Cloud Security Architect

Description & Requirements

Who we are looking for

Security Architect (Cloud), you will become an essential and vital part of our Cyber Risk team, providing expert advice in both local and international cloud security projects where a diverse skillset, relevant knowledge on both IT and business aspects set us apart from the competition. As part of our Cyber Practice, you will be part of a team of seasoned cyber security professionals where inclusive leadership, continuous learning and coaching culture is considered an essential part of who we are.

As part of your role, together with Senior Leadership, you will be in charge of developing and refining Deloitte's Cloud Security offering and go to market; as well as build the Cloud Security practice within Ukraine and central Europe.

Let's talk about you:

• Between 7 - 15 years of Cyber security experience, ideally most of it within consulting within the following areas:
  
  

Cloud and Container Security:

• Minimum of 5 years experience with AWS, Azure, GCP or OCI and demonstrable affinity with Cloud technology
• Knowledge of information security principles and guidelines (including CIS, MITRE ATT&CK frameworks)
• Strong working knowledge of IT risks, cybersecurity, computer operating systems, and cloud computing environments
• Experience with containerization: Kubernetes, Docker. Practical experience with serverless and secure development environments, infrastructure-as-code is a plus
  
  

Governance and Risk Assessment :

• Good knowledge of security frameworks such as ISO, NIST CSF, CSA and CIS controls
• Experience with the implementation of cloud risk frameworks and optimization of controls in CI/CD pipelines
  
  

Architecture and Design:

• Well-versed in Secure Cloud Architecture Design and Implementation; Able to design solutions for improving Cloud Security by enforcement of cloud security guardrails and standards
• Experience with architecture and security reviews, threat modeling applications, and identifying areas of risk
• Experience with encryption in-flight and at-rest practices, as well as certificate and secrets is a nice to have
• High level knowledge of network architectures, topologies, and concepts (Firewalls, LB, WAF, CDN, VPC, ACL, TLS, SSH, and DNS)
• Experience implementing strategies to support secure and compliant architectures
  
  

Soft skills:

• Adaptable, flexible and able to see the bigger picture
• Comfortable or eager to be involved in business development initiatives, should be at ease being on the market and engaging with potential new clients or increasing our offering with existing clients
• A thought-leader with a strong drive and motivation to build a team
• Ability to work within international environment
  
  

Certifications such as CISSP, CISA, or CISM are highly desired

Your future role

• Supporting clients during their cloud transformation initiatives, making sure that all technical security risks are correctly identified, mitigated and reported. In addition, integrating the new cloud infrastructure in the overarching security architecture and strategy
• Plan, research, and design security controls for IT systems and data to align with business objectives
• Developing technical security standards to serve as input for the creation of the cloud landing zones
• Defining, establishing and maintaining multi-cloud security architectures, strategies and methodologies
• Leading the implementation of technological cloud security capabilities by defining the technological security vision, defining the solutions and steering the implementation teams in realizing these architectures
• Review system security measures and implement necessary enhancements
• Defining and reviewing cloud security architectures and strategic roadmaps on an ongoing basis to ensure alignment with both business and IT strategies, taking into account technology evolutions
• Giving input to the ongoing improvement and streamlining of security architecture development and delivery
• Delivering an integrated security architecture model linking cloud, applications, information and infrastructure architectures