Deloitte Jobs

Job Information

Deloitte Full Stack Security DevOps in Los Angeles, California

Full Stack Security DevOps- National

About the team

Our firm is investing in new ways to deliver value to our clients, bringing IP to the market through the use of assets. The Assets & Hybrid Business Ventures offering was established to surface, build, incubate, scale, and maintain new, world-class technology-based assets, solutions and hybrid businesses focused on improving the customer experience. The Salesforce Assets & Solutions Group (ASG) is one of our high-priority portfolios of such assets. Through our deep experience implementing Salesforce globally, we ve built a wealth of technical prowess, strategic vision, and industry insights. We are drawing on these strengths to build a suite of repeatably deployable Salesforce-based solutions across a variety of industries. These assets will help us provide even faster time to value and reduced risk throughout our clients transformation journeys.

Work you'll do

Be a security subject matter expert across the business

  • Inspire people to take individual responsibility in all areas of security

  • Collaborate with other engineers and DevOps in security code reviews to identify and fix issues in our applications

  • Develop tooling to automate manual security processes in a CI pipeline

  • Lead security-related projects from inception to successful completion

  • Perform hands-on internal assessments of our applications and our cloud infrastructure

  • Provide effective incident response, remediation, and forensics services when required

  • Assist the compliance team to ensure continued compliance with SOC 2

  • Participate in pre-sales activity to understand client pain points and describe potential solutions.

  • Work directly with teams to review their code and help secure their products

  • Collaborate with teammates to maintain and continually improve our existing security tools using modern software engineering practices

The team

Advertising, Marketing & Commerce

Our Advertising, Marketing & Commerce team focuses on delivering marketing and growth objectives aligned with our clients brand values for measurable business growth. We do this by creating content, communications, and experiences that engage and inspire their customers to act. We implement and operate the technology platforms that enable personalized content, commerce and marketing user-centric experiences. In doing so, we transform our clients marketing and engagement operations into modern, data-driven, creatively focused organizations. Our team brings deep experience in creative and digital marketing capabilities, many from our Digital Studios.

We serve our clients through the following types of work:

  • Cross-channel customer engagement strategy, design and development (web, mobile, social, physical)

  • eCommerce strategy, implementation and operations

  • Marketing Content and digital asset management solutions

  • Marketing Technology and Advertising Technology solutions

  • Marketing analytics implementation and operations

  • Advertising campaign ideation, development and execution

  • Acquisition and engagement campaign ideation, development and execution

  • Agile based, design-thinking, user-centric, empirical projects that accelerate results

Qualifications

Required:

  • Minimum of two (2) years prior experience in a security engineering role or as a penetration tester

  • Terraform and Ansible, Chef or similar

  • Python experience

  • Solid understanding of the OWASP Top 10 such as SQLi, XSS, CSRF, and business logic flaws across large code bases

  • Strong knowledge of cryptography principles and authentication infrastructure (e.g. SAML, oAuth)

  • Experience with securing and monitoring AWS/GCP/Azure or similar cloud environment

  • Performed hands-on security threat modeling, risk assessment, and operational security analysis

  • Prepared and presented detailed, written and verbal technical information for both internal and external audiences

  • Security assessment experience, penetration testing, incident response, forensics, network traffic analysis either internally or as a consultant

  • Experience with Security architecture and risk mitigation

  • Cloud administration (configuration, patching, deployment, change management)

  • Experience of having worked in an environment where DevOps principles are practiced

  • Willingness to travel (While travel is a requirement of the role, due to COVID-19, non-essential travel has been suspended until further notice)

  • Limited sponsorship available

Preferred:

  • Relevant industry certifications (CISSP, SANS/GIAC, CompTIA, AWS, GCP, Azure, Linux)

How you ll grow

At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there s always room to learn. We offer opportunities to help sharpen skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs at Deloitte University, our professionals have a variety of opportunities to continue to grow throughout their career. Explore Deloitte University, The Leadership Center. (https://zoomforth.com/s/deloitte/du#home)

Benefits

At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you. (http://www2.deloitte.com/us/en/pages/careers/articles/life-at-deloitte-benefits-and-rewards.html)

Deloitte s culture

Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte.

Corporate citizenship

Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte s impact on the world. (http://www2.deloitte.com/us/en/pages/about-deloitte/articles/deloitte-corporate-citizenship.html)

Recruiter tips

We want job seekers exploring opportunities at Deloitte to feel prepared and confident. To help you with your interview, we suggest that you do your research: know some background about the organization and the business area you re applying to. Check out recruiting tips from Deloitte professionals. (http://www2.deloitte.com/us/en/pages/careers/topics/recruiting-tips.html)

kwdeldigadmkusa

kwdeldigallddusa

Category: Management Consulting

About Deloitte

As used in this document, Deloitte means Deloitte LLP and its subsidiaries. Please see www.deloitte.com/us/about for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.

DirectEmployers