Manager, Cloud Security Engineer

What will your typical day look like?

This role calls for a seasoned Cloud Security professional who not only possesses hands-on experience working with AWS, Azure, and GCP; but also demonstrates strong leadership capabilities. As a Senior Cloud Security Engineer, this role will require practical skills in deploying cloud security and developing governance strategies, with a focus on overseeing the security configurations of cloud services in AWS, Azure, and GCP. This role will involve leading and guiding the Security posture assessments of Cloud Services with the ultimate aim of providing comprehensive cloud security recommendations to application team stakeholders.

Responsibilities:

Lead research, assessment, and analysis of security configurations of AWS, Azure, and GCP cloud services, including but not limited to Infrastructure-as-a-Service (IaaS), Platform-as-a-Service (PaaS), Software-as-a-Service (SaaS) and marketplace offerings.
Deploy cloud services in sandbox environments and conduct security assessments to identify vulnerabilities. Assist team members with using tools and techniques to assess the security posture of the cloud service, identify any weaknesses or gaps, and recommend appropriate remediation actions to strengthen the security of the cloud infrastructure.
Review Deloitte's internal information security standards and recommend security compliance guidance for cloud service security capabilities. Make recomendations to security standards as needed and collaborate with the development team to recommend development of new guardrails where necessary.
Foster strong relationships with CSPs, marketplace vendors, and cross-functional teams. Additionally, work with architecture, application development, and security teams to ensure that the provided guidance is comprehensive and practical.
Stay up-to-date with the latest trends and developments in cloud security and provide recommendations for enhancing security configurations based on emerging threats and vulnerabilities.
Lead process improvement initiatives to develop a robust and efficient cloud services security assessment process.
Mentor the cloud security team to foster a culture of continuous learning and improvement.

In this role, you bring:

A Bachelor's or Master's degree in Computer Science, Information Systems Security, or in a related field
7+ years of proven experience as Cloud Security Engineer or in a similar role, with at least 3 years in a leadership or management position
Proven, in-depth hands-on experience in all of AWS, Azure, and GCP platforms.
Extensive understanding and practical application of security frameworks, standards, and best practices (e.g., CIS Benchmarks, NIST 800-53, ISO 27001)
Excellent research and strategic thinking skills, with a strong attention to detail
Strong communication and interpersonal skills, with the ability to effectively communicate complex security concepts and recommendations to a variety of stakeholders, from technical experts to C-Suite leadership.
Proven ability to manage multiple tasks, lead and motivate a team, and thrive in a fast-paced & dynamic environment
Lifelong learning mindset, with a proven track record of staying on top of the latest trends and developments in cloud security and a passion for knowledge sharing and mentorship.

Certifications:

ISC2 CISSP (mandatory); CCSP (desired)
Solutions Architect in AWS, Azure or GCP
Security specialty in AWS, Azure or GCP

Desired:

Agile Framework experience