Principal AWS Cloud Security Consultant- Remote (Anywhere in the U.S.)

GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. By taking a three-tiered, holistic approach for evaluating security posture and ecosystems, GuidePoint enables some of the nation’s top organizations, such as Fortune 500 companies and U.S. government agencies, to identify threats, optimize resources and integrate best-fit solutions that mitigate risk.

We are seeking a highly skilled Cloud Security Consultant with deep expertise in AWS to lead the design, assessment, and governance of secure cloud environments for our clients. This role is central to delivering security consulting engagements, including architecture design, risk assessments, compliance mapping, and cloud-native control implementation. The ideal candidate will combine technical excellence in AWS and multi-cloud platforms with strong client advisory skills, helping organizations enhance their security posture, implement scalable guardrails, and adopt modern DevSecOps and CNAPP practices. This position also involves mentoring junior staff, contributing to internal methodologies, and supporting pre-sales and solutioning efforts within a fast-growing consultancy environment.

Roles and Responsibilities:

• Provide oversight for delivery teams, ensuring quality, consistency, and alignment with client objectives while fostering knowledge transfer and consistent execution
• Manage and resolve client escalations, balancing client satisfaction with project scope and delivery constraints
• Present findings and recommendations to executive stakeholders, lead technical workshops, and facilitate security strategy sessions
• As an individual contributor, provide consulting services on customer engagements and deliver security outcomes. Tasks may include:
  • Design secure cloud architectures and reference models for AWS and multi-cloud environments
  • Conduct in-depth cloud security assessments to identify security misconfigurations, architecture and cloud operational risks, and compliance gaps
  • Assist clients with continuous compliance and audit readiness in cloud environments
  • Conduct AWS security workshops, technical interviews, and stakeholder briefings
  • Prepare and present client deliverables including security roadmaps, process improvements, gap analyses, architecture diagrams, cloud security strategies, and custom deliverables based on client needs
• Contribute to internal methodologies, templates, and reusable assessment frameworks
• Mentor junior consultants and support knowledge sharing within the consultancy
• Assist with scoping and pre-sales activities including proposals and statements of work (SOWs)
• Collaborate with internal pre-sales teams to identify use-cases and opportunities for third-party security tooling (e.g., CNAPP, secrets management, data security, cloud detection and response, NHI [Non-Human Identity], etc.)

Requirements:

Experience & Technical Proficiency

• Minimum of 5 years designing AWS architecture and operating AWS workloads at scale
• AWS knowledge must include networking, data security, identity and access management, automation, and extensive hands-on with Amazon’s cloud-native security tooling services
• Demonstrated knowledge of emerging security patterns and best practices for AI/ML workloads in AWS, including securing SageMaker environments, implementing guardrails for generative AI services (Bedrock), and applying data protection controls for model training and inference pipelines
• Strong knowledge of IAM patterns (RBAC, ABAC), federated access, permission boundaries, SCPs, and RCPs
• Proficiency in Infrastructure as Code (Terraform, CloudFormation, CDK) and secure coding practices
• Experience with CIEM, CSPM, or CWPP tools
• Familiarity with DevSecOps practices and integrating security into CI/CD pipelines
• Scripting and automation skills (e.g., Python, Bash, or PowerShell)
• Experience securing Kubernetes environments, including Amazon EKS and other managed Kubernetes platforms, with knowledge of pod security, RBAC, network policies, and container security best practices

Preferred:

• Minimum of 2 years of that experience must be as an internal IT/Security team member (not in a consulting capacity), demonstrating understanding of organizational ownership, operational realities, and internal stakeholder dynamics
• Working knowledge of the Cloud Security Alliance (CSA) Cloud Control Matrix (CCM)
• Skilled in cloud infrastructure threat modeling, risk analysis, and mapping controls to frameworks (e.g., NIST, CIS, MITRE ATT&CK)

Leadership and Collaboration

• Ability to lead technical workshops, discovery sessions, and architecture reviews with clients
• Comfortable advising both technical and non-technical stakeholders on cloud security strategy
• Skilled in producing high-quality deliverables and communicating complex concepts clearly
• Experience mentoring junior staff or guiding cross-functional teams on cloud security best practices
• Collaborative mindset with a strong consulting presence and client service orientation

Education & Certifications

• Bachelor’s or equivalent experience in Cybersecurity, Computer Science, Engineering, or related field.
• Preferred certifications:
  • CISSP, CCSP, CCSK
  • AWS Cloud certifications: AWS Certified Security – Specialty, AWS Certified Solutions Architect – Professional
  • Other CSP Certifications: Microsoft Certified: Azure Security Engineer Associate, Google Professional Cloud Security Engineer
• Ongoing commitment to professional development and staying current with cloud and security trends and certifications.

We use Greenhouse Software as our applicant tracking system and Zoom Scheduler for HR screen request scheduling. At times, your email may block our communication with you. Please be sure to check your SPAM folder so that you don't miss updates on your application.

Why GuidePoint?

GuidePoint Security is a rapidly growing, profitable, privately-held value added reseller that focuses exclusively on Information Security. Since its inception in 2011, GuidePoint has grown to over 1,200 employees, established strategic partnerships with leading security vendors, and serves as a trusted advisor to more than 6,200 customers.

Firmly-defined core values drive all aspects of the business, which have been paramount to the company’s success and establishment of an enjoyable workplace atmosphere. At GuidePoint, your colleagues are knowledgeable, skilled, and experienced and will seek to collaborate and provide mentorship and guidance at every opportunity.  

This is a unique and rare opportunity to grow your career along with one of the fastest growing companies in the nation.

Some added perks….

• Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)
• Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family). If you choose the High Deductible / HSA plan, GPS will contribute in 4 equal quarterly installments: ($850 per EE annually / $1750 per family annually (includes spouse/children/family options)
• Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans
• 12 corporate holidays and a Flexible Time Off (FTO) program
• Healthy mobile phone and home internet allowance
• Eligibility for retirement plan after 2 months at open enrollment
• Pet Benefit Option