Cloud Security Architect - CISO

Full Time
Job Sector:
IT / Technology
South Wales
Salary description:
Start Date:
Job Ref:

Your opportunity

To work in the innovative and creative CISO team. A world class operation with extensive knowledge and experience. Interfacing with business and technical teams and bringing about change and influence across the whole world of Deloitte . Apply your skills here to make things happen, great people, great purpose and passionate about our work.
We encourage consideration of flexible ways of working, both formal and informal arrangements that allow for the best outcomes for our people and our clients. If this opportunity is of interest to you with some flexibility, please do discuss with us.

Are you looking to return to the workplace after an extended career break?
For this role we can offer coaching and support designed for returners to refresh your knowledge and skills, and help your transition back into the workplace after a career break of 2 years or more. If this is relevant for you, just let your recruiter know when you make your application.

Your role
* Responsible for defining Cloud Security Requirements. Reviewing Cloud Security Standard and propose changes to align with the risk appetite and facilitating the review and sign-off process for Cloud Security Standard working in collaboration with key stakeholders in 1LOD and 2LOD
* Define and maintain the Cloud Security Architecture and Design to improve security posture and strengthen security defenses as well as Influencing Information Security policy, standards and guidelines
* Define Cloud Security Solutions Design for AWS and Azure. Develop the blueprint of technical security controls and corresponding roadmaps, assessing and influencing key cloud suppliers
* Facing off to the Cloud Transformation Programme on behalf of CISO office providing advice and guidance on security and risk
* Work with major strategic Cloud projects to design and recommend security controls to address emerging threats and evolving technology
* Contributing to the end to end Information Security Architecture reviews as part of an IT lifecycle and security reviews throughout a change advisory board
* Leading on cybersecurity research on the latest new cloud technologies and ensuring project delivery by working with PMO and defining relevant milestones for CISO consumption
* Collaborating with other Information Security professionals to drive widespread adoption of security best practices and ensuring industry standard framework implementation
* Ensure project delivery by working with PMO and defining relevant milestones for CISO consumption

You will work with diverse teams within an inclusive team culture where people are recognised for their contribution

Your work, your choice

At Deloitte we believe the best impact is the value we add, not the hours we sit at our desk. We carefully consider agile ways of working, both formal and informal, that allow for the best impact for our people and our clients. Please speak to your recruiter about the working pattern that works best for you.

Cardiff / London

Work pattern:
This is a permanent contract opportunity.
The role is full time

Your professional experience
* Computer Science degree and/or MSC in Information Security desirable but not essential. Working knowledge of different project delivery methodologies including Waterfall, Agile and Hybrid.
* Possess accreditation in CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), CRISC (Certified in Risk and Information Systems Control) or related certification.
* Proven experience in cloud security architecture role, demonstrating solutions delivery, principles and emerging technologies - Designing and implementing cloud security solutions. This includes continuous monitoring and making improvements to those solutions, working with an information security team.
* Extensive knowledge of cloud security architecture, demonstrating solutions delivery, practices and emerging technologies
* Have demonstrable experience in consulting and engineering of the development and design of cybersecurity best practices and the implementation of solid cybersecurity practices across the organization, to meet business goals along with customer and regulatory requirements.
* Possess extensive knowledge of frameworks or specifications of information security or risk management that include all legal, physical and technical controls involved in an organization's risk management
* Be very knowledgeable in cloud security standards ISO/IEC 27017:2015 and ISO/IEC 27018:2014
* Have extensive experience with security considerations of cloud computing: This should include data breaches, broken authentication, hacking, account hijacking, malicious insiders, third parties, APTs, data loss and DDoS attacks.
* Have a good knowledge and understanding of identity and access management (IAM) - the framework of security policies and technologies that limit and track the access of those in an organization to sensitive technology resources.
* Have a solid understanding of various cyber technologies - mobile threat defense, endpoint protection, data loss prevention, insider threat protection, device hardening, classification, key & certificate management and many more
* Have the ability to be the enterprise cybersecurity subject matter expert that can articulate technical topics to those with or without a technical background
* Possess exceptional communication skills with diverse audiences - Strong critical thinking and analytical skills

For a full job description please visit our online Deloitte Careers portal

Requisition code: 167094

Company Description

Closing Date:

You may return to your current search results by clicking here.

Latest Job Listings