Cloud Security Engineer | Enterprise Security | Hungary

Deloitte is hiring a Cloud Security Engineer to work on securing cloud environments across AWS, Azure, and GCP for local and international clients. The role involves cybersecurity and IT risk management projects within a collaborative, international consulting environment.

• Hands-on experience securing workloads in at least one major cloud provider (AWS, Azure, or GCP); multi-cloud experience is a strong plus
• Practical experience with at least one CSPM/CNAPP platform (e.g., Wiz, Prisma Cloud, Defender for Cloud, Orca, Lacework)
• Working knowledge of Infrastructure-as-Code tools (Terraform, CloudFormation, ARM/Bicep) and scripting (Python preferred; Bash/PowerShell a plus)
• Solid understanding of cloud networking and identity fundamentals including VPC/VNet design, security groups, IAM policies, and federation/SSO concepts
• Strong communication skills to explain technical and business risks to diverse audiences
• Genuine interest in growing into a client-facing functional consulting role
• Proficiency in English (written and spoken)
• EU passport

Nice to have:

• Hyperscaler certifications (AWS Certified Security Specialty, Microsoft Azure Security Engineer Associate, Google Professional Cloud Security Engineer) or Netskope certification
• Relevant security certifications such as CISSP, CCSP, or vendor-specific CSPM/CNAPP certifications
• Proficiency in German

• Design and implement cloud security controls across AWS, Azure, and/or GCP, including identity and access management, network security, encryption, and key management
• Deploy and tune Cloud Security Posture Management (CSPM) and Cloud-Native Application Protection Platform (CNAPP) tools to detect misconfigurations and reduce attack surface
• Build security into Infrastructure-as-Code (Terraform, CloudFormation, Bicep/ARM) and CI/CD pipelines, including IaC scanning and policy-as-code
• Secure containerized and serverless workloads using Cloud Workload Protection Platform (CWPP) and runtime security practices
• Assess and harden cloud identity, including Cloud Infrastructure Entitlement Management (CIEM) and federation with enterprise identity providers
• Lead or support cloud security assessments, architecture reviews, and migration security reviews for clients
• Translate technical findings into client-ready recommendations, run workshops, present risk posture, and contribute to remediation roadmaps
• Stay updated on cloud-native attack techniques and emerging cloud services to inform the team and clients

EU passport required