USI - FY26 - Cyber Enterprise Security - Microsoft Azure Infra PaaS - Lead Solution Advisor

Summary
Position Summary
Cyber
Deloitte Cyber understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful insights to help our clients navigate the ever-changing threat landscape. Through powerful insights and managed services that simplify complexity, we enable businesses to operate with resilience, grow with confidence, and proactively manage to secure achievements.

Enterprise Security
Enterprise Security teams embed security in all aspects of digital transformation by securing a client's "technical backbone" while also enabling secure digital transformation. Services include security architecture, secure development and deployment, end-to-end cyber cloud capabilities, application security, and security for emerging technologies and connected products. Examples of work include Secure by Design, Cloud Security Orchestration & Automation, Core Infrastructure Security, and Secure Software Enablement.

Work you'll do:
As a Cloud Security Senior Consultant, you will be at the front lines with our clients supporting them with their Cloud security needs specifically helping them navigate the journey to the cloud on the Microsoft Azure platform. This will include:

• Functioning as Senior onshore Engineer/Consultant for Azure Security projects across 8 key Azure cyber domains: Governance, Identity, Application Security, PaaS security, Infrastructure security, Security Monitoring, Resilience and Data protection, compute/networking/storage), Azure data protection, Azure security monitoring and Azure PaaS service configurations.
• Function as an expert in CNAPP, CWPP and CSPM technologies and security risk frameworks relevant to cloud as well as the Microsoft Cloud Security Benchmark
• across SPI models and environments (Public, Private, Hybrid)
• 5+ years working experience designing cloud security architectures and strategies for enterprises
• Experience with Virtualization including security for at least one or more of the following: Compute, Network, Storage, End-point, Application
• 4+ years working with Cloud security industry standards such as Cloud Security Alliance (CSA), ISO/IEC 27017 and NIST CSF
• 4+ years working experience with Cloud security technologies/vendors (e.g., IAM, SIEM, IDS) and/or providers (e.g., Okta, CipherCloud, AlertLogic), a big plus
• 4+ years working with Cloud orchestration and automation (Continuous Integration and Continuous Delivery (CI/CD)) in single and multi-tenant environments
• 4s+ years working with CNAPP, CSPM or CWPP technologies or planning for large-scale deployments of these technologies
• Perform technical health checks for these Azure cloud platforms/environments prior to broader deployments including DevSecOps and CI/CD pipelines
• Supporting proof of concept and production deployments of Azure cloud technologies and Microsoft security capabilities.
• Assisting clients with transitions to using Microsoft Azure cloud services such as tenant setup and service configuration, focused on cloud cyber risk mitigation. Additional technologies include: Azure Networking technologies, Microsoft MFA, SSO, Conditional Access, PIM, Microsoft Defender for cloud, Azure Policy, Azure Key Vault, Azure Sentinel and Azure Monitor.
• Assisting clients with configuration and delivery of cloud security and compliance reports.
• Providing technical support for Azure, Entra ID and third-party security services and resolving service-related issues through research and troubleshooting and working with Microsoft and third-party vendors.
• Implementation of industry leading practices around Azure, Entra ID and cloud security services for clients.
• Designing security architectures for protecting Azure services across the Microsoft service stack and cybersecurity domains such as identity and access management, network and infrastructure security, data protection, DevSecOps and application security, logging and monitoring, and resilience.
• Designing and developing cloud-specific security policies, standards, and procedures e.g., Azure tenant, management group and subscription management and configuration, identity management and access control, firewall management, auditing and monitoring, security incident and event management, data protection (DLP, encryption), user and administrator account management, SSO, conditional access controls and password/key management.
• Troubleshooting Azure system level problems in a multi-vendor, multi-protocol network environment.
• Documenting Azure platform technical issues, analysis, client communication, and resolution as part of cyber risk mitigation steps.
• Executing on Azure and Entra ID cloud security engagements during different phases of the lifecycle – assess, design, and implementation & post implementation reviews.
• Implementing industry leading practices around Azure and Entra ID cyber risks and cloud security for clients.
• Providing internal Azure security technical training to Cyber personnel as needed.
• Leading client technical discussions and providing Azure security advise to clients.
• Execute on Azure security engagements during different phases of the lifecycle – Discover, Assess, Design, Deploy/Test, Hypercare/Handover.
• Implement industry leading practices around Azure cyber risks and cloud security for clients.
• Provide internal technical training to Cyber personnel as needed.
• Acting as a subject matter expert on Azure cloud cyber risk
• Contribute to Point-of-Views (PoVs) on providing leading practices to our clients on the Azure security challenges they face.

Qualifications
Required:

• 5+ years of experience in technical consulting, client problem solving, architecting and designing solutions in a consulting role with project leadership and/or architect experience in Azure; with a security focus strongly preferred.
• 4+ years experience with the following technologies: Azure Policy, Terraform or other JSON constructs
• Experience designing IAM technologies and service.
• Experience or strong working knowledge of managing enterprise security infrastructure and perimeter security appliances — e.g., firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM and log management technology.

Preferred:

• Microsoft Certifications such as: (SC-900, SC-100, SC-200, SC-300, SC-400),
• Cyber Certifications such as: CCSP, CCSK, CISSP, CCNP, and CCNA.

Education:

• BA/BS Degree preferred. Ideally in Computer Science, Cyber Security, Information Security, Engineering, Information Technology.

#CyberFY26
Our purpose
Deloitte's purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities.

Our people and culture
Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work.

Professional development
At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India .

Benefits To Help You Thrive
At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you.

Recruiting tips
From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters.

Requisition code: 306470