Deloitte Jobs

Job Information

Deloitte Cyber Cloud Security Manager/Architect in Los Angeles, California

Are youinterested in working in a dynamic environment that offers opportunities forprofessional growth and new responsibilities? If so, Deloitte &Touche LLP could be the place for you. Traditional security programs have oftenbeen unsuccessful in unifying the need to both secure and support technologyinnovation required by the business. Join Deloitte's Advisory Cloud CyberServices team and become a member of the largest group of cybersecurityprofessionals worldwide.

Workyou ll do

As a Cyber Cloud Security Manager/Architect, you will be at thefront lines with our clients supporting them with their cloud security needs tosecurely navigate their journey to the cloud on the leading cloud platforms, byimplementing industry leading practices around cyber risks and cloud securityfor clients. The Cloud Security Architect will leverage broad technicalknowledge of the security practices of key public cloud offerings of providerssuch as Amazon Web Services, Azure or Google to establish secure designpatterns, to architect integrations with customers existing security policies,and to assist in ensuring the security and compliance of the cloud environment.You will:

  • Serve as a subject matter expert (SME) oncloud cyber risk for at least one of the leading cloud platforms (AWS,Microsoft Azure/ Office 365, GCP, Alibaba Cloud, Oracle Cloud) for seniorbusiness and technology stakeholders.

  • Lead the Cloud Security InfrastructureDesign and Architecture on client engagements.

  • Lead Cyber Risk teams as part of CloudTransformation projects at industry leading clients using cloud platform (suchas AWS, Azure, GCP, Alibaba Cloud, Oracle Cloud) services.

  • Educate business and technologystakeholders on value propositions of cloud and participate in deeparchitectural discussions to ensure solutions are designed for successfuldeployment in the cloud (such as AWS, Azure, GCP, Alibaba Cloud, Oracle Cloud).

  • Capture and share leading-practiceknowledge amongst the technology community.

  • Lead/support implementation of cloudenvironments and agile application development technologies in areas ofsoftware development, integration, and test of software applications and infrastructure.

  • Lead the architecting and design ofcomplex cloud solutions for clients.

  • Review and finalize referencearchitectures for cloud native high-performance environments, designingbusiness solutions in cloud, developing deployment, migration, operation andmonitoring guides.

  • Lead the deploying, managing,operating, enhancing, and automating of client's AWS, Azure, GCP environments.

  • -{PS..0}->Execute on Cloud security engagementsduring different phases of the lifecycle assess, design, and implementation.

  • Coordinate enhancements and deploymentefforts and provide insight and recommendations for implementing cloud securitysolutions.

  • Lead cloud security assessments and providerecommendations on required configurations for client cloud platforms (such asAWS, Azure, GCP, Alibaba Cloud, Oracle Cloud) and environments based onDeloitte s Cloud Cyber Risk Framework and industry standard frameworks such asISO, CSA-CSM and NIST. This can include cloud-native or third-party solutions includingdirectory services (e.g., LDAP, Azure Active Directory (AAD)), infrastructure(compute/networking/storage) services, data protection services, securitymonitoring, logging, PaaS services, and SaaS services (e.g., Office 365).

  • Develop strategic and tactical securityremediation recommendations / cyber risk roadmap to address identified securitygaps.

  • -{PS..1}->Lead cybersecuritycontrols testing across client s cloud environments to determine controleffectiveness and adherence to both internal cybersecurity policies andstandards and external requirements (e.g. certifications, laws, regulations andcontracts).

  • Design and develop cloudplatform-specific security policies, standards, and procedures for managementgroup and account/subscription management and configuration (e.g. Azure Policy,Azure Security Center, AWS Config), identity management and access control,firewall management, auditing and monitoring, security incident and eventmanagement, data protection, user and administrator account management, SSO,conditional access controls and password/secrets management.

  • Troubleshoot problems with cloudinfrastructure (e.g., domain name service, virtual network peering, dedicatedcloud connectivity services Azure ExpressRoute, AWS DirectConnect, Google CloudDedicated Interconnect) and resources (e.g., virtual machines, virtualnetworks, cloud databases) in a multi-cloud vendor environment and leadanalysis of technical platform issues, client communication, and resolution aspart of cyber risk mitigation steps.

  • Assist clients in the selection andtailoring of approaches, methods, and tools to support cloud adoption forsecure migration of existing workloads to a cloud vendor. This may coverservices such as tenant setup and service configuration focused on cloud cyberrisk mitigation, IAM (e.g., PIM/PAM, MFA, SSO, Conditional Access), dataprotection (e.g., DLP, encryption, PKI), network security (e.g., firewalls,WAF), etc.

  • -{PS..2}->Perform cloud orchestration andautomation (Continuous Integration and Continuous Delivery (CI/CD)) in singleand multi-tenant environments using tools like Terraform, Ansible, Puppet,Chef, Salt etc.

  • Design, implement, manage, and automateDevSecOps capabilities in cloud offerings using CI/CD toolsets and automation(e.g., Boto3, Lambda, Azure Functions, Google Functions, Python, JSON).

  • Ensure DevSecOps systems we build arerobust in the sense they can scale, handle rapid growth, and limit exposure tosingle points of failure and security vulnerabilities.

  • Manage entire deployment pipelinesworking with tools such as Jenkins, Ansible, Chef, Puppet, Salt stack, etc.

  • -{PS..3}->Demonstrate deep understanding oftesting methodologies, test automation and software development principles.

  • Champion Agile leading-practices,processes, and tools in support of DevSecOps processes with respect to TestAutomation.

  • Monitor and maintain multiple(DevSecOps) environments based on requirements.

  • Improve agility and resilience of cloudenvironments identifying opportunities to reduce IT operations through automation.

  • -{PS..4}->Support and enable team members acrossboth technical and management leadership capacities.

  • Support Managed Services team on clientcalls as necessary as an SME.

  • Provide internal cloud securitytechnical training to Advisory personnel as needed.

  • Lead the team on proposals,whitepapers, proof of concepts, technical eminence materials and firminitiatives.


The team

Deloitte Advisory'sCloud Cyber team helps complex organizations more confidently pursue theirgrowth, innovation and performance agendas through proactive management of theassociated cyber risks. Our professionals provide advisory and implementationservices that integrate risk, regulatory, and technology skills to help clientstransform their legacy programs into proactive Secure.Vigilant.Resilient. TM cyber risk programs. Join the team developing the future state of cyber risksolutions. Learn more aboutDeloitte Advisory s Cyber Risk Services practice. at

Category: Information Technology

About Deloitte

As used in this document, Deloitte means Deloitte LLP and its subsidiaries. Please see for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.