Description & Requirements
Who we are looking for
Do you have hands-on experience securing workloads across AWS, Azure, or GCP, and want to help organizations build security into the core of their cloud environments?
✔ Are you someone who enjoys getting into the technical detail — IaC, CSPM/CNAPP tooling, cloud networking — while also being able to explain the "so what" to non-technical stakeholders?
✔ Do you see yourself growing from a technical specialist into a client-facing consulting role, working across dynamic, cross-functional teams?
If you're motivated by helping organizations secure their cloud journey, reduce risk, and stay ahead of cloud-native threats — all within a collaborative, international consulting environment — we'd love to meet you 🚀
🎯 What we expect from you
Essential:

• Hands-on experience securing workloads in at least one major cloud provider (AWS, Azure, or GCP); multi-cloud experience is a strong plus
• Practical experience with at least one CSPM/CNAPP platform (Wiz, Prisma Cloud, Defender for Cloud, Orca, Lacework, or similar)
• Working knowledge of Infrastructure-as-Code (Terraform, CloudFormation, or ARM/Bicep) and scripting (Python preferred; Bash/PowerShell a plus)
• Solid grasp of cloud networking and identity fundamentals — VPC/VNet design, security groups, IAM policies, and federation/SSO concepts
• Strong communication skills — able to explain a misconfigured IAM policy to an engineer and a business risk to an executive
• Genuine interest in growing into a client-facing functional consulting role alongside technical work
• Proficiency in English (written and spoken)
• EU passport
  

Nice to have:

• Hyperscaler certifications (AWS Certified Security Specialty, Microsoft Azure Security Engineer Associate, Google Professional Cloud Security Engineer) or Netskope certification
• Relevant security certifications such as CISSP, CCSP, or vendor-specific CSPM/CNAPP certifications
• Proficiency in German
  

Your future role
As a Cloud Security Engineer, you'll work alongside experienced professionals to help clients design and operate secure cloud environments across AWS, Azure, and GCP. You'll play an active role in shaping how organizations protect cloud-native workloads, reduce attack surface, and build security into the way they build and ship.
Your responsibilities:

• Design and implement cloud security controls across AWS, Azure, and/or GCP — covering identity and access (IAM/RBAC), network security (VPCs/VNets, security groups, segmentation), encryption, and key management
• Deploy and tune Cloud Security Posture Management (CSPM) and Cloud-Native Application Protection Platform (CNAPP) tooling (e.g., Wiz, Prisma Cloud, Microsoft Defender for Cloud, AWS Security Hub) to detect misconfigurations and reduce attack surface
• Build security into Infrastructure-as-Code (Terraform, CloudFormation, Bicep/ARM) and CI/CD pipelines, including IaC scanning and policy-as-code (OPA/Rego, Sentinel)
• Secure containerized and serverless workloads (Kubernetes, EKS/AKS/GKE, Lambda/Functions) using Cloud Workload Protection Platform (CWPP) and runtime security practices
• Assess and harden cloud identity — including Cloud Infrastructure Entitlement Management (CIEM), least-privilege role design, and federation between cloud IAM and enterprise identity providers
• Lead or support cloud security assessments, architecture reviews, and migration security reviews for clients moving workloads to or between cloud platforms
• Translate technical findings into client-ready recommendations — running workshops, presenting risk posture to stakeholders, and contributing to remediation roadmaps
• Stay ahead of the threat landscape across cloud-native attack techniques and emerging cloud services, bringing fresh thinking back to the team and our clients
  

What we offer
Join us and become a part of an expert team, working on innovative cybersecurity projects for leading clients around the world. Gain valuable experience with the latest security technologies while driving impactful solutions that make a real difference. Play a crucial role in shaping and delivering cyber-domain projects, while continuously expanding your knowledge and skills in a supportive environment that values professional growth.
👉 Fringe benefits:

• Discretionary annual performance bonus
• Working in Hybrid Mode with flexible adjustment
• Flexible Benefits Plan – an allowance per month for benefits (e.g. medical subscription, meal tickets, private pension)
• 2 additional days off per year for medical leave without a medical certificate
• Comprehensive travel insurance (both work and personal travel)
• Days off for special personal events, according to the Internal Regulations
• Bookster subscription
• Learning & Development: LinkedIn Learning, Udemy for Business, getAbstract
• Employee Assistance Program: 24/7 consultancy (financial, psychological, legal)
• Teleworking allowance
  

Selection process

• Phone screening with HR (10-15 min)
• First Technical interview (45-60 min)
• Final interview (45-60 min)
• Welcome on Board! 🎉
  

About Deloitte
In Deloitte we support leading global organizations in optimizing and transforming their organizations. This also relates to their finance function. Our consultants offer insights, capabilities, and solutions that change the way these organizations operate and make people-related decisions.
We are currently building in Poland a dedicated team which will focus on advisory in the area of Finance & Performance. The Team will advise our Clients in complex issues relating to i.a. Reporting, Budgeting, Controlling processes. We are looking for high-energy, committed and ambitious people to join our advisory practice. Next to advising on most sophisticated and challenging issues relating to the above mentioned areas, our Consulting professionals will also advise on potential solutions leading to optimisation of the above mentioned processes. This will also include applying the newest technologies.
Are you ready to join our team and help our clients imagine, deliver, and run their future?
Show more
Show less