Consultant / Senior Consultant, Cloud Security

Job Type: Permanent 
Reference code: 125148   
Primary Location: Toronto, ON  
All Available Locations: Toronto, ON 
Our Purpose
At Deloitte, we are driven to inspire and help our people, organization, communities, and country to thrive. Our Purpose is to build a better future by accelerating and expanding access to knowledge. Purpose defines who we are and gives us reason to exist as an organization.
By living our Purpose, we will make an impact that matters.
-Have many careers in one Firm.
-Be empowered to lead and have impact with clients, our communities and in the office.
-Be expected to share your ideas and to make them a reality.
-Be part of a firm that leads the way and pushes themselves to look like contemporary Canada.
--
What will your typical day look like?
As a Cyber Risk Consultant / Senior Consultant focusing on infrastructure and application security, you will have the opportunity to work on a variety of projects addressing new technology trends and related business challenges faced by our clients both locally and globally. Tasks include:
•    Assessing and implementing security solutions for clients
•    Reviewing security-related events, assessing risk and validity, as well as reporting on security postures and recommending corrective actions when required
•    Working with security vendors to understand their solution offerings and advise clients on appropriate technologies and architectures, based on their needs
•    Conducting research on the latest security technologies and standards, as well as the threat and vulnerability landscape, in order to advise clients and recommend appropriate actions
•    Facilitating use of technology-based tools or methodologies to review, design and/or implement products and services.
About the team
Infrastructure, Networking and Application Security is a critical part of Deloitte’s Cyber Risk Services practice, which helps our clients to be Secure, Vigilant and Resilient in the face of an ever-increasing array of cyber threats and vulnerabilities. Our Cyber Risk Services help organizations with the management of information and technology risks by delivering end-to-end solutions, using proven methodologies and tools in a consistent manner. Our services help organizations address timely and pervasive issues such as identity theft, data security breaches, data leakage, cyber security, and system outages across organizations of various sizes and industries, with the goal of enabling ongoing, secure, and reliable operations across the enterprise.
Enough about us, let’s talk about you
You are someone with:
•    Degree or Diploma in Computer Science, Engineering, Management Information Systems or Information Security or relevant experience in these domains
•    Good understanding of basic networking concepts/principles (routing, switching, IP addressing etc.) and common services/protocols is important
•    Knowledge of foundational systems security principles is important
•    Knowledge of application security concepts and overall application design is important
•    1-5 years experience in application development and knowledge of main programming languages, hacking or network security, and performing eForensics, investigations or incident management are assets
•    AWS and Azure Security Expertise: In-depth understanding of the security features and best practices within Amazon Web Services (AWS) and Microsoft Azure.
•    Microservices and Kubernetes Security: Proficiency in securing microservices architecture and Kubernetes clusters, ensuring robust protection of containerized applications.
•    DevSecOps Platforms and Security Scanning Tools: Experience with tools and platforms that integrate security into the development process, along with expertise in security scanning tools to identify vulnerabilities.
•    Git and Scripting Languages (Bash, PowerShell, Python): Strong familiarity with version control using Git and scripting languages to automate security processes and tasks.
•    Infrastructure as Code (IaC) with Terraform: Ability to define and manage infrastructure as code using Terraform, streamlining the deployment and configuration of cloud resources securely.
•    Policy Languages (Sentinel, OPA): Proficient in policy languages like Sentinel and Open Policy Agent (OPA) to enforce and automate security policies.
•    Data Serialization (JSON, YAML): A solid grasp of data serialization formats such as JSON and YAML, essential for effective communication and configuration in cloud environments.
•    Programming Skills: Advantageous to have programming skills and a conceptual understanding of software development practices to collaborate effectively with developers.
 
Our promise to our people: Deloitte is where potential comes to life.
Be yourself, and more.
We are a group of talented people who want to learn, gain experience, and develop skills. Wherever you are in your career, we want you to advance.
You shape how we make impact.
Diverse perspectives and life experiences make us better. Whoever you are and wherever you’re from, we want you to feel like you belong here. We provide flexible working options to support you and how you can contribute. Be the leader you want to be.
Be the leader you want to be
Some guide teams, some change culture, some build essential expertise. We offer opportunities and experiences that support your continuing growth as a leader.
Have as many careers as you want.
We are uniquely able to offer you new challenges and roles – and prepare you for them. We bring together people with unique experiences and talents, and we are the place to develop a lasting network of friends, peers, and mentors. Our TVP is about relationships – between leaders and their people, the firm and its people, peers, and within in our communities.
The next step is yours
At Deloitte, we are all about doing business inclusively – that starts with having diverse colleagues of all abilities. Deloitte encourages applications from all qualified candidates who represent the full diversity of communities across Canada. This includes, but is not limited to, people with disabilities, candidates from Indigenous communities, and candidates from the Black community in support of living our values, creating a culture of Diversity Equity and Inclusion and our commitment to our AccessAbility Action Plan
, Reconciliation Action Plan and the BlackNorth Initiative
We encourage you to connect with us at accessiblecareersdeloitte.ca if you require an accommodation for the recruitment process (including alternate formats of materials, accessible meeting rooms or other accommodations) or indigenouscareersdeloitte.ca  for any questions relating to careers for Indigenous peoples at Deloitte (First Nations, Inuit, Métis).
By applying to this job you will be assessed against the Deloitte Global Talent Standards. We’ve designed these standards to provide our clients with a consistent and exceptional Deloitte experience globally.
Deloitte Canada has 30 offices with representation across most of the country. We acknowledge our offices reside on traditional, treaty and unceded territories as part of Turtle Island and is still home to many First Nations, Métis, and Inuit peoples. We are all Treaty people.