Azure Cloud Security Consultant - Infrastructure

Are you interested in working in a dynamic environment that offers opportunities for professional growth and new responsibilities? If so, Deloitte & Touche LLP could be the place for you. Traditional security programs have often been unsuccessful in unifying the need to both secure and support technology innovation required by the business. Join Deloitte's Advisory Cloud Cyber Risk Services team and become a member of the largest group of Cyber Risk individuals worldwide.

Work you'll do

As a Cloud Security Consultant-Azure, you will be on the front lines with our clients supporting them with their Cloud security needs specifically helping them navigate the journey to the cloud on the Microsoft Azure platform. This will include:

• Conducting cloud security analysis, recommendations and configurations of prospective clients' Microsoft Azure Active Directory (AAD), Office 365 and EMS Cloud platforms and environments based on Deloitte's Cloud Cyber Risk Framework. This can include Microsoft's cloud solutions such as 0365 security and compliance, MCAS, PIM, InTune, SharePoint, One Drive, Teams, Skype, Exchange, AAD, 0365 DLP, Azure Information Protection (AIP) and Exchange Online Protection, Microsoft MFA, SSO, Conditional Access, B2B and B2C

• Performing technical health checks for these Azure Cloud platforms/environments prior to broader deployments.

• Supporting proof of concept and production deployments of these cloud technologies.

• Assisting clients with transitions to using Microsoft Azure cloud services such as tenant setup and service configuration, focused on cloud cyber risk mitigation. Additional technologies include: Microsoft MFA, SSO, Conditional Access, PIM, Azure Security Center, Azure Policy, Azure Sentinel and Azure Monitor.

• Implementation of industry leading practices around Azure, AAD and cloud security services for clients.

• Assisting clients with Azure B2B, B2C including SAML, OAUTH, OpenID Connect protocols

• Assist clients with the deployment of third-party technologies to assist in securing the Azure platform such as firewall, WAF, PAM and cloud workload protection.

• Assisting clients with configuration and delivery of cloud security and compliance reports

• Implementation of industry leading practices around AAD/O365/EMS cyber risks and cloud security for clients.

• Designing and developing cloud-specific security policies, standards and procedures e.g., Azure tenant, management group and subscription management and configuration, identify management and access control, firewall management, auditing and monitoring, security incident and event management, data protection (DLP, encryption), user and administrator account management, SSO, conditional access controls and password/key management.

• Troubleshooting Azure system level problems in a multi-vendor, multi-protocol network environment.

• Documenting Azure platform technical issues, analysis, client communication, and resolution as part of cyber risk mitigation steps.

• Executing on AAD/O365/ EMS cloud security engagements during different phases of the lifecycle - assess, design, and implementation & post implementation reviews.

• Executing on Azure and AAD cloud security engagements during different phases of the lifecycle - assess, design, and implementation & post implementation reviews.

• Implementing industry leading practices around Azure and AAD cyber risks and cloud security for clients.

• Provide internal technical training to Advisory personnel as needed.

• Support Managed Services team on client calls as necessary.

• Acting as a subject matter expert on cloud cyber risk for the Microsoft Azure, AAD, O365 and EMS platforms.

The Team

Deloitte Advisory's Cloud Cyber Risk team helps complex organizations more confidently pursue their growth, innovation and performance agendas through proactive management of the associated cyber risks. Our professionals provide advisory and implementation services that integrate risk, regulatory, and technology skills to help clients transform their legacy programs into proactive Secure.Vigilant.Resilient.TM cyber risk programs. Join the team developing the future state of cyber risk solutions. earn more about Deloitte Advisory's Cyber Risk Services practice.

Required:

Working experience in at least two of the areas listed below.

• 1+ years of hands-on technical experience with Microsoft Azure in implementation and operations.

• 1+ years of hands-on technical experience with infrastructure systems such as networking (e.g. WAF, Firewall and load balancing), operating systems, SCCM and endpoint engineering, and infrastructure automation implementation or operations

• 1+ years of hands-on technical experience enterprise-with Microsoft Identity and Access management in implementation and operations.

• 1+ years of experience with Azure data, analytics, or AI/ML services (Azure SQL, HDInsight, Databricks, Data Factory, Data Lake Storage, Azure Analysis Services, Synapse Analytics, Azure Machine Learning, etc.)

Ideally the following cloud-related technical experience:

• 2+ years of working with different Cloud platforms (Software as a Service (SaaS), Platform as a Service (PaaS) and Infrastructure as a Service (IaaS)) and environments (Public, Private, Hybrid) in a security role.

• 1+ years of hands-on technical experience implementing security solutions for Microsoft technologies

• 1+ years of hands-on technical experience enterprise-level security incident and event management (SIEM) implementation or operations

• 1+ years of infrastructure automation (such as PowerShell, Terraform, Puppet) or DevOps/DevSecOps experience

• 1+ years of containerization experience (Kubernetes, Docker)

• 1+ years of consulting experience

• 1+ years of PowerShell, ARM and JSON programing

Additional Requirements:

• Ability to travel 40-50%, on average, based on the work you do and the clients and industries/sectors you serve.

• BA/BS Degree required. Ideally in Computer Science, Cyber Security, Information Security, Engineering, Information Technology.

Preferred:

• Previous Consulting or Big 4 experience preferred.

• Certifications such as: Microsoft new roles-based certifications, CCSP, CCSK, CISSP, CCNP, CCNA, MCSE, MCSA certification a plus.