Senior Information Security Architect (AWS)

CGI•Reston, VA

15h•Hybrid

About The Position

CGI has an immediate need for a Senior Information Security Architect (AWS) to join our team. This is an exciting opportunity to work in a fast-paced team environment supporting one of the largest customers. We take an innovative approach to supporting our client, working side-by-side in an agile environment using emerging technologies. We partner with 15 of the top 20 banks globally, and our top 10 banking clients have worked with us for an average of 26 years!. This is a hybrid role requiring on-site presence in Reston, VA three days per week. We are seeking a highly experienced Senior Information Security Architect with deep expertise in AWS cloud environments to lead and strengthen enterprise cloud security initiatives. This role is responsible for designing, implementing, and governing secure cloud architectures that align with enterprise security policies and industry standards. The ideal candidate will serve as a senior-level technical leader, driving AWS security architecture across multiple concurrent projects. You will collaborate closely with Product Owners, Enterprise Architects, and engineering teams to ensure secure-by-design solutions that meet compliance requirements and industry best practices (NIST, OWASP, CIS, etc.).

Requirements

Typically 8–12+ years of experience in Information Security and Systems Architecture
At least 5+ years of hands-on AWS architecture experience
Demonstrated experience leading enterprise-level security initiatives
Extensive hands-on experience architecting solutions in AWS
Deep knowledge of AWS services including Compute, IAM, RDS, Networking, Messaging, Data Storage, ECS/EKS, Serverless, CI/CD, and AI/ML
Strong understanding of AWS Well-Architected Framework and Security Pillars
Experience implementing secure, scalable, and resilient cloud architectures
Information Security Architecture
Strong background in application security and threat modeling
Experience securing APIs, CI/CD pipelines, and DevSecOps environments
Proficiency in encryption (at rest and in transit), key management, tokenization, and data masking
Experience with authentication and authorization (AuthN/AuthZ) frameworks
Knowledge of SIEM, CSPM, CWPP, container security, and infrastructure security controls
Familiarity with data discovery, data classification, and access control models
Working knowledge of regulatory and compliance frameworks such as NIST, OWASP, CIS, ISO, SOX, and FedRAMP
Ability to perform threat modeling and design mitigating security controls Systems Architecture
Strong system design fundamentals
Experience with API-driven and event-driven architectures
Knowledge of SaaS integrations and enterprise system integration patterns
Understanding of stateless design, resiliency patterns, and high-availability architectures Soft Skills
Proven ability to lead security architecture initiatives across multiple projects
Comfortable working with cross-functional stakeholders
Self-starter with strong ownership mindset
Clear communicator able to explain security concepts to technical and business audiences

Nice To Haves

AWS Professional or Specialty Certification
CISSP (Certified Information Systems Security Professional)
CCSP (Certified Cloud Security Professional)
Other relevant cloud or security certifications
Bachelor's degree in Computer Science, Information Systems, or a related field.

Responsibilities

Designing, implementing, and governing secure cloud architectures that align with enterprise security policies and industry standards
Serve as a senior-level technical leader, driving AWS security architecture across multiple concurrent projects
Collaborate closely with Product Owners, Enterprise Architects, and engineering teams to ensure secure-by-design solutions that meet compliance requirements and industry best practices (NIST, OWASP, CIS, etc.)