Principal AWS Cloud Security Consultant- Remote (Anywhere in the U.S.)
Remote · United States or US
Job Summary
Lead design, assessment, and governance of secure cloud environments for clients using AWS and multi-cloud capabilities. Deliver architecture design, risk assessments, compliance mapping, and cloud-native control implementation; mentor junior staff; contribute to internal methodologies; support pre-sales and solutioning efforts in a fast-growing consultancy. Responsibilities include overseeing delivery teams, managing client escalations, presenting findings to executives, conducting AWS security workshops, creating security roadmaps and architecture diagrams, and collaborating with internal pre-sales teams to identify use-cases and tooling opportunities (e.g., CNAPP, secrets management, data security, cloud detection). Qualifications emphasize deep AWS design at scale, IAM and network security, IaC, CIEM/CSPM/CWPP, DevSecOps integration, Kubernetes security (EKS), SOWs, and strong communication with both technical and non-technical stakeholders.
Required Qualifications
- Minimum of 5 years designing AWS architecture and operating AWS workloads at scale
- AWS knowledge must include networking, data security, identity and access management, automation, and extensive hands-on with Amazon’s cloud-native security tooling services
- Knowledge of securing AI/ML workloads in AWS incl. SageMaker, Bedrock guardrails, and data protection for model training/inference pipelines
- Strong IAM patterns (RBAC, ABAC), federated access, permission boundaries, SCPs, and RCPs
- Proficiency in Infrastructure as Code (Terraform, CloudFormation, CDK)
- Experience with CIEM, CSPM, CWPP tools
- Familiarity with DevSecOps practices and CI/CD security integration
- Scripting and automation skills (Python, Bash, PowerShell)
- Experience securing Kubernetes environments (EKS and other managed platforms)
- Leadership and mentoring skills
- Bachelor’s or equivalent experience in Cybersecurity, Computer Science, Engineering, or related field
- Preferred certifications: CISSP, CCSP, CCSK; AWS Cloud certifications (Security – Specialty, Solutions Architect – Professional)
- Ongoing commitment to professional development
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.