Deloitte Development, LLC
Miami, FL, United States
Sep 13, 2021
Dec 27, 2021
Cloud Security Engineer
Cloud Security Engineer
Location: Remote/Anywhere US Locations
Are you passionate about technology and interested in joining a community of collaborative colleagues who respectfully and courageously seek to challenge the status quo? If so, read on to learn more about an exciting opportunity with Deloitte's Information Technology Services (ITS). We are curious and life-long learners focused on technology and innovation.
Work you'll do
We are creating an innovative, highly skilled, results-oriented technology team, with a deep commitment to building and implementing cloud native security solutions. The Cloud Security Engineer works in an integrated project team designing, testing, and implementing security guardrails based on security and compliance requirements. The role will also serve as an advisor to cloud security leadership concerning the planning, development, design, procurement, maintenance and implementation of enterprise-level Cloud systems. Other key responsibilities will be to produce architecture blueprints and bring solutions to reality with a DevSecOps mindset & culture.
As a Cloud Security Engineer, you will be responsible for evaluating new solutions and developing the supporting elements required to incorporate new technologies in a safe and secure manner. Deloitte currently maintains many complex applications and your focus on security for infrastructure services and business applications will be paramount to our success. The ideal candidate will have extensive experience in cloud-based development and security management in IaaS, PaaS and SaaS environments. To be considered for this role, candidates must possess hands-on experience designing both small and large-scale solutions with an emphasis on security and performance.
Work with infrastructure and cloud platform teams to embed Deloitte security into infrastructure as code and cloud event driven frameworks.
Automate manual security controls that protect data and processes to enhance operational effectiveness
Write, deploy, manage, and troubleshoot Policy/Config-as-Code controls (Azure Policy & Functions, AWS Config, AWS Cloud Formation, AWS Functions & Step Functions, GCP Deployment Manager & Cloud Functions, Terraform enterprise) under guidance of Deloitte Cyber Governance and Standards
Working experience with IAM in AWS, Azure, GCP
Pipeline deployment of various workloads using Azure DevOps
Deploy and manage cloud infrastructure
Understanding of cloud secrets management and leading industry best practices (Azure KeyVault, AWS Secrets Manager, GCP Secret Manager)
Knowledge of different cloud native logging services
Understanding of configuration management tools such as Chef, Puppet, Ansible, etc.
Information Technology Services (ITS) helps power Deloitte's success. ITS drives Deloitte, which serves many of the world's largest, most respected organizations. We develop and deploy cutting-edge internal and go-to-market solutions that help Deloitte operate effectively and lead in the market. Our reputation is built on a tradition of delivering with excellence.
The 2,500 professionals in ITS deliver services including:
Security, risk & compliance
Cyber Security vigilantly protects Deloitte and client data. The team leads a strategic cyber risk program that adapts to a rapidly changing threat landscape, changes in business strategies, risks, and vulnerabilities. Using situational awareness, threat intelligence, and building a security culture across the organization, the team helps to protect the Deloitte brand.
Areas of focus include:
Risk & Compliance
Technology Risk Management
Identity & Access Management
Incident Response and Architecture
5 years' security engineering experience
Practical knowledge and/or implementation experience in security frameworks
3 years with cloud-based platforms (AWS, Azure, GCP) in an enterprise environment, Cloud-based security tools (CloudTrail, WAF, Security Center, etc.)
Source code management tools (Git, Bitbucket, etc.), Code scanning tools (Dynamic, Static and Opensource)
Web services, API, REST, RPC
Infrastructure as Code YAML/JSON programming (CloudFormation, Azure Policy, Terraform)
Vulnerability Management solutions (Qualys)
Knowledge of: Security frameworks such as NIST 800-53, CIS, HITRUST, MITRE and OWASP
Desired Skills / Certification:
AWS Certified Security
Azure Architect Certification
Google Architect Certification
Certified Information Systems Security Professional (CISSP)
Certified Cloud Security Professional (CCSP)
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.
Deloitte Development, LLC
Website : http://www.deloitte.com