Job description


  • Entry level
  • No Education
  • Salary to negotiate
  • Los Angeles


Are you interested in working in a dynamic environment that offers opportunities for professional growth and new responsibilities?  If so, Deloitte & Touche LLP could be the place for you.  Traditional security programs have often been unsuccessful in unifying the need to both secure and support technology innovation required by the business. Join Deloitte's Advisory Cloud Cyber Risk Services team and become a member of the largest group of Cyber Risk individuals worldwide.
Work you’ll do
As a Cloud Security Specialist Master, you will be at the front lines with our clients supporting them with their Cloud Cyber Risk needs:
Conducting cloud security analysis of prospective clients’ Cloud platforms/environments based on Deloitte’s Cloud Cyber Risk Framework. This can include IaaS, PaaS and SaaS Cloud platforms such as Azure, AWS, Workday and 0365
Performing technical health checks for Cloud platforms/environments prior to broader deployments.
Supporting proof of concept and production deployments of Cloud Access Security Broker (CASB) technologies.
Assisting clients with transitions to the Cloud Access Security Broker (CASB) managed services via tenant setup, log processing setup, policy configuration, and agent deployment.
Assisting clients with configuration and delivery of CASB reports.
Providing technical support for CASB services and resolve service-related issues through research and troubleshooting and working with vendors.
Executing on Cloud security engagements during different phases of the lifecycle – assess, design, and implementation.
Implementation of industry leading practices around cyber risks and Cloud security for clients of the CASB managed service.
Designing and developing Cloud-specific security policies, standards and procedures e.g., CASB tenant management, proxy server management, firewall management, SSL/IPSec, security incident and event management (SIEM), data protection (DLP, encryption), user account management (SSO, SAML), and password/key management.
Troubleshooting system level problems in a multi-vendor, multi-protocol network environment.
Documenting all technical issues, analysis, client communication, and resolution.
Executing on Cloud security engagements during different phases of the lifecycle – assess, design, and implementation.
Implementing industry leading practices around cyber risks and Cloud security for clients of the CASB managed service.
Provide internal technical training to Advisory personnel as needed.
Support Managed Services team on client calls as necessary.
Mentor and coach cloud security engineers
Identify and evaluate complex business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement
Understand complex business and information technology management processes
Execute advanced services and supervise staff in delivering basic services
Assist in the selection and tailoring of approaches, methods and tools to support service offering or industry projects
Understand clients' business environment and basic risk management approaches
The team
Deloitte Advisory's Cloud Cyber Risk team helps complex organizations more confidently pursue their growth, innovation and performance agendas through proactive management of the associated cyber risks. Our professionals provide advisory and implementation services that integrate risk, regulatory, and technology skills to help clients transform their legacy programs into proactive Secure.Vigilant.Resilient.TM cyber risk programs. Join the team developing the future state of cyber risk solutions. Learn more about Deloitte Advisory’s Cyber Risk Services practice.

6+ years of information technology and/or information security experience. Ideally technical experience in at least one of the areas listed below:
Systems engineering role supporting public or private clouds
Hands-on technical networking experience such as enterprise-level proxy server and/or firewall implementation or operations. This should include solid knowledge of OSI Model and TCP/IP protocol suite (IP, ICMP, TCP, UDP, SNMP, FTP, TFTP, SFTP, HTTPS).
Hands-on technical experience enterprise-level directory/messaging services (Active Directory, LDAP, Exchange, SharePoint, 0365) implementation or operations.
Hands-on technical experience with enterprise-level systems management systems such as SCCM and