Cloud Security Engineer (Secret Clearance)

Cloud environments continue to transform how organizations operate, and securing those environments requires professionals who can design, implement, and strengthen controls across complex platforms. As a Cloud Security Engineer, you will help assess and enhance security across Amazon Web Services (AWS), Google Cloud Platform (GCP), and Microsoft Azure environments. This role supports cloud security architecture, engineering, monitoring, and risk reduction activities to help organizations protect critical systems and data. You will work with cross-functional teams to identify gaps, implement controls, and support secure cloud adoption..

Work You'll Do

As a Cloud Security Engineer on the Cloud Security team, you will be responsible for...

• Assess cloud environments across AWS, GCP, and Azure to identify security risks, control gaps, and configuration issues.
• Design, implement, and improve cloud security controls, including identity and access management, network security, encryption, logging, and monitoring.
• Support cloud security architecture reviews for new and existing solutions and provide recommendations aligned to security and compliance requirements.
• Investigate cloud security events and findings, analyze root causes, and support remediation activities with engineering and operations teams.
• Develop and maintain technical documentation, standards, baselines, and reports related to cloud security controls and cloud risk management.
  
  

A successful candidate would possess these skills:

• Ability to work independently and collaborate as part of a team
• Effective written and verbal communication skills
• Meticulous attention to detail and quality of work product
• Ability to build and sustain professional relationships
• Ability to lead projects or workstreams
• Ability to manage and prioritize multiple tasks in a fast-paced and dynamic environment
• Strong interpersonal skills and professional demeanor
• Ability to meet deadlines
• Ability to provide clear guidance to others
  
  

The Team

Deloitte's Government & Public Services (GPS) practice - our people, ideas, technology and outcomes - is designed for impact. Serving federal, state, & local government clients as well as public higher education institutions, our team of professionals brings fresh perspective to help clients anticipate disruption, reimagine the possible, and fulfill their mission promise.

Our Enterprise Security offering embeds security in all aspects of digital transformation by securing a client's technical backbone while enabling secure digital transformation. Includes security architecture, secure development and deployment, end-to-end cyber cloud capabilities, application security, and security for emerging technologies and connected products.

Qualifications

• Bachelor's degree in Cybersecurity, Computer Science, Information Systems, Engineering, or a similar technical field
• Active Secret Clearance.
• Local to the DMV area and have the ability to work onsite up to 5 days a week.
• Ability to travel 20%, on average, based on the work you do and the clients and industries/sectors you serve.
• 2 years' experience within the following:
• Supporting cloud security, cloud engineering, or cloud infrastructure
• Experience implementing or assessing security controls in Amazon Web Services (AWS), Google Cloud Platform (GCP), and Microsoft Azure
• Experience with cloud identity and access management, network security, encryption, logging, monitoring, and configuration management
• Experience using cloud-native security tools, security posture management tools, or infrastructure as code tools
• Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future.
  

Preferred:

• Experience supporting cloud security architecture reviews, cloud migrations, or cloud transformation programs
• Experience with security frameworks and benchmarks such as National Institute of Standards and Technology (NIST), Center for Internet Security (CIS), or International Organization for Standardization (ISO)
• Experience with scripting or automation using Python, PowerShell, Bash, or Terraform
• Experience with container security, Kubernetes, or DevSecOps practices
• Industry certifications such as AWS Certified Security - Specialty, Microsoft Azure Security Engineer Associate, Google Professional Cloud Security Engineer, or Certified Information Systems Security Professional (CISSP)
  
  

The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $107,925 to $188,000.

You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.