Cloud Security Engineer
Deloitte - Glen Mills, PA
Employment Type : Full-Time
Cloud Security Engineer Manager
Location: Open Nationally/Remote
Are you passionate about technology and interested in joining a community of collaborative colleagues who respectfully and courageously seek to challenge the status quo? If so, read on to learn more about an exciting opportunity with Deloitte's Information Technology Services (ITS). We are curious and life-long learners focused on technology and innovation.
Work you'll do
As a Cloud Security Engineer Manager, you will be responsible for evaluating new solutions and developing the supporting elements required to incorporate new technologies in a safe and secure manner. Deloitte currently maintains large number complex applications and your focus on security for infrastructure services and business applications will be paramount to our success. The ideal candidate will have extensive experience in cloud-based Security Operations in IaaS, PaaS and SaaS environments. For consideration to this job posting, candidates must possess hands-on operational experience for both small and large-scale solutions with an emphasis on security and performance.
You will be responsible for gathering technical requirements, evaluating solutions and executing on deliverables addressing Deloitte policies around on-premise and off-premise Cloud solutions. You will lead and coordinate the work of an integrated project team comprised of multiple technical disciplines, including developers, subject matter experts, database administrators, system administrators, and system architects to implement and maintain enterprise-level information technology applications. The role serves as a technical Manager on all Cyber matters from best practices to Cloud controls covering required compliance requirements based on data classification. You will also serve as a senior advisor to leadership concerning the planning, development, design, procurement, maintenance and implementation of enterprise-level Cloud systems. Other key responsibilities will be to produce architecture diagrams, blueprints and to bring solutions to reality with a DevSecOps mindset & culture.
Responsibilities:
- Provide technical guidance and foster a collective understanding of data flows and security issues encountered in cloud applications and services
- Incorporate business drivers, needs and strategies to address future business / technology needs
- Lead Development Teams in developing, deploying, and troubleshooting security guardrails (Azure Policy, Functions, and ServiceHub; AWS Lambda, Event Grid, Step Functions; GCP Cloud Functions and Pub/Sub) under guidance of Deloitte Cyber Governance and Standards
- Lead Development Team Cloud Security DevSecOps methodologies with different scrum teams and plan user stories for sprints while addressing requirements and orchestrating security impact
- Working experience with IAM in AWS, Azure, GCP (ie, Application integration, Azure AD, SSO setup, Token lifecycle management, writing IAM policies)
- Working experience cloud native logging services (ie. Configuring, Searching, processing)
- Source code management tools (Git, AzureDevOps)
- Code scanning tools (Linting, SAST, and SCA tools)
- Understanding of cloud secrets management and leading industry best practices (Azure KeyVault, AWS Secrets Manager, GCP Secret Manager)
- Pipeline deployment using GitHUb and Azure DevOps
- Deploy and manage cloud infrastructure using Infrastructure as Code Templates (Cloud Formation, ARM Templates, Terraform)
- Developing cloud native configuration management solutions using 3rd Party tools such as Chef, Puppet, Ansible, etc.
- Working with Analytics tools building dashboards from SQL, No-SQL, and JSON cloud data sources (AWS Quicksight, Kibana, Grafana)
The team
Information Technology Services (ITS) is the engine that drives Deloitte, which serves many of the world's largest, most respected organizations. We develop and deploy cutting-edge internal and go-to-market solutions that help Deloitte operate effectively and lead in the market. Our reputation is built on a tradition of delivering with excellence.
The ~2,200 professionals in ITS deliver services including:
- Security, risk & compliance
- Technology support
- Infrastructure
- Applications
- Relationship management
- Strategy
- Deployment
- PMO
- Financials
- Communications
Cyber Security
Cyber Security vigilantly protects Deloitte and client data. The team leads a strategic cyber risk program that adapts to a rapidly changing threat landscape, changes in business strategies, risks, and vulnerabilities. Using situational awareness, threat intelligence, and building a security culture across the organization, the team helps to protect the Deloitte brand.
Areas of focus include:
- Configuration Management
- Identity & Access Management
- Vulnerability Management
- Data Protection
- Cyber Design
- Incident Response
- Security Architecture
- Business Partnership
Qualifications
- Bachelor's degree in Computer Science, Management of Information Systems Security, or equivalent professional experience
- Verifiable 6+ years as a Cloud Solutions Developer; With an additional 4+ years in cloud frameworks or implementing cloud security
- Experience in large scale enterprise Cloud projects from ideation to finished production product
- 5 or more years of experience doing application and/or infrastructure solution architecture
- 4 or more years of experience building cloud architectures on AWS, Azure, GCP or similar Cloud Service Provider
- 4 years or more of hands-on experience migrating customers to the cloud and designing DevOps operational processes, deployment checklists, etc.
- A background in cloud security practices such as identity and access management (IAM), networking, database and storage protection, encryption methodologies, multi-factor authentication, and supporting technologies
- Superior communication (verbal and written), problem solving, collaboration, presentation, executive presence and interpersonal skills
- Limited immigration sponsorship may be available.
Desired Skills / Certification:
- AWS, Azure, or Google Architect Certification
- AWS, Azure, or GCP Security Specialty Certification
- Certified Information Systems Security Professional (CISSP)
- Certified Cloud Security Professional (CCSP)
- Broad knowledge and experience across IT infrastructure with security frameworks and standards such as ISO 27001, NIST, and other relevant security-related regulations
#EA_ExpHire
#EA_ITS_ExpHire