USI - FY26 - RFA - Cyber - Enterprise Security - Architecture Review - SSA

Job title: Security Architecture Review Senior Consultant

About

At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloittes clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their successand to the strength of the economy and public security.

By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in todays world by organizations across a range of industry sectors and become subject matter experts in those areas.

Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunitiesfrom strategic, reputation, and financial risks to operational, cyber, and regulatory risksto gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloittes clients most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions.

 The Team

Work youll do

Roles & Responsibilities:

As a Senior Consultant in the Security architecture review domain, you are responsible for performing the following activities:

       Conduct comprehensive security architecture reviews for new and existing systems, applications, and infrastructure and assist by providing security overlays for any solution diagrams

       Evaluate solution designs and technical architectures to identify potential security risks and recommend mitigation strategies.

       Collaborate with IT, development, and business teams to integrate security requirements into project designs.

       Develop and maintain security architecture documentation, standards, and guidelines.

       Review and assess third-party/vendor solutions for security risks and compliance.

       Provide expert guidance on secure design patterns and critical security controls such as encryption, authentication, and access control.

       Be an active member of the projects and assist with any security related questions or issues

Required skills

• • • • Knowledge of infrastructure and network security
      • Exposure to microservices architecture concepts
      • Strong understanding of security frameworks (e.g., NIST 800-53, PCI DSS,, ISO 27001, CIS Controls) and regulatory requirements (e.g., GDPR, HIPAA, PCI DSS)
      • Experience with cloud security (AWS, Azure, GCP) and on-premises environments.
      • Familiarity with secure software development lifecycle (SDLC) practices.
      • Proficiency in risk assessment methodologies.
      • Excellent communication and documentation skills.
      • Exposure to threat modeling exercise and zero trust architecture principles
      • Knowledge of cloud security best practices.
      • Exposure to secure by design methodology.

Qualification

       Bachelor's degree or higher in Computer Science, or equivalent experience.

       6 to 9 years of experience reviewing application security architectures and threat modeling.

       Experience with TOGAF or SABSA frameworks, preferably holding certifications and understanding of how security can be integrated.

       Certified Cloud Security Architect (Azure, AWS, or GCP)

Good to have:

• Experience with integrating and operating SAST tools to identify code-level vulnerabilities in the development lifecycle.
• Familiarity with DAST tools and methodologies for identifying runtime vulnerabilities in web applications and APIs.
• Proficiency in using SCA tools to detect and manage risks from third-party and open-source components,
• Hands-on experience in embedding security controls and automated testing (SAST, DAST, SCA) into CI/CD pipelines
• Experience with integrating threat modeling tool into CICD pipeline
• Hands on experience on Microsoft Visio, Lucidchart, Microsoft Threat modeling tool etc or any other DFD, architecture drafting tool

How youll grow

At Deloitte, weve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunitiesincluding exposure to leaders, sponsors, coaches, and challenging assignmentsto help accelerate their careers along the way. No two people learn in the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our peoples growth and development. Explore DU: The Leadership Center in India.

Deloittes culture

Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. Deloitte is committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte.

Corporate citizenship

Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with Deloittes clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloittes impact on the world.

Recruiting tips

Finding the right job and preparing for the recruitment process can be tricky. Check out tips from our Deloitte recruiting professionals to set yourself up for success. Check out recruiting tips from Deloitte recruiters.

Benefits

We believe that to be an undisputed leader in professional services, we should equip you with the resources that can make a positive impact on your well-being journey. Our vision is to create a leadership culture focused on the development and well-being of our people. Here are some of our benefits and programs to support you and your familys well-being needs. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you.

Our people and culture

Our people and our culture make Deloitte a place where leaders thrive. Get an inside look at the rich diversity of background, education, and experiences of our people. What impact will you make? Check out our professionals career journeys and be inspired by their stories.

Professional development

You want to make an impact. And we want you to make it. We can help you do that by providing you the culture, training, resources, and opportunities to help you grow and succeed as a professional.

About Company

Deloitte is a global professional services firm that provides a wide range of services, including audit and assurance, consulting, tax, risk management, and financial advisory. With a presence in over 150 countries and a network of member firms, Deloitte serves clients across various industries, helping them solve complex business challenges, improve operations, and innovate. Known for its expertise in management consulting, technology solutions, and strategy, Deloitte is one of the Big Four accounting firms and is recognized for its commitment to quality, integrity, and making an impact in the marketplace.