Deloitte | India Offices of the US

Cyber

Deloitte Cyber understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful insights to help our clients navigate the ever-changing threat design and technology as we partner with clients to transform finance.

Position Summary

Level: Solution Delivery Lead : Cloud Security & DevOps Engineer (AWS, CNAPP/Wiz, Terraform, Container Security)

Work you’ll do:

We are looking for a skilled Cloud Security & DevOps Engineer who have advanced skills in AWS, CNAPP (especially Wiz), Terraform—including experience deploying Wiz environments with Terraform modules using Wiz, AWS, and other third-party providers—and a strong background in container security and DevOps automation.

AWS Cloud Security

• Design and implement robust, secure AWS cloud infrastructure.
• Build automated security controls, monitoring, and compliance for cloud environments.

• Deploy, manage, and customize Wiz environments within AWS using Terraform.
• Create and maintain Terraform modules leveraging the Wiz provider, AWS provider, and essential third-party providers to automate resource provisioning and Wiz integration at scale.
• Integrate Wiz security assessments with CI/CD pipelines for proactive vulnerability management, compliance, and configuration monitoring.
• Generate actionable insights using Wiz dashboards and drive remediation efforts.

• Design IaC blueprints for onboarding new Wiz environments, using multiple providers (Wiz, AWS, third-party providers) to automate deployment workflows.
• Develop and support reusable Terraform modules and templates, standardizing secure deployment practices.
• Apply a programming-oriented approach to infrastructure automation, security integration, and workflow optimization.
• Develop, test, and maintain scripts or automation modules in Terraform, Python, or similar languages to streamline deployment and enhance security posture.
• Collaborate with internal and client DevOps teams to integrate security and monitoring as code.

• Secure containerized environments (Docker, Kubernetes) through implemented policies, automated image scanning, and runtime protection—integrated with Wiz as appropriate.
• Develop scripts and integrations to secure container platforms via Terraform and third-party providers.

• Build and maintain CI/CD pipelines embedding security best practices, automated vulnerability assessments, and compliance checks.
• Champion DevSecOps collaboration, ensuring security is a foundational pillar in the delivery lifecycle.

• Ensure regulatory compliance for insurance industry requirements across cloud, containers, and automation.
• Document workflows, incident responses, and remediation procedures

The Team

Cyber Operate: Cyber Operate Practice is focused on helping our clients identify and manage the cyber risks arising from their association with third parties or service providers. We help our clients to define their overall third-party cyber risk strategy, design and implement enterprise-wide programs and technology that focus on identifying and reducing risks; help them evaluate their objectives, priorities, strengths and weaknesses and roll out large scale organizational changes to achieve goals.

Qualifications:

Must Have Skills/Project Experience/Certifications: