Deloitte Cloud Security Senior Consultant in Boston, Massachusetts
Are youinterested in working in a dynamic environment that offers opportunities forprofessional growth and new responsibilities? If so, Deloitte &Touche LLP could be the place for you. Traditional security programs have oftenbeen unsuccessful in unifying the need to both secure and support technologyinnovation required by the business. Join Deloitte's Advisory Cloud CyberServices team and become a member of the largest group of cybersecurityprofessionals worldwide.
Workyou ll do
As a Cloud Security Senior Consultant, you will be at the frontlines with our clients supporting them with their cloud security needs to securelynavigate their journey to the cloud on the leading cloud platforms, by implementingindustry leading practices around cyber risks and cloud security for clients. Youwill execute on cloud security engagements during different phases of thelifecycle assessment, design, implementation, and post-implementation reviews,particularly you will:
Serve asa subject matter expert on cloud cyber risk for at least one of the leadingcloud platforms (AWS, Microsoft Azure/ Office 365, GCP, Alibaba Cloud, OracleCloud).
Guide clientson their transition from on-premise security technologies to cloud-nativeoptions (e.g., Azure Sentinel, Azure Monitor) and assist clients with the deploymentof cloud-native and third-party technologies to secure cloud platforms, includingcloud access security broker (CASB), cloud workload protection (CWP), and cloudsecurity platform management (CSPM) solutions.
Conduct cloud security assessments and provide recommendations onrequired configurations for client cloud platforms (such as AWS, Azure, GCP,Alibaba Cloud, Oracle Cloud) and environments based on Deloitte s Cloud CyberRisk Framework. This can include cloud-native or third-party solutions includingdirectory services (e.g., LDAP, Azure Active Directory (AAD)), infrastructure(compute/networking/storage) services, data protection services, securitymonitoring, logging, PaaS services, and SaaS services (e.g., 0ffice 365).
Provide technical security support for cloud-native (e.g., AAD) and third-party security services and resolve service-related issues through research, troubleshooting, and working with cloud service providers and third-party security solution vendors.
Support proof of concept and production deployments of these cloud technologies.
Perform technical health checks for cloud platforms/environments prior to broader deployment and assist clients with configuration of cloud platform scanning tools, and delivery of cloud security and compliance reports.
Design and develop cloud platform-specific security policies, standards, and procedures for management group and account/subscription management and configuration (e.g. Azure Policy, Azure Security Center, AWS Config), identity management and access control, firewall management, auditing and monitoring,security incident and event management, data protection, user and administrator account management, SSO, conditional access controls and password/secrets management.
Troubleshoot problems with cloud infrastructure (e.g., domain name service, virtual network peering, dedicated cloud connectivity services Azure ExpressRoute, AWS DirectConnect, Google Cloud Dedicated Interconnect) and resources (e.g., virtual machines, virtual networks, cloud databases) in a multi-cloud vendor environment and document technical platform issues, analysis, client communication, and resolution as part of cyber risk mitigation steps.
Assist clients in the selection and tailoring of approaches, methods, and tools to support cloud adoption for secure migration of existing workloads to a cloud vendor. This may cover services such as tenant setup and service configuration focused on cloud cyber risk mitigation, IAM (e.g., PIM/PAM, MFA, SSO, Conditional Access), data protection (e.g.,DLP, encryption, PKI), network security (e.g., firewalls, WAF), etc.
Perform cloud orchestration and automation (Continuous Integration and Continuous Delivery (CI/CD)) in single and multi-tenant environments using tools like Terraform, Ansible, Puppet, Chef, Salt etc.
Design, implement, manage, and automate DevSecOps capabilities in cloud offerings using CI/CD toolsets and automation(e.g., Boto3, Lambda, Azure Functions, Google Functions, Python, JSON).
Support and enable junior team members across both technical and management leadership capacities.
Provide internal cloud security technical training to Advisory personnel as needed.
Support the team on proposals, whitepapers, proof of concepts, technical eminence materials and firm initiatives.
Deloitte Advisory'sCloud Cyber team helps complex organizations more confidently pursue theirgrowth, innovation and performance agendas through proactive management of theassociated cyber risks. Our professionals provide advisory and implementationservices that integrate risk, regulatory, and technology skills to help clientstransform their legacy programs into proactive Secure.Vigilant.Resilient. TM cyber risk programs. Join the team developing the future state of cyber risksolutions. Learn more aboutDeloitte Advisory s Cyber Risk Services practice. at http://www2.deloitte.com/us/en/pages/risk/solutions/cyber-risk-services.html
Category: Information Technology
As used in this document, Deloitte means Deloitte LLP and its subsidiaries. Please see www.deloitte.com/us/about for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.