identify use-cases and opportunities for third-party security tooling.

Development Methodology:

• GuidePoint Security follows a structured, Agile-based development methodology for cloud security projects.
• The development process includes architecture design, risk assessments, compliance mapping, and cloud-native control implementation.
• The team uses version control, continuous integration, and continuous deployment (CI/CD) pipelines to automate deployment and ensure consistency across environments.

Company Website: GuidePoint Security

📝 Enhancement Note: GuidePoint Security is a fast-growing company with a strong focus on cloud security and a commitment to professional development. The company's culture values collaboration, mentorship, and knowledge sharing, making it an ideal environment for AWS cloud security architects looking to grow their careers.

📈 Career & Growth Analysis

Cloud Security Career Level: Mid-Senior level (5-10 years)

• Reporting Structure: The AWS Cloud Security Architect reports directly to the Director of Cloud Security and works closely with the cloud security team, internal pre-sales teams, and client stakeholders.
• Technical Impact: This role has a significant impact on the security posture of GuidePoint's clients and plays a crucial role in delivering secure cloud environments and implementing modern DevSecOps and CNAPP practices.
• Growth Opportunities:
  • Technical leadership potential with team management and architecture decision-making.
  • Specialization in emerging cloud security technologies and trends.
  • Opportunities to contribute to internal methodologies, templates, and reusable assessment frameworks.
  • Mentoring and knowledge-sharing opportunities within the consultancy and across the broader security industry.

📝 Enhancement Note: This role offers significant growth potential for AWS cloud security architects looking to advance their careers in a fast-growing consultancy environment. The ideal candidate will possess a strong technical background, excellent communication skills, and a commitment to professional development.

🌐 Work Environment

Office Type: Remote (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)

Office Location(s): Remote (Anywhere in the U.S.)

Workspace Context:

• Remote work environment with flexible hours and a focus on work-life balance.
• Access to necessary tools and resources for secure cloud architecture design and assessment, including AWS accounts, cloud security tools, and collaboration platforms.
• Opportunities for in-person collaboration and knowledge-sharing with team members and clients at workshops, conferences, and industry events.

Work Schedule:

• Standard full-time work schedule with flexible hours and the ability to work remotely.
• Some travel may be required for certain positions, and working on-site may be required for Federal positions.
• Flexible Time Off (FTO) program with 12 corporate holidays.

📝 Enhancement Note: The remote work environment at GuidePoint Security offers a high degree of flexibility and work-life balance. The ideal candidate will be self-motivated, able to manage their time effectively, and comfortable working independently or in a collaborative team setting.

📄 Application & Technical Interview Process

Interview Process:

1. Technical Phone Screen: A 30-45 minute phone screen to assess the candidate's technical skills and experience with AWS and cloud security.
2. Technical Deep Dive: A 2-3 hour technical deep dive to evaluate the candidate's architecture design, risk assessment, and cloud security skills. The candidate will be presented with a scenario and asked to design a secure AWS architecture, conduct a security assessment, and develop a roadmap for remediation.
3. Client Engagement & Communication: A 30-45 minute interview to assess the candidate's ability to engage with clients, communicate complex security concepts clearly, and develop client-specific security strategies.
4. Final Review: A final review with the Director of Cloud Security to discuss the candidate's fit for the role, career growth potential, and alignment with GuidePoint's core values.

Portfolio Review Tips:

• Highlight secure AWS architecture designs, security assessments, and client workshops in the portfolio.
• Include case studies demonstrating risk assessment, compliance mapping, and threat modeling.
• Showcase live demos or presentations of secure AWS implementations and client workshops.
• Tailor the portfolio to the specific requirements of the role and the client's industry.

Technical Challenge Preparation:

• Brush up on AWS services, IAM patterns, and cloud-native security tools.
• Review AWS security best practices and guidelines.
• Practice designing secure AWS architectures, conducting security assessments, and developing roadmaps for remediation.
• Familiarize yourself with the Cloud Security Alliance (CSA) Cloud Control Matrix (CCM) and other relevant security frameworks.

ATS Keywords: AWS, Cloud Security, Risk Assessment, Compliance Mapping, Infrastructure as Code, DevSecOps, Threat Modeling, IAM, CIEM, CSPM, CWPP, Scripting, Mentoring, Client Advisory, Architecture Design, Governance Strategies, Agile, CI/CD, Cloud Security Alliance, Cloud Control Matrix, NIST, PCI, SOC 2, HITRUST, ISO 27001, MITRE ATT&CK, CCSK, CISSP, CCSP, AWS Certified Security – Specialty, AWS Certified Solutions Architect – Professional, Microsoft Certified: Azure Security Engineer Associate, Google Professional Cloud Security Engineer.

📝 Enhancement Note: The interview process at GuidePoint Security is designed to assess the candidate's technical skills, client engagement abilities, and cultural fit. The ideal candidate will possess a strong technical background, excellent communication skills, and a commitment to professional development.

🛠 Technology Stack & Web Infrastructure

Cloud Platforms:

• AWS (Primary)
• Multi-cloud (Secondary)

Infrastructure as Code (IaC) Tools:

• Terraform
• CloudFormation
• AWS CDK

Cloud Security Tools:

• AWS-native security services (e.g., IAM, VPC, Security Groups, Network ACLs, AWS WAF, AWS Shield, AWS Secrets Manager, AWS Key Management Service)
• Third-party security tools (e.g., CIEM, CSPM, CWPP, CNAPP, Secrets Management, data security, cloud detection and response, NHI)

Collaboration & Productivity Tools:

• Atlassian Suite (Jira, Confluence, Bitbucket)
• Microsoft Office Suite (Word, Excel, PowerPoint)
• Google Workspace (Gmail, Google Drive, Google Docs, Sheets, Slides)
• Zoom (Video conferencing and webinars)
• Slack (Team communication and collaboration)

📝 Enhancement Note: The technology stack at GuidePoint Security is designed to provide a comprehensive set of tools for designing, assessing, and securing cloud environments. The ideal candidate will possess a strong background in AWS, cloud security, and relevant security tools and be comfortable working with a wide range of technologies.

👥 Team Culture & Values

Cloud Security Values:

• Security First: Prioritize security in all aspects of cloud architecture design, assessment, and governance.
• Client Focused: Tailor security strategies and solutions to meet the unique needs and requirements of each client.
• Collaborative: Work closely with clients, internal teams, and external partners to deliver comprehensive security solutions.
• Innovative: Stay current with emerging cloud security trends and technologies, and continuously improve security practices and processes.
• Compliant: Ensure that cloud security controls align with relevant regulatory frameworks and industry standards.

Collaboration Style:

• Cross-functional integration between cloud security, architecture, engineering, and DevOps teams.
• Regular knowledge-sharing sessions, workshops, and training opportunities.
• A culture of mentorship and guidance, with a focus on supporting the professional development of team members.

📝 Enhancement Note: The cloud security team at GuidePoint Security values collaboration, innovation, and a client-focused approach to cloud security. The ideal candidate will possess a strong technical background, excellent communication skills, and a commitment to professional development.

⚡ Challenges & Growth Opportunities

Technical Challenges:

• Designing secure cloud architectures that balance security, performance, and cost-effectiveness.
• Conducting in-depth security assessments and identifying security misconfigurations, architecture risks, and compliance gaps.
• Developing and implementing cloud governance strategies that scale and adapt to changing client needs and regulatory requirements.
• Integrating security controls into CI/CD pipelines and DevOps workflows.
• Staying current with emerging cloud security trends and technologies, and continuously improving security practices and processes.

Learning & Development Opportunities:

• Technical Skill Development: Opportunities to develop expertise in emerging cloud security technologies, tools, and best practices.
• Certification & Training: Access to relevant certifications, training, and conferences to support professional development and career growth.
• Mentoring & Leadership: Opportunities to mentor junior staff, contribute to internal methodologies, and support knowledge-sharing within the consultancy and across the broader security industry.
• Architecture Decision-Making: Opportunities to contribute to architecture decisions, guide cloud security strategy, and drive innovation in cloud security practices.

📝 Enhancement Note: The cloud security role at GuidePoint Security offers significant technical challenges and growth opportunities for AWS cloud security architects looking to advance their careers in a fast-growing consultancy environment. The ideal candidate will possess a strong technical background, excellent communication skills, and a commitment to professional development.

💡 Interview Preparation

Technical Questions:

1. Architecture Design: Describe your approach to designing secure cloud architectures for AWS and multi-cloud environments. How do you balance security, performance, and cost-effectiveness?
2. Risk Assessment: How do you conduct in-depth security assessments to identify security misconfigurations, architecture risks, and compliance gaps? Can you provide an example of a recent assessment and the remediation roadmap you developed?
3. IAM & Governance: How do you implement IAM patterns, federated access, permission boundaries, SCPs, and RCPs to secure AWS environments? Can you discuss a specific example of implementing IAM controls to mitigate a security risk?
4. Threat Modeling: How do you approach threat modeling and risk assessment for cloud-native applications and workloads? Can you provide an example of a threat model you developed and the security controls you implemented to mitigate the identified risks?
5. Infrastructure as Code (IaC): How do you use IaC tools like Terraform, CloudFormation, and AWS CDK to implement secure cloud architectures? Can you discuss a specific IaC implementation and the security benefits it provided?

Client Engagement & Culture Questions:

1. Client Focus: How do you tailor security strategies and solutions to meet the unique needs and requirements of each client? Can you provide an example of a client engagement where you developed a customized security roadmap?
2. Communication: How do you communicate complex security concepts clearly and effectively to both technical and non-technical stakeholders? Can you provide an example of a client workshop or presentation where you successfully conveyed complex security concepts?
3. Collaboration: How do you work collaboratively with clients, internal teams, and external partners to deliver comprehensive security solutions? Can you provide an example of a cross-functional project where you worked with multiple teams to achieve a common goal?

Portfolio Presentation Strategy:

• Tailor the portfolio to the specific requirements of the role and the client's industry.
• Highlight secure AWS architecture designs, security assessments, and client workshops.
• Include case studies demonstrating risk assessment, compliance mapping, and threat modeling.
• Showcase live demos or presentations of secure AWS implementations and client workshops.
• Tailor the presentation to the specific audience and emphasize the value proposition of the cloud security services offered by GuidePoint Security.

📝 Enhancement Note: The interview process at GuidePoint Security is designed to assess the candidate's technical skills, client engagement abilities, and cultural fit. The ideal candidate will possess a strong technical background, excellent communication skills, and a commitment to professional development.

📌 Application Steps

To apply for this AWS Cloud Security Architect position at GuidePoint Security:

1. Update Your Resume: Tailor your resume to highlight your AWS and cloud security experience, relevant certifications, and specific achievements in architecture design, risk assessment, and cloud governance.
2. Prepare Your Portfolio: Curate a portfolio that showcases your secure AWS architecture designs, security assessments, and client workshops. Include case studies, architecture diagrams, and documentation that demonstrates your technical expertise and problem-solving skills.
3. Research the Company: Familiarize yourself with GuidePoint Security's core values, company culture, and the specific needs of the client's industry. Prepare thoughtful questions to ask during the interview process.
4. Practice Technical Interviews: Brush up on your AWS and cloud security knowledge, and practice designing secure architectures, conducting security assessments, and developing roadmaps for remediation. Familiarize yourself with the Cloud Security Alliance (CSA) Cloud Control Matrix (CCM) and other relevant security frameworks.
5. Prepare for Behavioral Interviews: Reflect on your past experiences and prepare examples of your ability to engage with clients, communicate complex security concepts clearly, and develop client-specific security strategies. Be ready to discuss your approach to collaboration, mentorship, and knowledge-sharing.

⚠️ Important Notice: This enhanced job description includes AI-generated insights and web development/server administration industry-standard assumptions. All details should be verified directly with the hiring organization before making application decisions.

---

Content Guidelines (IMPORTANT: Do not include this in the output)

Web Technology-Specific Focus:

• Tailor every section specifically to AWS cloud security, with a focus on AWS services, IAM patterns, and cloud-native security tools.
• Include relevant AWS security best practices, guidelines, and architectural considerations.
• Emphasize the candidate's ability to design secure AWS architectures, conduct in-depth security assessments, and develop roadmaps for remediation.
• Address the candidate's experience with Infrastructure as Code (IaC) tools, threat modeling, and integrating security controls into CI/CD pipelines.
• Highlight the candidate's communication skills, client engagement abilities, and cultural fit for a fast-growing consultancy environment.

Quality Standards:

• Ensure no content overlap between sections - each section must contain unique information.
• Only include Enhancement Notes when making significant inferences about AWS cloud security, with specific reasoning based on role level, AWS services, and cloud security industry practices.
• Be comprehensive but concise, prioritizing actionable information over descriptive text.
• Strategically distribute AWS cloud security and relevant security keywords throughout all sections naturally.
• Provide realistic salary ranges based on location, experience level, and AWS cloud security specialization.

Industry Expertise:

• Include specific AWS services, IAM patterns, and cloud-native security tools relevant to the role.
• Address AWS security best practices, guidelines, and architectural considerations.
• Provide tactical advice for AWS architecture design, security assessment, and roadmap development.
• Include AWS security certifications, such as AWS Certified Security – Specialty, AWS Certified Solutions Architect – Professional, and relevant industry certifications like CISSP, CCSP, and CCSK.
• Emphasize the candidate's ability to engage with clients, communicate complex security concepts clearly, and develop client-specific security strategies.

Professional Standards:

• Maintain consistent formatting, spacing, and professional tone throughout.
• Use AWS cloud security and relevant security terminology appropriately and accurately.
• Include comprehensive benefits and growth opportunities relevant to AWS cloud security professionals.
• Provide actionable insights that give AWS cloud security candidates a competitive advantage.
• Focus on AWS cloud security team culture, cross-functional collaboration, and user impact measurement.

Technical Focus & Portfolio Emphasis:

• Emphasize AWS cloud security best practices, responsive design principles, and performance optimization.
• Include specific portfolio requirements tailored to the AWS cloud security discipline and role level.
• Address browser compatibility, accessibility standards, and user experience design principles.
• Focus on problem-solving methods, performance optimization, and scalable AWS architecture.
• Include technical presentation skills and stakeholder communication for AWS projects.

Avoid:

• Generic business jargon not relevant to AWS cloud security roles.
• Placeholder text or incomplete sections.
• Repetitive content across different sections.
• Non-technical terminology unless relevant to the specific AWS cloud security role.
• Marketing language unrelated to AWS cloud security, cloud architecture design, and client engagement.

Generate comprehensive, AWS cloud security-focused content that serves as a valuable resource for AWS cloud security professionals seeking their next opportunity in the cloud security industry.