5,192 Cloud Security Manager jobs in the United States

Description
Locations: This role will require a 3-day hybrid work schedule in one of our primary organizational hubs including: Johnston, RI - Pittsburgh, PA - Phoenix, AZ - Westwood or Medford, MA - Charlotte, NC - Plano, TX - Iselin, NJ
Position Overview
At our organization, we are committed to excellence, and as part of our team, you'll be equipped for a rewarding career filled with dynamic challenges and opportunities for growth. The Cloud Security Manager will spearhead the enterprise-wide strategy for establishing, deploying, and operationalizing a robust Cloud Security Posture Management (CSPM) solution to safeguard our cloud environments. This leader will play a pivotal role in ensuring the security of our cloud infrastructure while collaborating with cross-functional teams to align with organizational Cybersecurity Policies and risk-based priorities.
This position demands exceptional leadership, deep technical expertise, and the ability to work seamlessly with technology, business, audit, and compliance stakeholders. The Cloud Security Manager will also focus on developing actionable metrics and maintaining transparency with Federal Regulators, enterprise risk teams, and auditors.
Key Responsibilities
Cloud Security Posture Management:
+ Lead the deployment and operationalization of a comprehensive CSPM solution across multi-cloud environments (AWS, Azure, GCP).
+ Develop and implement strategies to identify, assess, and mitigate cloud-specific risks and misconfigurations.
Technical Oversight:
+ Oversee the integration and management of cloud security tools, including those for identity and access management, encryption, and threat detection.
+ Ensure adherence to industry standards such as NIST, CIS, ISO 27001, and CSA CCM.
Cloud and Infrastructure Leadership:
+ Provide strategic direction for securing cloud workloads, containers, and serverless architectures.
+ Collaborate with DevOps and engineering teams to embed security practices into CI/CD pipelines (DevSecOps).
Risk Management and Collaboration:
+ Establish KPIs to monitor cloud security effectiveness and report on the organization's risk posture.
+ Engage with Federal Regulators, internal/external audit teams, enterprise risk, compliance, and senior leadership to ensure transparency and alignment.
+ Communicate cloud security risks, mitigation strategies, and progress to executive stakeholders.
+ Build strong partnerships with cloud architecture, infrastructure, and application development teams.
Team Leadership:
+ Manage and mentor a team of cloud security professionals, fostering a culture of innovation, accountability, and continuous improvement.
Required Experience and Skills
+ 10+ years of experience in cybersecurity, with a strong emphasis on cloud security and infrastructure protection.
+ 5+ years of leadership experience, including managing technical teams.
+ Proven expertise in standing up and operationalizing large-scale cloud security solutions in AWS, Azure, or GCP environments.
+ Familiarity with tools such as cloud-native security platforms, SIEM, and vulnerability management systems.
+ In-depth knowledge of risk management frameworks (e.g., NIST 800-53, CIS Controls, CSA CCM).
+ Demonstrated ability to drive security initiatives across complex, enterprise-scale cloud environments.
+ Exceptional communication skills, with the ability to distill complex technical topics for non-technical stakeholders and regulators.
+ Solid understanding of cloud security standards, including IAM, network security, and encryption best practices.
Education and Certifications
+ A bachelor's degree in Computer Science, Information Security, or a related field.
+ Preferred Certifications: OSCP, CISSP, CCSP, CISM, AWS Certified Security Specialty, Microsoft Certified: Cybersecurity Architect Expert, or equivalent.
Pay Transparency
The salary range for this position is $175,000 - $210,000 per year plus an opportunity to earn an annual discretionary bonus. Actual pay is based on various factors including but not limited to the work location, and relevant skills and experience.
We offer competitive pay, comprehensive medical, dental and vision coverage, retirement benefits, maternity/paternity leave, flexible work arrangements, education reimbursement, wellness programs and more. Note, Citizens' paid time off policy exceeds the mandatory, paid sick or paid time-away policy of very local and state jurisdiction in the United States. For an overview of our benefits, visit job boards have started using jobseeker-reported data to estimate salary ranges for roles. If you apply and qualify for this role, a recruiter will discuss accurate pay guidance.
Equal Employment Opportunity
Citizens, its parent, subsidiaries, and related companies (Citizens) provide equal employment and advancement opportunities to all colleagues and applicants for employment without regard to age, ancestry, color, citizenship, physical or mental disability, perceived disability or history or record of a disability, ethnicity, gender, gender identity or expression, genetic information, genetic characteristic, marital or domestic partner status, victim of domestic violence, family status/parenthood, medical condition, military or veteran status, national origin, pregnancy/childbirth/lactation, colleague's or a dependent's reproductive health decision making, race, religion, sex, sexual orientation, or any other category protected by federal, state and/or local laws. At Citizens, we are committed to fostering an inclusive culture that enables all colleagues to bring their best selves to work every day and everyone is expected to be treated with respect and professionalism. Employment decisions are based solely on merit, qualifications, performance and capability.
Why Work for Us
At Citizens, you'll find a customer-centric culture built around helping our customers and giving back to our local communities. When you join our team, you are part of a supportive and collaborative workforce, with access to training and tools to accelerate your potential and maximize your career growth
Background Check
Any offer of employment is conditioned upon the candidate successfully passing a background check, which may include initial credit, motor vehicle record, public record, prior employment verification, and criminal background checks. Results of the background check are individually reviewed based upon legal requirements imposed by our regulators and with consideration of the nature and gravity of the background history and the job offered. Any offer of employment will include further information.

Our Deloitte Cyber team understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful solutions to help our clients navigate the ever-changing threat landscape. Through powerful solutions and managed services that simplify complexity, we enable our clients to operate with resilience, grow with confidence, and proactively manage to secure success.
Recruiting for this role ends on 10/31/2025
Work you'll do
As a Manager, you will be part of our Oracle practice and will be responsible for delivering application security for Oracle Cloud ERP, HCM, SCM and business process controls implementations and assessments. Responsibilities will include assessment, design and implementation of application security, automated controls and governance, risk and compliance (GRC).
The Team
Our Enterprise Security offering embeds security in all aspects of digital transformation by securing a client's technical backbone while enabling secure digital transformation. Includes security architecture, secure development and deployment, end-to-end cyber cloud capabilities, application security, and security for emerging technologies and connected products.
Qualifications
Required:
+ 6+ years of experience with Oracle Security and Governance, Risk and Compliance (GRC)
+ Led 3+ end-to-end implementation project in Oracle Cloud ERP
+ Experience with designing Oracle Cloud roles across functional areas for Oracle Cloud Financials, Supply Chain Management (SCM), Human Capital Management (HCM) or Enterprise Performance Management (EPM)
+ 3+ years of experience in large and complex projects with multiple rollouts or countries/regions
+ 3+ years of experience in managing teams
+ 3+ years of experience in leading security design workshops
+ Processing experience in designing, configuring, and implementing Oracle Risk Management Cloud (Advanced Access Controls (AAC), Advanced Financial Controls (AFC) and Financial Reporting Controls (FRC))
+ Facilitate use of technology-based tools or methodologies to review, design and/or implement products and services
+ BA/BS Degree in Computer Science, Cyber Security, Information Security, Engineering, Information Technology, Management Information Systems, Finance, Accounting & Technology or Business
+ 3+ years of leading project, budget, and resource management
+ Ability to travel up to 50%, on average, based on the work you do and the clients and industries/sectors you serve
+ Limited immigration sponsorship may be available
Preferred:
+ Previous Consulting or Big 4 experience preferred
+ Certifications such as: CISSP, CISM or CISA is desired
+ Experience with Oracle ERP Cloud Security concepts across application modules
+ Knowledge of Oracle ERP/HCM Cloud security design and implementation methodology
+ Strong understanding of Segregation of Duties (SOD) frameworks and personally identifiable information (PII)
+ Knowledge of business process, user provisioning process, and security maintenance process preferred
+ Expertise with Oracle Risk Management Cloud - Advanced Access Controls (AAC), Advanced Financial Controls (AFC) and Financial Reporting Controls (FRC)
+ Oracle Risk Management Cloud Certified Implementation Specialist Certification is desired
+ Strong understating of Single Sign-on (SSO) and Multi-factored authentication (MFA)
+ Knowledge/experience in data protection tools and techniques
+ Knowledge/experience in identity access management tools
+ Oracle Risk Management Cloud Certified Implementation Professional certification is desired
+ Oracle Cloud Infrastructure Security Professional certification is desired
Information for applicants with a need for accommodation: wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $130,800 to $241,000.
You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.

Our Deloitte Cyber team understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful solutions to help our clients navigate the ever-changing threat landscape. Through powerful solutions and managed services that simplify complexity, we enable our clients to operate with resilience, grow with confidence, and proactively manage to secure success.
Work you'll do
Deloitte Cyber has an opening for a Cloud Security Architect (Manager/Specialist Master). The cloud security architect plays an integral role in defining and assessing the client organization's cloud security strategy, architecture and practices. This individual's primary function is to provide cloud security planning, deployment and review expertise to project teams and client organizations in the Cyber Risk space. Responsibilities include:
+ Lead the overall delivery of Azure Cloud Cyber Risk projects in a project manager and or architect role, overseeing the activities of onsite and offshore engineers and architects across 8 key Azure cyber domains: Governance, Identity, Application Security, PaaS security, Infrastructure security, Security Monitoring, Resilience and Data protection
+ Assist in business development activities such as defining scope of services, building resource estimates and related pricing, packaging proposals and supporting the delivery of the proposal to the client for Azure and Entra ID Cloud Cyber Risk services
+ Function as the primary client day to day interface building rapport and trust with the client
+ Function as an expert in CNAPP, CWPP and CSPM technologies and security risk frameworks relevant to cloud as well as the Microsoft Cloud Security Benchmark
+ Review and oversee the generation of all project deliverables such as assessment reports, system designs/ architectures and risk/security recommendations
+ Maintain strong domain knowledge of Azure and Microsoft cloud solutions and security concepts and technologies
+ Assist clients with security frameworks, cloud configuration standards and resolving Azure cloud vulnerabilities
+ Lead the execution of Azure Cloud security engagements during different phases of the lifecycle - assess, design, and implementation. This can include Microsoft cloud services such as Azure, Entra ID and 0365
+ Lead engagements to perform technical health checks for Azure Cloud platforms/environments prior to broader deployments.
+ Oversee technical support for Azure cyber services and resolve service-related issues through research and troubleshooting and working with vendors.
+ Conduct cloud security analysis, recommendations and configurations of prospective clients' Microsoft Azure platforms and environments based on Deloitte's Cloud Cyber Risk Framework. This can include Microsoft's cloud solutions such as Entra ID, Azure infrastructure (compute/networking/storage), Azure data protection, Azure security monitoring and Azure PaaS service configurations.
+ Perform technical health checks for these Azure cloud platforms/environments prior to broader deployments including DevSecOps and CI/CD pipelines
+ Support proof of concept and production deployments of these Azure cloud technologies.
+ Assist clients with transitions to using Microsoft Azure cloud services such as tenant setup and service configuration, focused on cloud cyber risk mitigation. Additional technologies include: Microsoft MFA, SSO, Conditional Access, PIM, Defender for Cloud, Azure Policy, Azure Sentinel and Azure Monitor.
+ Assist clients with the deployment of third-party technologies to assist in securing the Azure platform such as firewall, WAF, PAM and cloud workload protection.
+ Assist clients with configuration and delivery of cloud security and compliance reports.
+ Provide technical support for Azure, Entra ID and third-party security services and resolve service-related issues through research and troubleshooting and working with Microsoft and third-party vendors.
+ Implementation of industry leading practices around Azure, Entra ID and cloud security services for clients.
+ Designing and developing cloud-specific security policies, standards and procedures e.g., Azure tenant, management group and subscription management and configuration, identify management and access control, firewall management, auditing and monitoring, security incident and event management, data protection (DLP, encryption), user and administrator account management, SSO, conditional access controls and password/key management.
+ Troubleshooting Azure system level problems in a multi-vendor, multi-protocol network environment.
+ Documenting Azure platform technical issues, analysis, client communication, and resolution as part of cyber risk mitigation steps.
+ Executing on Azure and Entra ID cloud security engagements during different phases of the lifecycle - assess, design, and implementation & post implementation reviews.
+ Implementing industry leading practices around Azure and Entra ID cyber risks and cloud security for clients.
+ Provide internal Azure security technical training to Advisory personnel as needed.
+ Acting as a subject matter expert on cloud cyber risk for the Microsoft Azure and Entra ID platforms.
+ Manage to Point-of-Views (PoVs) on providing leading practices to our clients on the M365 security challenges they face.
+ Contribute to eminence activities, such as whitepapers pertaining to Microsoft 365 security capabilities.
+ Support talent process in the manager role such as for recruiting and coaching.
The team
Our Enterprise Security offering embeds security in all aspects of digital transformation by securing a client's technical backbone while enabling secure digital transformation. Includes security architecture, secure development and deployment, end-to-end cyber cloud capabilities, application security, and security for emerging technologies and connected products.
Required:
+ 6+ years of experience in technical consulting, client problem solving, architecting and designing solutions in a consulting role with project leadership and/or architect experience in Azure ; with a security focus strongly preferred
+ 2+ years experience with the following technologies: Azure Policy, Terraform or other JSON constructs
+ Minimum 2+ years of hands-on technical experience designing and implementing security solutions for leading Cloud service providers across SPI models and environments (Public, Private, Hybrid)
+ 2+ years working experience designing cloud security architectures and strategies for enterprises
+ Experience with Virtualization including security for at least one or more of the following: Compute, Network, Storage, End-point, Application
+ 2+ years working with Cloud security industry standards such as Cloud Security Alliance (CSA), ISO/IEC 27017 and NIST CSF
+ 2+ years working experience with Cloud security technologies/vendors (e.g., IAM, SIEM, IDS) and/or providers (e.g., Okta, CipherCloud, AlertLogic), a big plus
+ 2+ years working with Cloud orchestration and automation (Continuous Integration and Continuous Delivery (CI/CD)) in single and multi-tenant environments
+ 3+ years working with CNAPP, CSPM or CWPP technologies or planning for large-scale deployments of these technologies
+ Experience designing IAM technologies and services
+ Experience or strong working knowledge of managing enterprise security infrastructure and perimeter security appliances - e.g., firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM and log management technology
+ Experience with Azure data, analytics, or AI/ML services (Azure SQL, HDInsight, Databricks, Data Factory, Data Lake Storage, Azure Analysis Services, Synapse Analytics, Azure Machine Learning, etc.)
+ Understanding of industry security standards, guidelines and regulatory/compliance requirements related to information security and cloud computing such as ISO 27001, ISO 27018, NIST CSF, NIST 800-53, PCI DSS, SOC2, HIPAA, PCI, SOX, GLBA, etc.
Additional Requirements:
+ Must be willing to travel up to 50%.
+ Limited sponsorship may be available.
Preferred:
+ BA/BS Degree preferred. Ideally in Computer Science, Cyber Security, Information Security, Engineering, Information Technology.
+ Previous Consulting or Big 4 experience preferred.
+ Microsoft Certifications such as: Az-500 Azure Security Engineer, AZ-204 Azure Developer Associate Certification, (SC-900, SC-100, SC-200, SC-300, SC-400
Cyber Certifications such as: CCSP, CCSK, CISSP, CCNP, and CCNA.
The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $144,200-$265,600.
You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.
Information for applicants with a need for accommodation: qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.

Our Deloitte Cyber team understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful solutions to help our clients navigate the ever-changing threat landscape. Through powerful solutions and managed services that simplify complexity, we enable our clients to operate with resilience, grow with confidence, and proactively manage to secure success.
Recruiting for this role ends on 10/31/2025
Work you'll do
As a Manager, you will be part of our Oracle practice and will be responsible for delivering application security for Oracle Cloud ERP, HCM, SCM and business process controls implementations and assessments. Responsibilities will include assessment, design and implementation of application security, automated controls and governance, risk and compliance (GRC).
The Team
Our Enterprise Security offering embeds security in all aspects of digital transformation by securing a client's technical backbone while enabling secure digital transformation. Includes security architecture, secure development and deployment, end-to-end cyber cloud capabilities, application security, and security for emerging technologies and connected products.
Qualifications
Required:
+ 6+ years of experience with Oracle Security and Governance, Risk and Compliance (GRC)
+ Led 3+ end-to-end implementation project in Oracle Cloud ERP
+ Experience with designing Oracle Cloud roles across functional areas for Oracle Cloud Financials, Supply Chain Management (SCM), Human Capital Management (HCM) or Enterprise Performance Management (EPM)
+ 3+ years of experience in large and complex projects with multiple rollouts or countries/regions
+ 3+ years of experience in managing teams
+ 3+ years of experience in leading security design workshops
+ Processing experience in designing, configuring, and implementing Oracle Risk Management Cloud (Advanced Access Controls (AAC), Advanced Financial Controls (AFC) and Financial Reporting Controls (FRC))
+ Facilitate use of technology-based tools or methodologies to review, design and/or implement products and services
+ BA/BS Degree in Computer Science, Cyber Security, Information Security, Engineering, Information Technology, Management Information Systems, Finance, Accounting & Technology or Business
+ 3+ years of leading project, budget, and resource management
+ Ability to travel up to 50%, on average, based on the work you do and the clients and industries/sectors you serve
+ Limited immigration sponsorship may be available
Preferred:
+ Previous Consulting or Big 4 experience preferred
+ Certifications such as: CISSP, CISM or CISA is desired
+ Experience with Oracle ERP Cloud Security concepts across application modules
+ Knowledge of Oracle ERP/HCM Cloud security design and implementation methodology
+ Strong understanding of Segregation of Duties (SOD) frameworks and personally identifiable information (PII)
+ Knowledge of business process, user provisioning process, and security maintenance process preferred
+ Expertise with Oracle Risk Management Cloud - Advanced Access Controls (AAC), Advanced Financial Controls (AFC) and Financial Reporting Controls (FRC)
+ Oracle Risk Management Cloud Certified Implementation Specialist Certification is desired
+ Strong understating of Single Sign-on (SSO) and Multi-factored authentication (MFA)
+ Knowledge/experience in data protection tools and techniques
+ Knowledge/experience in identity access management tools
+ Oracle Risk Management Cloud Certified Implementation Professional certification is desired
+ Oracle Cloud Infrastructure Security Professional certification is desired
Information for applicants with a need for accommodation: wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $130,800 to $241,000.
You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.

Our Deloitte Cyber team understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful solutions to help our clients navigate the ever-changing threat landscape. Through powerful solutions and managed services that simplify complexity, we enable our clients to operate with resilience, grow with confidence, and proactively manage to secure success.
Recruiting for this role ends on 10/31/2025
Work you'll do
As a Manager, you will be part of our Oracle practice and will be responsible for delivering application security for Oracle Cloud ERP, HCM, SCM and business process controls implementations and assessments. Responsibilities will include assessment, design and implementation of application security, automated controls and governance, risk and compliance (GRC).
The Team
Our Enterprise Security offering embeds security in all aspects of digital transformation by securing a client's technical backbone while enabling secure digital transformation. Includes security architecture, secure development and deployment, end-to-end cyber cloud capabilities, application security, and security for emerging technologies and connected products.
Qualifications
Required:
+ 6+ years of experience with Oracle Security and Governance, Risk and Compliance (GRC)
+ Led 3+ end-to-end implementation project in Oracle Cloud ERP
+ Experience with designing Oracle Cloud roles across functional areas for Oracle Cloud Financials, Supply Chain Management (SCM), Human Capital Management (HCM) or Enterprise Performance Management (EPM)
+ 3+ years of experience in large and complex projects with multiple rollouts or countries/regions
+ 3+ years of experience in managing teams
+ 3+ years of experience in leading security design workshops
+ Processing experience in designing, configuring, and implementing Oracle Risk Management Cloud (Advanced Access Controls (AAC), Advanced Financial Controls (AFC) and Financial Reporting Controls (FRC))
+ Facilitate use of technology-based tools or methodologies to review, design and/or implement products and services
+ BA/BS Degree in Computer Science, Cyber Security, Information Security, Engineering, Information Technology, Management Information Systems, Finance, Accounting & Technology or Business
+ 3+ years of leading project, budget, and resource management
+ Ability to travel up to 50%, on average, based on the work you do and the clients and industries/sectors you serve
+ Limited immigration sponsorship may be available
Preferred:
+ Previous Consulting or Big 4 experience preferred
+ Certifications such as: CISSP, CISM or CISA is desired
+ Experience with Oracle ERP Cloud Security concepts across application modules
+ Knowledge of Oracle ERP/HCM Cloud security design and implementation methodology
+ Strong understanding of Segregation of Duties (SOD) frameworks and personally identifiable information (PII)
+ Knowledge of business process, user provisioning process, and security maintenance process preferred
+ Expertise with Oracle Risk Management Cloud - Advanced Access Controls (AAC), Advanced Financial Controls (AFC) and Financial Reporting Controls (FRC)
+ Oracle Risk Management Cloud Certified Implementation Specialist Certification is desired
+ Strong understating of Single Sign-on (SSO) and Multi-factored authentication (MFA)
+ Knowledge/experience in data protection tools and techniques
+ Knowledge/experience in identity access management tools
+ Oracle Risk Management Cloud Certified Implementation Professional certification is desired
+ Oracle Cloud Infrastructure Security Professional certification is desired
Information for applicants with a need for accommodation: wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $130,800 to $241,000.
You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.

Our Deloitte Cyber team understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful solutions to help our clients navigate the ever-changing threat landscape. Through powerful solutions and managed services that simplify complexity, we enable our clients to operate with resilience, grow with confidence, and proactively manage to secure success.
Recruiting for this role ends on 10/31/2025
Work you'll do
As a Manager, you will be part of our Oracle practice and will be responsible for delivering application security for Oracle Cloud ERP, HCM, SCM and business process controls implementations and assessments. Responsibilities will include assessment, design and implementation of application security, automated controls and governance, risk and compliance (GRC).
The Team
Our Enterprise Security offering embeds security in all aspects of digital transformation by securing a client's technical backbone while enabling secure digital transformation. Includes security architecture, secure development and deployment, end-to-end cyber cloud capabilities, application security, and security for emerging technologies and connected products.
Qualifications
Required:
+ 6+ years of experience with Oracle Security and Governance, Risk and Compliance (GRC)
+ Led 3+ end-to-end implementation project in Oracle Cloud ERP
+ Experience with designing Oracle Cloud roles across functional areas for Oracle Cloud Financials, Supply Chain Management (SCM), Human Capital Management (HCM) or Enterprise Performance Management (EPM)
+ 3+ years of experience in large and complex projects with multiple rollouts or countries/regions
+ 3+ years of experience in managing teams
+ 3+ years of experience in leading security design workshops
+ Processing experience in designing, configuring, and implementing Oracle Risk Management Cloud (Advanced Access Controls (AAC), Advanced Financial Controls (AFC) and Financial Reporting Controls (FRC))
+ Facilitate use of technology-based tools or methodologies to review, design and/or implement products and services
+ BA/BS Degree in Computer Science, Cyber Security, Information Security, Engineering, Information Technology, Management Information Systems, Finance, Accounting & Technology or Business
+ 3+ years of leading project, budget, and resource management
+ Ability to travel up to 50%, on average, based on the work you do and the clients and industries/sectors you serve
+ Limited immigration sponsorship may be available
Preferred:
+ Previous Consulting or Big 4 experience preferred
+ Certifications such as: CISSP, CISM or CISA is desired
+ Experience with Oracle ERP Cloud Security concepts across application modules
+ Knowledge of Oracle ERP/HCM Cloud security design and implementation methodology
+ Strong understanding of Segregation of Duties (SOD) frameworks and personally identifiable information (PII)
+ Knowledge of business process, user provisioning process, and security maintenance process preferred
+ Expertise with Oracle Risk Management Cloud - Advanced Access Controls (AAC), Advanced Financial Controls (AFC) and Financial Reporting Controls (FRC)
+ Oracle Risk Management Cloud Certified Implementation Specialist Certification is desired
+ Strong understating of Single Sign-on (SSO) and Multi-factored authentication (MFA)
+ Knowledge/experience in data protection tools and techniques
+ Knowledge/experience in identity access management tools
+ Oracle Risk Management Cloud Certified Implementation Professional certification is desired
+ Oracle Cloud Infrastructure Security Professional certification is desired
Information for applicants with a need for accommodation: wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $130,800 to $241,000.
You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.

Our Deloitte Cyber team understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful solutions to help our clients navigate the ever-changing threat landscape. Through powerful solutions and managed services that simplify complexity, we enable our clients to operate with resilience, grow with confidence, and proactively manage to secure success.
Work you'll do
Deloitte Cyber has an opening for a Cloud Security Architect (Manager/Specialist Master). The cloud security architect plays an integral role in defining and assessing the client organization's cloud security strategy, architecture and practices. This individual's primary function is to provide cloud security planning, deployment and review expertise to project teams and client organizations in the Cyber Risk space. Responsibilities include:
+ Lead the overall delivery of Azure Cloud Cyber Risk projects in a project manager and or architect role, overseeing the activities of onsite and offshore engineers and architects across 8 key Azure cyber domains: Governance, Identity, Application Security, PaaS security, Infrastructure security, Security Monitoring, Resilience and Data protection
+ Assist in business development activities such as defining scope of services, building resource estimates and related pricing, packaging proposals and supporting the delivery of the proposal to the client for Azure and Entra ID Cloud Cyber Risk services
+ Function as the primary client day to day interface building rapport and trust with the client
+ Function as an expert in CNAPP, CWPP and CSPM technologies and security risk frameworks relevant to cloud as well as the Microsoft Cloud Security Benchmark
+ Review and oversee the generation of all project deliverables such as assessment reports, system designs/ architectures and risk/security recommendations
+ Maintain strong domain knowledge of Azure and Microsoft cloud solutions and security concepts and technologies
+ Assist clients with security frameworks, cloud configuration standards and resolving Azure cloud vulnerabilities
+ Lead the execution of Azure Cloud security engagements during different phases of the lifecycle - assess, design, and implementation. This can include Microsoft cloud services such as Azure, Entra ID and 0365
+ Lead engagements to perform technical health checks for Azure Cloud platforms/environments prior to broader deployments.
+ Oversee technical support for Azure cyber services and resolve service-related issues through research and troubleshooting and working with vendors.
+ Conduct cloud security analysis, recommendations and configurations of prospective clients' Microsoft Azure platforms and environments based on Deloitte's Cloud Cyber Risk Framework. This can include Microsoft's cloud solutions such as Entra ID, Azure infrastructure (compute/networking/storage), Azure data protection, Azure security monitoring and Azure PaaS service configurations.
+ Perform technical health checks for these Azure cloud platforms/environments prior to broader deployments including DevSecOps and CI/CD pipelines
+ Support proof of concept and production deployments of these Azure cloud technologies.
+ Assist clients with transitions to using Microsoft Azure cloud services such as tenant setup and service configuration, focused on cloud cyber risk mitigation. Additional technologies include: Microsoft MFA, SSO, Conditional Access, PIM, Defender for Cloud, Azure Policy, Azure Sentinel and Azure Monitor.
+ Assist clients with the deployment of third-party technologies to assist in securing the Azure platform such as firewall, WAF, PAM and cloud workload protection.
+ Assist clients with configuration and delivery of cloud security and compliance reports.
+ Provide technical support for Azure, Entra ID and third-party security services and resolve service-related issues through research and troubleshooting and working with Microsoft and third-party vendors.
+ Implementation of industry leading practices around Azure, Entra ID and cloud security services for clients.
+ Designing and developing cloud-specific security policies, standards and procedures e.g., Azure tenant, management group and subscription management and configuration, identify management and access control, firewall management, auditing and monitoring, security incident and event management, data protection (DLP, encryption), user and administrator account management, SSO, conditional access controls and password/key management.
+ Troubleshooting Azure system level problems in a multi-vendor, multi-protocol network environment.
+ Documenting Azure platform technical issues, analysis, client communication, and resolution as part of cyber risk mitigation steps.
+ Executing on Azure and Entra ID cloud security engagements during different phases of the lifecycle - assess, design, and implementation & post implementation reviews.
+ Implementing industry leading practices around Azure and Entra ID cyber risks and cloud security for clients.
+ Provide internal Azure security technical training to Advisory personnel as needed.
+ Acting as a subject matter expert on cloud cyber risk for the Microsoft Azure and Entra ID platforms.
+ Manage to Point-of-Views (PoVs) on providing leading practices to our clients on the M365 security challenges they face.
+ Contribute to eminence activities, such as whitepapers pertaining to Microsoft 365 security capabilities.
+ Support talent process in the manager role such as for recruiting and coaching.
The team
Our Enterprise Security offering embeds security in all aspects of digital transformation by securing a client's technical backbone while enabling secure digital transformation. Includes security architecture, secure development and deployment, end-to-end cyber cloud capabilities, application security, and security for emerging technologies and connected products.
Required:
+ 6+ years of experience in technical consulting, client problem solving, architecting and designing solutions in a consulting role with project leadership and/or architect experience in Azure ; with a security focus strongly preferred
+ 2+ years experience with the following technologies: Azure Policy, Terraform or other JSON constructs
+ Minimum 2+ years of hands-on technical experience designing and implementing security solutions for leading Cloud service providers across SPI models and environments (Public, Private, Hybrid)
+ 2+ years working experience designing cloud security architectures and strategies for enterprises
+ Experience with Virtualization including security for at least one or more of the following: Compute, Network, Storage, End-point, Application
+ 2+ years working with Cloud security industry standards such as Cloud Security Alliance (CSA), ISO/IEC 27017 and NIST CSF
+ 2+ years working experience with Cloud security technologies/vendors (e.g., IAM, SIEM, IDS) and/or providers (e.g., Okta, CipherCloud, AlertLogic), a big plus
+ 2+ years working with Cloud orchestration and automation (Continuous Integration and Continuous Delivery (CI/CD)) in single and multi-tenant environments
+ 3+ years working with CNAPP, CSPM or CWPP technologies or planning for large-scale deployments of these technologies
+ Experience designing IAM technologies and services
+ Experience or strong working knowledge of managing enterprise security infrastructure and perimeter security appliances - e.g., firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM and log management technology
+ Experience with Azure data, analytics, or AI/ML services (Azure SQL, HDInsight, Databricks, Data Factory, Data Lake Storage, Azure Analysis Services, Synapse Analytics, Azure Machine Learning, etc.)
+ Understanding of industry security standards, guidelines and regulatory/compliance requirements related to information security and cloud computing such as ISO 27001, ISO 27018, NIST CSF, NIST 800-53, PCI DSS, SOC2, HIPAA, PCI, SOX, GLBA, etc.
Additional Requirements:
+ Must be willing to travel up to 50%.
+ Limited sponsorship may be available.
Preferred:
+ BA/BS Degree preferred. Ideally in Computer Science, Cyber Security, Information Security, Engineering, Information Technology.
+ Previous Consulting or Big 4 experience preferred.
+ Microsoft Certifications such as: Az-500 Azure Security Engineer, AZ-204 Azure Developer Associate Certification, (SC-900, SC-100, SC-200, SC-300, SC-400
Cyber Certifications such as: CCSP, CCSK, CISSP, CCNP, and CCNA.
The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $144,200-$265,600.
You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.
Information for applicants with a need for accommodation: qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.

Our Deloitte Cyber team understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful solutions to help our clients navigate the ever-changing threat landscape. Through powerful solutions and managed services that simplify complexity, we enable our clients to operate with resilience, grow with confidence, and proactively manage to secure success.
Work you'll do
Deloitte Cyber has an opening for a Cloud Security Architect (Manager/Specialist Master). The cloud security architect plays an integral role in defining and assessing the client organization's cloud security strategy, architecture and practices. This individual's primary function is to provide cloud security planning, deployment and review expertise to project teams and client organizations in the Cyber Risk space. Responsibilities include:
+ Lead the overall delivery of Azure Cloud Cyber Risk projects in a project manager and or architect role, overseeing the activities of onsite and offshore engineers and architects across 8 key Azure cyber domains: Governance, Identity, Application Security, PaaS security, Infrastructure security, Security Monitoring, Resilience and Data protection
+ Assist in business development activities such as defining scope of services, building resource estimates and related pricing, packaging proposals and supporting the delivery of the proposal to the client for Azure and Entra ID Cloud Cyber Risk services
+ Function as the primary client day to day interface building rapport and trust with the client
+ Function as an expert in CNAPP, CWPP and CSPM technologies and security risk frameworks relevant to cloud as well as the Microsoft Cloud Security Benchmark
+ Review and oversee the generation of all project deliverables such as assessment reports, system designs/ architectures and risk/security recommendations
+ Maintain strong domain knowledge of Azure and Microsoft cloud solutions and security concepts and technologies
+ Assist clients with security frameworks, cloud configuration standards and resolving Azure cloud vulnerabilities
+ Lead the execution of Azure Cloud security engagements during different phases of the lifecycle - assess, design, and implementation. This can include Microsoft cloud services such as Azure, Entra ID and 0365
+ Lead engagements to perform technical health checks for Azure Cloud platforms/environments prior to broader deployments.
+ Oversee technical support for Azure cyber services and resolve service-related issues through research and troubleshooting and working with vendors.
+ Conduct cloud security analysis, recommendations and configurations of prospective clients' Microsoft Azure platforms and environments based on Deloitte's Cloud Cyber Risk Framework. This can include Microsoft's cloud solutions such as Entra ID, Azure infrastructure (compute/networking/storage), Azure data protection, Azure security monitoring and Azure PaaS service configurations.
+ Perform technical health checks for these Azure cloud platforms/environments prior to broader deployments including DevSecOps and CI/CD pipelines
+ Support proof of concept and production deployments of these Azure cloud technologies.
+ Assist clients with transitions to using Microsoft Azure cloud services such as tenant setup and service configuration, focused on cloud cyber risk mitigation. Additional technologies include: Microsoft MFA, SSO, Conditional Access, PIM, Defender for Cloud, Azure Policy, Azure Sentinel and Azure Monitor.
+ Assist clients with the deployment of third-party technologies to assist in securing the Azure platform such as firewall, WAF, PAM and cloud workload protection.
+ Assist clients with configuration and delivery of cloud security and compliance reports.
+ Provide technical support for Azure, Entra ID and third-party security services and resolve service-related issues through research and troubleshooting and working with Microsoft and third-party vendors.
+ Implementation of industry leading practices around Azure, Entra ID and cloud security services for clients.
+ Designing and developing cloud-specific security policies, standards and procedures e.g., Azure tenant, management group and subscription management and configuration, identify management and access control, firewall management, auditing and monitoring, security incident and event management, data protection (DLP, encryption), user and administrator account management, SSO, conditional access controls and password/key management.
+ Troubleshooting Azure system level problems in a multi-vendor, multi-protocol network environment.
+ Documenting Azure platform technical issues, analysis, client communication, and resolution as part of cyber risk mitigation steps.
+ Executing on Azure and Entra ID cloud security engagements during different phases of the lifecycle - assess, design, and implementation & post implementation reviews.
+ Implementing industry leading practices around Azure and Entra ID cyber risks and cloud security for clients.
+ Provide internal Azure security technical training to Advisory personnel as needed.
+ Acting as a subject matter expert on cloud cyber risk for the Microsoft Azure and Entra ID platforms.
+ Manage to Point-of-Views (PoVs) on providing leading practices to our clients on the M365 security challenges they face.
+ Contribute to eminence activities, such as whitepapers pertaining to Microsoft 365 security capabilities.
+ Support talent process in the manager role such as for recruiting and coaching.
The team
Our Enterprise Security offering embeds security in all aspects of digital transformation by securing a client's technical backbone while enabling secure digital transformation. Includes security architecture, secure development and deployment, end-to-end cyber cloud capabilities, application security, and security for emerging technologies and connected products.
Required:
+ 6+ years of experience in technical consulting, client problem solving, architecting and designing solutions in a consulting role with project leadership and/or architect experience in Azure ; with a security focus strongly preferred
+ 2+ years experience with the following technologies: Azure Policy, Terraform or other JSON constructs
+ Minimum 2+ years of hands-on technical experience designing and implementing security solutions for leading Cloud service providers across SPI models and environments (Public, Private, Hybrid)
+ 2+ years working experience designing cloud security architectures and strategies for enterprises
+ Experience with Virtualization including security for at least one or more of the following: Compute, Network, Storage, End-point, Application
+ 2+ years working with Cloud security industry standards such as Cloud Security Alliance (CSA), ISO/IEC 27017 and NIST CSF
+ 2+ years working experience with Cloud security technologies/vendors (e.g., IAM, SIEM, IDS) and/or providers (e.g., Okta, CipherCloud, AlertLogic), a big plus
+ 2+ years working with Cloud orchestration and automation (Continuous Integration and Continuous Delivery (CI/CD)) in single and multi-tenant environments
+ 3+ years working with CNAPP, CSPM or CWPP technologies or planning for large-scale deployments of these technologies
+ Experience designing IAM technologies and services
+ Experience or strong working knowledge of managing enterprise security infrastructure and perimeter security appliances - e.g., firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM and log management technology
+ Experience with Azure data, analytics, or AI/ML services (Azure SQL, HDInsight, Databricks, Data Factory, Data Lake Storage, Azure Analysis Services, Synapse Analytics, Azure Machine Learning, etc.)
+ Understanding of industry security standards, guidelines and regulatory/compliance requirements related to information security and cloud computing such as ISO 27001, ISO 27018, NIST CSF, NIST 800-53, PCI DSS, SOC2, HIPAA, PCI, SOX, GLBA, etc.
Additional Requirements:
+ Must be willing to travel up to 50%.
+ Limited sponsorship may be available.
Preferred:
+ BA/BS Degree preferred. Ideally in Computer Science, Cyber Security, Information Security, Engineering, Information Technology.
+ Previous Consulting or Big 4 experience preferred.
+ Microsoft Certifications such as: Az-500 Azure Security Engineer, AZ-204 Azure Developer Associate Certification, (SC-900, SC-100, SC-200, SC-300, SC-400
Cyber Certifications such as: CCSP, CCSK, CISSP, CCNP, and CCNA.
The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $144,200-$265,600.
You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.
Information for applicants with a need for accommodation: qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.

Our Deloitte Cyber team understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful solutions to help our clients navigate the ever-changing threat landscape. Through powerful solutions and managed services that simplify complexity, we enable our clients to operate with resilience, grow with confidence, and proactively manage to secure success.
Work you'll do
Deloitte Cyber has an opening for a Cloud Security Architect (Manager/Specialist Master). The cloud security architect plays an integral role in defining and assessing the client organization's cloud security strategy, architecture and practices. This individual's primary function is to provide cloud security planning, deployment and review expertise to project teams and client organizations in the Cyber Risk space. Responsibilities include:
+ Lead the overall delivery of Azure Cloud Cyber Risk projects in a project manager and or architect role, overseeing the activities of onsite and offshore engineers and architects across 8 key Azure cyber domains: Governance, Identity, Application Security, PaaS security, Infrastructure security, Security Monitoring, Resilience and Data protection
+ Assist in business development activities such as defining scope of services, building resource estimates and related pricing, packaging proposals and supporting the delivery of the proposal to the client for Azure and Entra ID Cloud Cyber Risk services
+ Function as the primary client day to day interface building rapport and trust with the client
+ Function as an expert in CNAPP, CWPP and CSPM technologies and security risk frameworks relevant to cloud as well as the Microsoft Cloud Security Benchmark
+ Review and oversee the generation of all project deliverables such as assessment reports, system designs/ architectures and risk/security recommendations
+ Maintain strong domain knowledge of Azure and Microsoft cloud solutions and security concepts and technologies
+ Assist clients with security frameworks, cloud configuration standards and resolving Azure cloud vulnerabilities
+ Lead the execution of Azure Cloud security engagements during different phases of the lifecycle - assess, design, and implementation. This can include Microsoft cloud services such as Azure, Entra ID and 0365
+ Lead engagements to perform technical health checks for Azure Cloud platforms/environments prior to broader deployments.
+ Oversee technical support for Azure cyber services and resolve service-related issues through research and troubleshooting and working with vendors.
+ Conduct cloud security analysis, recommendations and configurations of prospective clients' Microsoft Azure platforms and environments based on Deloitte's Cloud Cyber Risk Framework. This can include Microsoft's cloud solutions such as Entra ID, Azure infrastructure (compute/networking/storage), Azure data protection, Azure security monitoring and Azure PaaS service configurations.
+ Perform technical health checks for these Azure cloud platforms/environments prior to broader deployments including DevSecOps and CI/CD pipelines
+ Support proof of concept and production deployments of these Azure cloud technologies.
+ Assist clients with transitions to using Microsoft Azure cloud services such as tenant setup and service configuration, focused on cloud cyber risk mitigation. Additional technologies include: Microsoft MFA, SSO, Conditional Access, PIM, Defender for Cloud, Azure Policy, Azure Sentinel and Azure Monitor.
+ Assist clients with the deployment of third-party technologies to assist in securing the Azure platform such as firewall, WAF, PAM and cloud workload protection.
+ Assist clients with configuration and delivery of cloud security and compliance reports.
+ Provide technical support for Azure, Entra ID and third-party security services and resolve service-related issues through research and troubleshooting and working with Microsoft and third-party vendors.
+ Implementation of industry leading practices around Azure, Entra ID and cloud security services for clients.
+ Designing and developing cloud-specific security policies, standards and procedures e.g., Azure tenant, management group and subscription management and configuration, identify management and access control, firewall management, auditing and monitoring, security incident and event management, data protection (DLP, encryption), user and administrator account management, SSO, conditional access controls and password/key management.
+ Troubleshooting Azure system level problems in a multi-vendor, multi-protocol network environment.
+ Documenting Azure platform technical issues, analysis, client communication, and resolution as part of cyber risk mitigation steps.
+ Executing on Azure and Entra ID cloud security engagements during different phases of the lifecycle - assess, design, and implementation & post implementation reviews.
+ Implementing industry leading practices around Azure and Entra ID cyber risks and cloud security for clients.
+ Provide internal Azure security technical training to Advisory personnel as needed.
+ Acting as a subject matter expert on cloud cyber risk for the Microsoft Azure and Entra ID platforms.
+ Manage to Point-of-Views (PoVs) on providing leading practices to our clients on the M365 security challenges they face.
+ Contribute to eminence activities, such as whitepapers pertaining to Microsoft 365 security capabilities.
+ Support talent process in the manager role such as for recruiting and coaching.
The team
Our Enterprise Security offering embeds security in all aspects of digital transformation by securing a client's technical backbone while enabling secure digital transformation. Includes security architecture, secure development and deployment, end-to-end cyber cloud capabilities, application security, and security for emerging technologies and connected products.
Required:
+ 6+ years of experience in technical consulting, client problem solving, architecting and designing solutions in a consulting role with project leadership and/or architect experience in Azure ; with a security focus strongly preferred
+ 2+ years experience with the following technologies: Azure Policy, Terraform or other JSON constructs
+ Minimum 2+ years of hands-on technical experience designing and implementing security solutions for leading Cloud service providers across SPI models and environments (Public, Private, Hybrid)
+ 2+ years working experience designing cloud security architectures and strategies for enterprises
+ Experience with Virtualization including security for at least one or more of the following: Compute, Network, Storage, End-point, Application
+ 2+ years working with Cloud security industry standards such as Cloud Security Alliance (CSA), ISO/IEC 27017 and NIST CSF
+ 2+ years working experience with Cloud security technologies/vendors (e.g., IAM, SIEM, IDS) and/or providers (e.g., Okta, CipherCloud, AlertLogic), a big plus
+ 2+ years working with Cloud orchestration and automation (Continuous Integration and Continuous Delivery (CI/CD)) in single and multi-tenant environments
+ 3+ years working with CNAPP, CSPM or CWPP technologies or planning for large-scale deployments of these technologies
+ Experience designing IAM technologies and services
+ Experience or strong working knowledge of managing enterprise security infrastructure and perimeter security appliances - e.g., firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM and log management technology
+ Experience with Azure data, analytics, or AI/ML services (Azure SQL, HDInsight, Databricks, Data Factory, Data Lake Storage, Azure Analysis Services, Synapse Analytics, Azure Machine Learning, etc.)
+ Understanding of industry security standards, guidelines and regulatory/compliance requirements related to information security and cloud computing such as ISO 27001, ISO 27018, NIST CSF, NIST 800-53, PCI DSS, SOC2, HIPAA, PCI, SOX, GLBA, etc.
Additional Requirements:
+ Must be willing to travel up to 50%.
+ Limited sponsorship may be available.
Preferred:
+ BA/BS Degree preferred. Ideally in Computer Science, Cyber Security, Information Security, Engineering, Information Technology.
+ Previous Consulting or Big 4 experience preferred.
+ Microsoft Certifications such as: Az-500 Azure Security Engineer, AZ-204 Azure Developer Associate Certification, (SC-900, SC-100, SC-200, SC-300, SC-400
Cyber Certifications such as: CCSP, CCSK, CISSP, CCNP, and CCNA.
The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $144,200-$265,600.
You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.
Information for applicants with a need for accommodation: qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.