Cloud Security Architect - Senior Consultant
Strategy, Growth, and Transformation | Enterprise Technology Strategy and Transformation
Same job available in 17 locations
Atlanta, Georgia, United States
Boston, Massachusetts, United States
Charlotte, North Carolina, United States
Cleveland, Ohio, United States
Dallas, Texas, United States
Denver, Colorado, United States
Detroit, Michigan, United States
Houston, Texas, United States
Los Angeles, California, United States
Memphis, Tennessee, United States
Miami, Florida, United States
Pittsburgh, Pennsylvania, United States
Salt Lake City, Utah, United States
San Diego, California, United States
San Francisco, California, United States
Seattle, Washington, United States
St. Louis, Missouri, United States
Position Summary
Cloud Security Architect - Senior Consultant
Position Summary
Are you interested in working in a dynamic environment that offers opportunities for professional growth and new responsibilities? If so, Deloitte & Touche LLP could be the place for you. Traditional security programs have often been unsuccessful in unifying the need to both secure and support technology innovation required by the business. Join Deloitte's Cloud Cyber Services team and become a member of the largest group of cybersecurity professionals worldwide.
Recruiting for this role ends on 5/21/2026
Work you’ll do
Deloitte has an opening for a Cloud Security Architect (Senior Consultant) The cloud security architect plays an integral role in defining and assessing the client organization's cloud security strategy, architecture and practices. This individual's primary function is to provide cloud security planning, deployment and review expertise to project teams and client organizations in the Cyber space. Responsibilities include:
- Lead/provide technical guidance and solutioning for the delivery of Cloud Cyber Risk projects in a project manager and or architect role, overseeing the activities of onsite and offshore engineers and architects across 8 key cyber domains: Governance, Identity, Application Security, PaaS security, Infrastructure security, Security Monitoring, Resilience and Data protection
- Assist in business development activities such as defining scope of services, building resource estimates and related pricing, packaging proposals and supporting the delivery of the proposal to the client for AWS, GCP, Azure and/or Oracle Cloud services
- Function as key client point of contact interface building rapport and trust with the client
- Function as a technical specialist in CNAPP, CWPP and CSPM technologies and security risk frameworks relevant to cloud as well as the industry leading benchmarks
- Lead the generation of all project deliverables such as assessment reports, system designs/ architectures and risk/security recommendations
- Maintain strong domain knowledge of multi-hyperscaler cloud solutions and security concepts and technologies
- Assist clients with security frameworks, cloud configuration standards and resolving cloud vulnerabilities
- Lead the execution of cloud security engagements during different phases of the lifecycle – assess, design, and implementation.
- Lead engagements to perform technical health checks for cloud platforms/environments prior to broader deployments.
- Oversee technical support for AWS, GCP, Azure and/or Oracle cyber services and resolve service-related issues through research and troubleshooting and working with vendors.
- Conduct cloud security analysis, recommendations and configurations of prospective clients’ platforms and environments based on Deloitte’s Cloud Cyber Risk Framework.
- Perform technical health checks for these cloud platforms/environments prior to broader deployments including DevSecOps and CI/CD pipelines
- Experience with and leading use of leading cyber tooling for cloud such as Wiz and Snyk
- Support proof of concept and production deployments of these cloud technologies for AWS, GCP, Azure, Oracle, Wiz and/or Snyk
- Assist clients with transitions to using cloud services such as tenant setup and service configuration, focused on cloud cyber risk mitigation. Additional technologies include: MFA, SSO, Conditional Access, PIM, Security Operations tooling and scanning solutions.
- Assist clients with the deployment of third-party technologies to assist in securing the cloud platform such as firewall, WAF, PAM and cloud workload protection.
- Assist clients with configuration and delivery of cloud security and compliance reports.
- Provide technical support for AWS, Azure, GCP, Oracle, Wiz, Snyk and third-party security services and resolve service-related issues through research and troubleshooting and working with third-party vendors.
- Implementation of industry leading practices around Azure, AWS, GCP, Wiz, Snyk and cloud security services for clients.
- Designing and developing cloud-specific security policies, standards and procedures e.g., tenant, management group and subscription management and configuration, identify management and access control, firewall management, auditing and monitoring, security incident and event management, data protection (DLP, encryption), user and administrator account management, SSO, conditional access controls and password/key management.
- Troubleshooting system level problems in a multi-vendor, multi-protocol network environment.
- Documenting platform technical issues, analysis, client communication, and resolution as part of cyber risk mitigation steps.
- Executing on cloud security engagements during different phases of the lifecycle – assess, design, and implementation & post implementation reviews.
- Implementing industry leading practices around cyber risks and cloud security for clients.
- Provide internal cloud and devsecops security technical training to Advisory personnel as needed.
- Acting as a subject matter specialist on cloud cyber risk for the cloud platforms.
- Contribute to Point-of-Views (PoVs) on providing leading practices to our clients on the cyber challenges they face.
- Contribute to eminence activities, such as whitepapers pertaining to cloud security capabilities.
The Team
Deloitte’s Cloud Cyber Risk team helps complex organizations more confidently pursue their growth, innovation and performance agendas through proactive management of the associated cyber risks. Our professionals provide advisory and implementation services that integrate risk, regulatory, and technology skills to help clients transform their legacy programs into proactive Secure.Vigilant.Resilient.TM cyber risk programs. Join the team developing the future state of cyber risk solutions.
Required:
- BA/BS Degree ideally in Technical Field (ex. Computer Science, Cyber Security, Information Security, Engineering, Information Technology).
- 4+ years of experience in technical consulting, client problem solving, architecting and designing solutions in a consulting role with project leadership and/or architect experience in AWS, GCP, Azure, Oracle, Wiz and/or Snyk; with a security focus strongly preferred
- 2+ years of hands-on technical experience designing and implementing security solutions for leading Cloud service providers across SPI models and environments (Public, Private, Hybrid)
- 2+ years working experience designing cloud security architectures and strategies for enterprises
- 2+ years working with Cloud security industry standards such as Cloud Security Alliance (CSA), ISO/IEC 27017 and NIST CSF
- 2+ years working experience with Cloud security technologies/vendors (e.g., IAM, SIEM, IDS) and/or providers (e.g., Okta, CipherCloud, AlertLogic), a big plus
- 1+ years working with Cloud orchestration and automation (Continuous Integration and Continuous Delivery (CI/CD)) in single and multi-tenant environments
- 2+ years working with CNAPP, CSPM or CWPP technologies or planning for large-scale deployments of these technologies
- Limited sponsorship opportunities may be available
Additional Requirements:
- Ability to travel up to 80%, on average, based on the work you do and the clients and industries/sectors you serve
- Locations include: Houston, Dallas, Cleveland, Detroit, St. Louis, Pittsburgh, Boston, Charlotte, Atlanta, Miami, Memphis, Denver, Phoenix, Salt Lake City, Los Angeles, San Diego, San Franciso, Seattle. Must be within a reasonable commute and willing to work part-time in the Deloitte and/or client offices.
Preferred:
- Previous Consulting or Big 4 experience preferred.
- Industry or Vendor Security Certifications such as CISSP or other cloud architect domains
- Experience with Virtualization including security for at least one or more of the following: Compute, Network, Storage, End-point, Application
- Experience designing IAM technologies and services
- Experience or strong working knowledge of managing enterprise security infrastructure and perimeter security appliances — e.g., firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM and log management technology
- Experience with Azure data, analytics, or AI/ML services (Azure SQL, HDInsight, Databricks, Data Factory, Data Lake Storage, Azure Analysis Services, Synapse Analytics, Azure Machine Learning, etc.)
- Understanding of industry security standards, guidelines and regulatory/compliance requirements related to information security and cloud computing such as ISO 27001, ISO 27018, NIST CSF, NIST 800-53, PCI DSS, SOC2, HIPAA, PCI, SOX, GLBA, etc.
‘Information for applicants with a need for accommodation: https://www2.deloitte.com/us/en/pages/careers/articles/join-deloitte-assistance-for-disabled-applicants.html
The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $118,700 to $218,600
You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.
#CyberES26
Deloitte is committed to providing reasonable accommodations for people with disabilities. If you require a reasonable accommodation to participate in the recruiting process, please direct your inquiries to the Global Call Center (GCC) at USTalentCICInbox@deloitte.com.
**Recruiting tips**
From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters.
**Benefits**
At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you.
**Our people and culture**
Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ways of thinking, ideas, and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work.
Our purpose
Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Learn more.
**Professional development**
From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to build new skills, take on leadership opportunities and connect and grow through mentorship. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career.
As used in this posting, "Deloitte" means Deloitte & Touche LLP, a subsidiary of Deloitte LLP. Please see [www.deloitte.com/us/about](http://www.deloitte.com/us/about) for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. Certain services may not be available to attest clients under the rules and regulations of public accounting.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.
Qualified applicants with criminal histories, including arrest or conviction records, will be considered for employment in accordance with the requirements of applicable state and local laws, including the Los Angeles County Fair Chance Ordinance for Employers, City of Los Angeles’s Fair Chance Initiative for Hiring Ordinance, San Francisco Fair Chance Ordinance, and the California Fair Chance Act. See notices of various fair chance hiring and ban-the-box laws where available. **Fair Chance Hiring and Ban-the-Box Notices | Deloitte US Careers**
Requisition code: 316855
Job ID 316855