Deloitte Salesforce Cyber Security Senior Consultant in Boston, Massachusetts
Salesforce Security Senior Consultant
Are you interested in working in a dynamic environment that offers opportunities for professional growth and new responsibilities? If so, Deloitte & Touche LLP could be the place for you. Join our Cyber Risk Services Application Security team and help organizations build the controls they need to protect customer relationship management (CRM), enterprise resource planning (ERP), and other core business applications.
Work you'll do
As a Senior Consultant in our Salesforce Cyber Security team, you will be responsible for delivering application security for Salesforce Sales Cloud, Service Cloud and Marketing Cloud implementations and assessments. Responsibilities will include Salesforce security controls review, design and implementation of Salesforce application security mechanisms such as role-based access control, DevSecOps, and integration with security tools including identity and access management solutions and security information and event management solutions.
Deloitte's Risk and Financial Advisory team helps complex organizations more confidently pursue their growth, innovation and performance agendas through proactive management of the associated cyber risks. Our professionals provide advisory and implementation services that integrate risk, regulatory, and technology skills to help clients transform their legacy programs into proactive cyber risk programs. Join the team developing the future state of cyber risk solutions. Learn more about Deloitte Advisory's Cyber Risk Services practice.
3 - 5+ years of applicable experience
Demonstrate an understanding of Salesforce Security including:
Salesforce profiles and permission sets
Role-based access control design
Health Check Report
Shield Encryption, Event Monitoring and Audit Trail
Logging and Monitoring
Participate in and actively support mentoring relationships within practice
Excellent writing and verbal communication skills
Experience with cloud security concepts
Experience with data protection and data classification on Cloud
Knowledge of cloud resiliency processes and tools
Strong understanding of Segregation of Duties (SOD) frameworks, sensitive access management and enabling integration with privileged access management
Knowledge of cloud governance and audit procedures
Knowledge of DevSecOps and Cloud automation
Experience with cloud configuration compliance monitoring and management
Experience with data flow diagrams and data loss prevention tools is a plus
Strong understating of Single Sign-on (SSO), Multi-factored authentication (MFA) and integration with enterprise identity management tools and processes
Strong project management and organizational skills
Commitment to gaining exposure in multiple industry
Contribute to a strong client relationship through interactions with client personnel the broader impact of current decisions
Facilitate use of technology-based tools or methodologies to review, design and/or implement products and services
BA/BS Degree in Computer Science, Cyber Security, Information Security, Engineering, Information Technology, Finance, or Business
Ability to travel 50%, on average, based on the work you do and the clients and industries/sectors you serve Limited sponsorship may be available
Previous Consulting or Big 4 experience preferred
Certifications such as: CISSP, CISM or CISA is desired
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.