Deloitte Cloud Security & Compliance Engineer in Lake Mary, Florida
Are you an experienced, passionate pioneer in technology a solutions builder, a roll-up-your-sleeves technologist who wants a dailycollaborative environment, think-tank feel and share new ideas with yourcolleagues - without the extensive demands of travel? If so, consider an opportunitywith our US Delivery Center we are breaking the mold of a typical DeliveryCenter.
Our US Delivery Centers have been growing since 2014 withsignificant, continued growth on the horizon. Interested? Read more aboutour opportunity below
Work you ll do
The Cloud Security & Compliance Engineer acts as aSME on FedRAMP security and compliance requirements for federal cloudinformation systems throughout the Risk Management Framework lifecycle. Inaddition, the cloud security and compliance engineer advises on the design anddevelopment of secure systems architecture as well as industry best practicesand information systems technologies available to meet security requirements.
Closely working with other cloud solution architects inplanning, developing, and implementing security controls.
Driving IaaS, PaaS, and SaaS cloud authorizationactivities by developing security documentation, including:
System Security Plan, Contingency Plan, and Configuration Management Plan.
Work with other cloud security and cloud engineering teamto implement controls using compliance tool software.
Reviews security documentation on system and infrastructurehardening to contrast in accordance with best practices and industryrequirements.
Drafting and monitoring the Plans of Actions andMilestones (POA&Ms).
Analyzing proposed configuration Change Requests relatedto design and configuration by conducting security impact analysis to initiaterequired actions while maintaining ATO status.
BS/BA degree in Computer Science (or related).
Experienced in a security operations role working withSplunk or the ELK stack.
Experienced managing Splunk App Development, Scriptingand Log Management Solution Design.
Deep technical background in Python, Data Visualization,and Info & Operations Security Logging.
Experienced in Tenable Nessus and Tenable SC in a cloudconfiguration.
Thorough understanding on cloud-based compute,networking, or storage services (AWS, GCP, or Azure).
Proven experience developing and deploying standardizedsecurity principles, protocols, and techniques in
Working knowledge on FedRAMP and NIST 800-53.
Ability to obtain and maintain the required clearance forthis role.
AWS Certified Associate Certification
Google Certified Professional Certification
Azure Certified Associate Certification
(ISC)2 CISSP, CAP, or CCSP Certification
ISACA CISA, CRISC, or CISM Certification
Experience working with Infrastructure as Code
Experience working with the federal government
From our centers, we work with Deloitte consultants todesign, develop and build solutions to help clients reimagine, reshape andrewire the competitive fabric of entire industries. Our centers house amultitude of specialists, ranging from systems designers, architects andintegrators, to creative digital experts, to cyber risk and human capitalprofessionals. All work together on diverse projects from advancedpreconfigured solutions and methodologies, to brand-building and campaignmanagement. We are a unique blend of skills and experiences, yet weunderline the value of each individual, providing customized career paths,fostering innovation and knowledge development with a focus on quality. The US Delivery Center supports a collaborative team culture where we work andlive close to home with limited travel.
How you ll grow
At Deloitte, our professional development plan focuses onhelping people at every level of their career to identify and use theirstrengths to do their best work every day. From entry-level employees to seniorleaders, we believe there s always room to learn. We offer opportunities tohelp sharpen skills in addition to hands-on experience in the global,fast-changing business world. From on-the-job learning experiences toformal development programs, our professionals have a variety of opportunitiesto continue to grow throughout their career.
Category: Information Technology
As used in this document, Deloitte means Deloitte LLP and its subsidiaries. Please see www.deloitte.com/us/about for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.
- Deloitte Jobs