RA-Cyber-Cloud Security
Deloitte
- Mumbai, Maharashtra
- Permanent
- Full-time
- Work independently to lead and complete high quality threat-based risk assessments, business impact analysis across a diverse set of cloud technologies, business functions, and platforms.
- Conduct cloud infrastructure security risk assessments based on cloud security best practices.
- Assess cloud security architecture
- Cloud security controls evaluation to ensure compliance with business scope, security policies and standards
- Preparing cloud infrastructure risk assessment reports.
- Work closely with internal management/team and client business representatives to scope assessments, gather documentation, interview clients, identify risks, document findings, and ensure transparent assessment of risks by following a structured risk assessment methodology.
- Driving the efforts to identify, assess, and communicate the cloud information security risks to relevant-internal and external stakeholders.
- Strong understanding of cloud technologies and platforms: Azure/AWS/GCP
- Understanding of Zero trust principle, security technologies and controls:
- Should have conducted cloud security assessments and configuration reviews as per industry best practices
- Familiarity with industry-leading standards and frameworks such as ISO 27001, NIST, CSA CCM, CIS benchmarks to help clients adhere to compliance requirements
- Knowledge and experience of Risk Management Lifecycle (Risk Identification, Risk Assessment, Risk Response, & Reporting)
- Experience with cloud security tools and services
- Knowledge and experience in developing/creating cloud security policies and frameworks for organizations
- Effective written and communication skills
- Strong sense of ownership, urgency, and drive
- Should have the ability to work independently
- Demonstrate teamwork and collaborate with other teams to ensure client's cloud environment is secure
- Bachelor's degree preferred in Computer Science, Information Security, Information Technology, Engineering
- Cloud security certifications - CCSK/CCSP, AWS/Azure/GCP
- Minimum of 2-4 years of working experience in Cyber Security Consulting with proficiency in cloud risk assessment
- Should have played a role in client engagements