Senior Cloud Security Specialist (AWS)

Job Description

Job Description

Custom Software Systems, Inc. (CSS) is seeking a highly experienced Senior Cloud Security Specialist (AWS) to support the Security Engineering team within our client’s IT division. This team is responsible for the strategy, design, implementation, and continuous improvement of security solutions across cloud, on-premise, and hybrid environments.

This role is ideal for a hands-on cloud security expert with deep experience in AWS security, compliance frameworks, and secure architecture design. The selected candidate will play a critical role in assessing and strengthening cloud security posture, ensuring alignment with federal cybersecurity standards, and enabling engineering teams to build secure, scalable solutions. You will work closely with architects, engineers, and stakeholders to identify risks, implement controls, and drive security best practices across the enterprise.

Responsibilities

· Conduct regular security reviews of cloud infrastructure deployed by engineering teams

· Evaluate infrastructure-as-code against security standards

· Review and validate compliance with security policies and best practices

· Assess adherence to AWS Well-Architected Framework security pillar

· Identify and document security misconfigurations and non-compliant controls

· Develop and maintain security posture dashboards

· Create or update security configuration guides and playbooks

· Offer technical consultation to engineering teams on secure implementation

· Implement AWS security controls and services to ensure proper security hardening and other security engineering tasks.

· Develop and update AWS security configuration standards

· Conduct security training sessions for engineering teams

· Present findings and recommendations in team meetings

· Identify opportunities to automate security assessments

· Recommend security tooling improvements.

· Work with Enterprise Architects, other functional area architects, and security specialists to ensure adequate security solutions are in place throughout cloud IT systems and platforms.

· Provide technical expertise and support to customers, IT management and staff in cloud security threat risk assessments, development, testing and the implementation and operation of appropriate information security plans, procedures, and control techniques designed to prevent, minimize, or quickly recover from cyber-attacks or other serious cloud events.

· Develop and maintain security architecture artifacts (e.g., models, templates, standards, and procedures) that can be used to leverage security capabilities in projects and operations.

· Serves as a cloud security expert, integrating sound practices from Identity and Access management, monitoring, platform standards, network segmentation and interconnection, encryption, and more into the cloud platforms.

Citizenship

· US Citizenship

Required Qualifications

· Minimum of 6 years' experience in cybersecurity, including cloud security, compliance, and risk management with a background in system and network security engineering.

· Minimum 5 years hands-on AWS security experience

· Demonstrated experience implementing secure, scalable AWS cloud architectures following industry best security practices and security frameworks.

· Demonstrated federal experience and comprehensive knowledge in adopting and implementing federal cybersecurity requirements, including but not limited to the NIST

· Cybersecurity Framework, OMB Memorandum M-22-09, NIST SP 800-53

· Possess deep analytical, problem-solving, and troubleshooting experience, to independently resolve complex security challenges.

Knowledge, Skills & Abilities

· Proven ability to provide technical security consultation and advisory services with a proactive approach to identifying potential issues, raising questions, and engaging in open dialogue with team members and stakeholders to ensure security objectives are met.

· Strong understanding of security concepts and technologies related to Identity and Access Management (IAM), security engineering, network security design, security operations, security architecture, general engineering processes, cloud security, data loss protection, zero trust, DevSecOps and vulnerability management.

· Technical skills in AWS cloud security, security engineering, DevSecOps, scripting, and Infrastructure-as-code (IaC)

· Self-motivated and able to work independently

· Strong attention to detail

· Broad knowledge of information systems such as Windows security, network security, systems development, communication networks, security software/hardware, and operating systems.

Certificates

· AWS Certified Security - Specialty (strongly preferred)

· AWS Certified Solutions Architect - Professional or Associate

· At least one of the following certifications preferred:

o CISSP

o CISM

o CISC

o Certified Cloud Security Professional (CCSP)

o Certified Ethical

o Hacker (CEH)

o CompTIA Security+

o Certificate of Cloud Security Knowledge (CCSK)

o Professional Cloud Architect

o Professional Cloud Security Engineer

o Certified Cloud Security Professional (CCSP)

Education

· Bachelor's degree in Information Security, Computer Science, Management of Information Systems, or related field required.

Compensation & Benefits[1][2]

· Wage Range: $160, 000 -200,000

· General Benefits: Custom Software Systems, Inc. offers our employees a competitive benefits package that may include:

ü Health insurance plans

ü Health Savings Account (HSA)

ü Dental

ü Vision

ü Long-term disability

ü Short-term disability

ü Basic term life insurance

ü Supplemental term life insurance for employees, spouses, and dependents

ü Simple IRA

ü Parking/Commuting expense reimbursement

ü Training/Education

Company DescriptionCompany Background:
Headquartered in Leesburg, Virginia, Custom Software Systems, Inc. (CSS) is a Woman-Owned (WOSB) and HUBZone certified small business. Built on a foundation of trusted client partnerships, CSS has fostered a stakeholder-centric yet disciplined approach to IT solutions development. This ensures our ability to consistently meet or exceed our customers' expectations.

Benefits:
CSS is a very employee oriented company knowing that well trained, professional associates are what make our company great. We offer a competitive benefits package that includes: paid holidays and paid time off; medical insurance that includes vision; dental insurance; company paid long and short-term disability and life insurance; a Simple IRA plan (similar to 401k); parking and commuter reimbursement. We also work with our employees on training and professional certification plans that benefit the employee, the client and CSS - a win-win-win strategy.

Equal Opportunity Employer:
CSS provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state and local laws. CSS complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including, but not limited to, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.

CSS expressly prohibits any form of unlawful employee harassment based on race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, or veteran status. Improper interference with the ability of CSS employees to perform their expected job duties is absolutely not tolerated.

Company Description

Company Background:\r\nHeadquartered in Leesburg, Virginia, Custom Software Systems, Inc. (CSS) is a Woman-Owned (WOSB) and HUBZone certified small business. Built on a foundation of trusted client partnerships, CSS has fostered a stakeholder-centric yet disciplined approach to IT solutions development. This ensures our ability to consistently meet or exceed our customers' expectations. \r\n\r\nBenefits:\r\nCSS is a very employee oriented company knowing that well trained, professional associates are what make our company great. We offer a competitive benefits package that includes: paid holidays and paid time off; medical insurance that includes vision; dental insurance; company paid long and short-term disability and life insurance; a Simple IRA plan (similar to 401k); parking and commuter reimbursement. We also work with our employees on training and professional certification plans that benefit the employee, the client and CSS - a win-win-win strategy.\r\n\r\nEqual Opportunity Employer:\r\nCSS provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state and local laws. CSS complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including, but not limited to, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.\r\n\r\nCSS expressly prohibits any form of unlawful employee harassment based on race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, or veteran status. Improper interference with the ability of CSS employees to perform their expected job duties is absolutely not tolerated.