Cloud Security Governance Specialist

Deloitte Technology Posted: 03-Aug-2022

Same job available in 40 locations

Atlanta, Georgia, United States

Austin, Texas, United States

Birmingham, United Kingdom, United Kingdom

Buffalo, New York, United States

Camp Hill, Pennsylvania, United States

Cedar Rapids, Iowa, United States

Charlotte, North Carolina, United States

Cincinnati, Ohio, United States

Cleveland, Ohio, United States

Columbus, Ohio, United States

Davenport, Iowa, United States

Dayton, Ohio, United States

Des Moines, Iowa, United States

Detroit, Michigan, United States

Grand Rapids, Michigan, United States

Hermitage, Tennessee, United States

Honolulu, Hawaii, United States

Huntsville, Alabama, United States

Indianapolis, Indiana, United States

Jacksonville, Florida, United States

Kansas City, Missouri, United States

Las Vegas, Nevada, United States

Memphis, Tennessee, United States

Miami, Florida, United States

Milwaukee, Wisconsin, United States

Nashville, Tennessee, United States

New Orleans, Louisiana, United States

Omaha, Nebraska, United States

Orlando, Florida, United States

Phoenix, Arizona, United States

Pittsburgh, Pennsylvania, United States

Portland, Oregon, United States

Raleigh, North Carolina, United States

Richmond, Virginia, United States

Rochester, New York, United States

Salt Lake City, Utah, United States

St. Louis, Missouri, United States

Tallahassee, Florida, United States

Tampa, Florida, United States

Tulsa, Oklahoma, United States

Position summary:

Do you thrive on developing creative and innovative insights to solve complex challenges? Want to work on next-generation, cutting-edge products and services that deliver outstanding value and that are global in vision and scope? Work with other experts in your field? Work for a world-class organization that provides an exceptional career experience with an inclusive and collaborative culture?

Want to make an impact that matters? Consider Deloitte Global.

Work you'll do

As a cloud security governance specialist, you will:

  • Perform Security reviews and report on findings, Consult on remediation plans, track status, aggregate results, and report to Management / Leadership 
  • Assist initiatives for setting up cloud architecture & technology strategies, standards, governance and best practices around AWS, Azure and GCP
  • Work with Cloud Service Providers (CSPs) and engage with Solutions teams to Assess existing Cloud solutions, identifying security issues and recommending fixes 
  • Educate technology practitioners via documentation and training as needed to Deloitte technology teams 
  • Partner with Compliance Monitoring team for continuous compliance monitoring processes, create team run books 
  • Collaborate with cross‐functional stakeholders to understand technology strategies 
  • Provide guidance on cloud security and compliance requirements according to regulatory requirements, firm policy, data classification, client commitments, etc. 
  • Utilize verbal and written communication skills to document and maintain accurate Cloud solutions requirements and provide training as required 
  • Review and provide guidance on effective risk management program and controls framework for Cloud environments 
  • Educate DevOps, Security and Compliance teams on Cloud compliance requirements 
  • Monitor Cloud infrastructure security solutions and drive remediation/ mitigation of identified risks 
  • Perform deep‐dive controls testing for high-risk areas for independent validation of issues and remediation efforts 

What you'll be part of - our Deloitte Global Culture:

At Deloitte, we expect results. Incredible—tangible—results. And Deloitte Global professionals play a unique role in delivering those results. We reach across disciplines and borders to serve our global organization. We are the engine of Deloitte. We develop and implement global strategies and provide programs and services that unite our network.

In Deloitte Global, everyone has opportunities. We see the importance of your perspective and your ability to create value. We want you to fit in—with an inclusive culture, focus on work-life fit and well-being, and a supportive, connected environment; but we also want you to stand out—with opportunities to have a strategic impact, innovate, and take the risks necessary to make your mark.

Who you'll work with:

Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in "what is" but rather "what can be" to help Deloitte deliver and connect with its clients, its communities, and one another in ways not previously conceived.


 In this role, you bring:

  • Minimum 2 years’ security governance experience
  • Practical knowledge and/or implementation experience in security frameworks
  • Knowledge of: Security frameworks such as NIST 800-53, CIS, HITRUST, MITRE and OWASP
  • Experience with Cloud security strategy, Cloud Service Provider ecosystems (Amazon AWS, Microsoft Azure, GCP) & Security controls 
  • Knowledge of Cloud networking architecture, Cloud operations, Security, Automation and Orchestration 
  • Possess clear understanding of security protocols and standards and have experience with software and security architectures
  • Experience with Chef and/or Puppet desired 
  • Must have strong expertise in the fundamentals of AWS/Azure/GCP Services
  • Ability to work in a fast‐paced, rapidly changing environment 
  • Bachelor's degree or equivalent in Computer Science, Information Systems Management, Information 
  • Technology or other related discipline with 3+ or more additional years related professional experience 

One or more of the following certifications: 

  • CISA, CISM, CCSP, CISSP, Azure Certified Cloud Engineer, AWS Associate Solutions Architect, AWS Certified Security and/or GCP Associate Cloud Engineer 
  • Ability to prioritize tasks and manage time across multiple projects to achieve on‐time deadlines 
  • Understand how to design and implement security tests in accordance with stated criteria 
  • Experience with ServiceNow GRC or other GRC tools desired 
  • Experience with Incident Management ticketing systems such as ServiceNow 

How you'll grow:

Deloitte Global inspires leaders at every level. We believe in investing in you, helping you embrace leadership opportunities at every step of your career, and helping you identify and hone your unique strengths. We encourage you to grow by providing formal and informal development programs, coaching and mentoring, and on-the-job challenges. We want you to ask questions, take chances, and explore the possible.

Benefits you'll receive:

Deloitte’s Total Rewards program reflects our continued commitment to lead from the front in everything we do—that’s why we take pride in offering a comprehensive variety of programs and resources to support your health and well-being needs. We provide the benefits, competitive compensation, and recognition to help sustain your efforts in making an impact that matters.

Corporate citizenship:

Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people, and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities.