Cloud Security Engineer, Deloitte Global Technology

at  Deloitte

Job Type: Permanent
Work Model: Remote
Reference code: 128225
Primary Location: Toronto, ON
All Available Locations: Toronto, ON; Burlington, ON; Calgary, AB; Edmonton, AB; Fredericton, NB; Halifax, NS; Kitchener, ON; Moncton, NB; Ottawa, ON; Regina, SK; Saint John, NB; Saskatoon, SK; St. John’s, NL; Vancouver, BC; Victoria, BC; Winnipeg, MB

ENOUGH ABOUT US, LET’S TALK ABOUT YOU

Required:

• Bachelor’s degree in Computer Science, Information Systems Security, or in a related field
• 5 years of proven experience as Cloud Security Engineer or in a similar role
• Proven, hands-on experience in deploying services in AWS, Azure, or GCP.
• Strong communication and interpersonal skills, especially technical English writing skills, with the ability to clearly document security assessments, and recommendations.
• Continuous learning mindset, with a passion for staying current with the latest trends and developments in cloud security.
• ISC2 CCSP Certification
• Solutions Architect or Security specialty Certification in AWS, Azure or GCP

Preferred:

• Experience in multiple CSPs platforms
• Understanding of security frameworks, standards, and best practices (e.g., CIS Benchmarks, NIST, ISO 27001)
• Experience with Prisma Cloud for security policy analysis and management.

OUR PURPOSE

At Deloitte, we are driven to inspire and help our people, organization, communities, and country to thrive. Our Purpose is to build a better future by accelerating and expanding access to knowledge. Purpose defines who we are and gives us reason to exist as an organization.

By living our Purpose, we will make an impact that matters.

• Enjoy flexible, proactive, and practical benefits that foster a culture of well-being and connectedness.
• Experience a firm where wellness matters.
• Be expected to share your ideas and to make them a reality.

-

Responsibilities:

• Conduct thorough research, and analyze the security configurations of AWS, Azure, and GCP cloud services, including IaaS, PaaS, SaaS, and marketplace offerings.
• Deploy cloud services in a sandbox environment and perform security assessments to identify vulnerabilities. Use available tools and techniques to evaluate the security posture of the cloud service and identify any gaps. Recommend appropriate remediation guidelines.
• Review Deloitte’s internal Information Security standards and provide security compliance guidance for individual cloud services. Collaborate with the development team to suggest the creation of new guardrails where necessary.
• Work with Cloud Service Providers (CSPs), marketplace vendors, and cross-functional teams, including architecture, application development, and security teams, to ensure that the provided guidance is comprehensive and practical.
• Stay informed about the latest trends and developments in cloud security and offer recommendations for improving security configurations based on emerging threats and vulnerabilities.
• Provide continuous process improvement suggestions to develop a robust and efficient cloud services security assessment process.
• Utilize Prisma Cloud to analyze and manage security policies, ensuring compliance with industry standards and best practices