Our Deloitte Cyber team understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful solutions to help our clients navigate the ever-changing threat landscape. Through powerful solutions and managed services that simplify complexity, we enable our clients to operate with resilience, grow with confidence, and proactively manage to secure success.

ADDITIONAL REQUIREMENTS:

• Must be willing to travel up to 50%.
• Limited sponsorship may be available.

WORK YOU’LL DO

Deloitte Cyber has an opening for a Cloud Security Architect (Manager/Specialist Master). The cloud security architect plays an integral role in defining and assessing the client organization’s cloud security strategy, architecture and practices. This individual’s primary function is to provide cloud security planning, deployment and review expertise to project teams and client organizations in the Cyber Risk space. Responsibilities include:

• Lead the overall delivery of Azure Cloud Cyber Risk projects in a project manager and or architect role, overseeing the activities of onsite and offshore engineers and architects across 8 key Azure cyber domains: Governance, Identity, Application Security, PaaS security, Infrastructure security, Security Monitoring, Resilience and Data protection
• Assist in business development activities such as defining scope of services, building resource estimates and related pricing, packaging proposals and supporting the delivery of the proposal to the client for Azure and Entra ID Cloud Cyber Risk services
• Function as the primary client day to day interface building rapport and trust with the client
• Function as an expert in CNAPP, CWPP and CSPM technologies and security risk frameworks relevant to cloud as well as the Microsoft Cloud Security Benchmark
• Review and oversee the generation of all project deliverables such as assessment reports, system designs/ architectures and risk/security recommendations
• Maintain strong domain knowledge of Azure and Microsoft cloud solutions and security concepts and technologies
• Assist clients with security frameworks, cloud configuration standards and resolving Azure cloud vulnerabilities
• Lead the execution of Azure Cloud security engagements during different phases of the lifecycle – assess, design, and implementation. This can include Microsoft cloud services such as Azure, Entra ID and 0365
• Lead engagements to perform technical health checks for Azure Cloud platforms/environments prior to broader deployments.
• Oversee technical support for Azure cyber services and resolve service-related issues through research and troubleshooting and working with vendors.
• Conduct cloud security analysis, recommendations and configurations of prospective clients’ Microsoft Azure platforms and environments based on Deloitte’s Cloud Cyber Risk Framework. This can include Microsoft’s cloud solutions such as Entra ID, Azure infrastructure (compute/networking/storage), Azure data protection, Azure security monitoring and Azure PaaS service configurations.
• Perform technical health checks for these Azure cloud platforms/environments prior to broader deployments including DevSecOps and CI/CD pipelines
• Support proof of concept and production deployments of these Azure cloud technologies.
• Assist clients with transitions to using Microsoft Azure cloud services such as tenant setup and service configuration, focused on cloud cyber risk mitigation. Additional technologies include: Microsoft MFA, SSO, Conditional Access, PIM, Defender for Cloud, Azure Policy, Azure Sentinel and Azure Monitor.
• Assist clients with the deployment of third-party technologies to assist in securing the Azure platform such as firewall, WAF, PAM and cloud workload protection.
• Assist clients with configuration and delivery of cloud security and compliance reports.
• Provide technical support for Azure, Entra ID and third-party security services and resolve service-related issues through research and troubleshooting and working with Microsoft and third-party vendors.
• Implementation of industry leading practices around Azure, Entra ID and cloud security services for clients.
• Designing and developing cloud-specific security policies, standards and procedures e.g., Azure tenant, management group and subscription management and configuration, identify management and access control, firewall management, auditing and monitoring, security incident and event management, data protection (DLP, encryption), user and administrator account management, SSO, conditional access controls and password/key management.
• Troubleshooting Azure system level problems in a multi-vendor, multi-protocol network environment.
• Documenting Azure platform technical issues, analysis, client communication, and resolution as part of cyber risk mitigation steps.
• Executing on Azure and Entra ID cloud security engagements during different phases of the lifecycle – assess, design, and implementation & post implementation reviews.
• Implementing industry leading practices around Azure and Entra ID cyber risks and cloud security for clients.
• Provide internal Azure security technical training to Advisory personnel as needed.
• Acting as a subject matter expert on cloud cyber risk for the Microsoft Azure and Entra ID platforms.
• Manage to Point-of-Views (PoVs) on providing leading practices to our clients on the M365 security challenges they face.
• Contribute to eminence activities, such as whitepapers pertaining to Microsoft 365 security capabilities.
• Support talent process in the manager role such as for recruiting and coaching.

OUR PURPOSE

Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Learn more.