Zero Trust Engineer, Deloitte Global Technology

Deloitte Global is the engine of the Deloitte network. Our professionals reach across disciplines and borders to develop and lead global initiatives. We deliver strategic programs and services that unite our organization.

What will your typical day look like?

The Application Security Engineer candidate will have a strong background in cybersecurity and understanding of web application and zero trust proxy security practices. The primary responsibility of the Engineer will be to ensure the effective deployment, configuration, and maintenance of our systems for Global customers. This role requires expertise in Web Application Firewalls, Zero Trust Proxy, Cloud security as well as experience with alerts and detections and data log analysis. This role will be part of the Application Edge Protection Service within the CyberSecurity pillar.

 
Role Specific Responsibilities:

• Web Application Firewall Management: Deploy, configure, and maintain web application firewall systems to protect our web applications against potential threats and vulnerabilities.
• Zero Trust Proxy: Deploy, configure, and Zero Trust Proxy systems to support identity gates to include defining and maintaining policies and connectors.
• Security Incident Response: Monitor and analyze security events, alerts, and logs generated by the web application firewall systems. Investigate and respond to potential security incidents, working closely with the Security Operations Center (SOC) and other Cybersecurity teams.
• Detection and Analysis: Develop and maintain detection rules, alerts, and reports to proactively identify and mitigate risks utilizing logs. Provides investigation findings to relevant business units to help improve information security posture.
• CDN Integration: Collaborate with the infrastructure and application teams to integrate the web application firewall with CDNs such Akamai and Radware, ensuring seamless traffic management and content delivery.
• Vulnerability Assessment: Utilize WAF data to identify potential vulnerabilities and recommend appropriate remediation measures to customers.
• Documentation and Reporting: Maintain accurate documentation of WAF configurations, policies, and procedures. Prepare reports and metrics related to web application security, including trends, incident summaries, and mitigation strategies, as needed.
• Collaboration: This role requires ability to explain security details to non- security teams such as application and engineering teams. Must be able to collaborate with cross-functional teams to ensure effective communication, knowledge sharing, and alignment of security objectives. Provide guidance to application teams on application security best practices and security awareness, as needed.

About the team

Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in what is but rather what can be to help Deloitte deliver and connect with its clients, its communities, and one another in ways not previously conceived.

Enough about us, let’s talk about you

Required:

• Bachelor's Degree/University Degree and/or Undergraduate Diploma in Information Security, Information Technology, Computer Science, Engineering or equivalent years in experience
• 4+ years with minimum 2 years in network security and 2 years in application security
• Strong knowledge of web application security concepts, OWASP Top 10 vulnerabilities, and related mitigation techniques
• Understanding of authentication and authorization flows (OAuth, SAMAL, OIDC)
• Strong technical background with Web Application Firewall (WAF), Zero Trust Network Access, APIs, and Cloud security policies
• Understanding of API security issues and API authentication
• Good understanding of information security principles and policy enforcement.
• Solid comprehension of HTTP protocol and demonstrated ability to troubleshoot using HTTP logs
• Strong technical background in web development and familiarity with potential attack vectors/methods
• Understanding of Authentication, DNS, Networks, Firewalls, SSL Certificates
• Excellent written and oral communication and presentation skills for technical and business audiences
• Strong analytical skills with high attention to detail and accuracy
• Experience with and the ability to thrive in a complex and fast-paced technology and/or information security organization, within a large enterprise environment

Experience in the following areas are strongly preferred:

• Previous experience in a Security Operations Center (SOC) or performing cybersecurity analysis, log analysis, and threat detection is highly desirable.
• Knowledge of Web Application Firewall technologies (Akamai)
• Knowledge of Zero Trust framework and technologies
• Experience integrating zero trust with WAF
• Familiarity with cloud security services, concepts, and best practices (AWS, Azure, GCP)
• Infrastructure as code (Terraform)
• Ethical hacking
• ServiceNow experience
• Technical documentation experience
• CISSP, CISM, CISA, GIAC or other security certifications are desired
• Bi-lingual a plus (Spanish/Japanese)
• Automation/Scripting experience
• Experience with CI/CD pipelines

Total Rewards

The salary range for this position is $69,000 - $114,000, and individuals may be eligible to participate in our bonus program. Deloitte is fair and competitive when it comes to the salaries of our people. We regularly benchmark across a variety of positions, industries, sectors, targets, and levels. Our approach is grounded on recognizing people's unique strengths and contributions and rewarding the value that they deliver.

Our Total Rewards Package extends well beyond traditional compensation and benefit programs and is designed to recognize employee contributions, encourage personal wellness, and support firm growth.  Along with a competitive base salary and variable pay opportunities, we offer a wide array of initiatives that differentiate us as a people-first organization. On top of our regular paid vacation days, some examples include: $4,000 per year for mental health support benefits, a $1,300 flexible benefit spending account, firm-wide closures known as "Deloitte Days", dedicated days of for learning (known as Development and Innovation Days), flexible work arrangements and a hybrid work structure.