Cyber
Deloitte Cyber understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful insights to help our clients navigate the ever-changing threat design, and technology as we partner with clients to transform finance.
Position Summary
Job Title: Senior Consultant - Cloud AI Security
Are you interested in working in a dynamic environment that offers opportunities for professional growth and new responsibilities? If so, Deloitte could be the place for you. Traditional security programs have often been unsuccessful in unifying the need to both secure and support technology innovation required by the business. Join Deloitte's Cyber Cloud AI Security team and become a member of the largest group of cybersecurity professionals worldwide.
Work you’ll do
As a Cloud AI Security Senior Consultant, you will lead and support client engagements focused on securing AI, generative AI, and ML workloads across cloud platforms. You will bring deep experience across cloud security, AI security architecture, governance, compliance, platform controls, and monitoring to help clients design, assess, and implement secure AI capabilities at scale. You will be expected to contribute to solutioning and client delivery, and provide actionable recommendations across the AI lifecycle, including data ingestion, model development, validation, deployment, runtime monitoring, and retraining.
Responsibilities as a Cloud AI Security Senior Consultant will include:
-
Drive the design and implementation of AI security solutions within cloud environments aligned to client business objectives, enterprise architecture, regulatory expectations, and security requirements.
-
Execute AI security assessments for cloud-hosted AI/ML and GenAI workloads, evaluating controls against frameworks and standards such as NIST CSF, CSA CCM, ISO 27001, NIST AI RMF, and ISO 42001.
-
Define and implement AI security controls across identity, access, network segmentation, encryption, key management, secrets management, logging, monitoring, workload protection, and secure configuration management.
-
Support threat modeling and security architecture reviews for AI and GenAI solutions, including risks related to prompt injection, jailbreaks, insecure output handling, excessive agent permissions, sensitive data exposure, model misuse, and insecure tool or connector usage.
-
Design and review secure AI architectures spanning model endpoints, APIs, retrieval-augmented generation pipelines, vector stores, plugins, agent frameworks, orchestration layers, and external tool integrations.
-
Support secure deployment and configuration of cloud-native AI services including Amazon Bedrock, Amazon SageMaker, Azure AI Foundry, Azure OpenAI, Azure Machine Learning, and Google Vertex AI.
-
Implement and review platform-specific controls such as private connectivity, encryption with customer-managed keys, tenant isolation, access restrictions, content safety controls, and service-native logging and monitoring capabilities.
-
Drive DevSecOps, MLOps, and MLSecOps integration efforts by embedding policy validation, secrets handling, secure model promotion, compliance checks, and security testing into CI/CD and ML pipelines.
-
Define and implement secure AI lifecycle controls across data ingestion, model training, evaluation, deployment, monitoring, incident response, drift review, and retraining, including protections against data poisoning, model tampering, and supply-chain risk.
-
Support AI governance and compliance activities including model inventory, risk classification, approval workflows, traceability, documentation standards, and control mapping aligned to NIST AI RMF and ISO 42001.
-
Support clients in implementing responsible AI and model governance controls related to data protection, access control, model usage restrictions, prompt security, content filtering, and audit readiness.
-
Execute AI security posture management efforts using cloud-native tooling, CNAPP, CSPM, CWPP, DSPM, SIEM, and related controls to identify misconfiguration, data exposure, anomalous model activity, and policy violations.
-
Support AI-specific monitoring and incident response by helping define detections, alerts, escalation paths, and remediation activities for suspicious prompt behavior, agent abuse, unauthorized model access, and sensitive data leakage.
-
Conduct or support AI security testing activities including misuse-case testing, control validation, prompt attack testing, model guardrail validation, and red-team support for AI-enabled applications.
-
Work directly with client stakeholders across security, cloud engineering, DevOps, data, ML engineering, privacy, risk, and architecture teams to translate requirements into implementable designs and remediation plans.
The team
Deloitte Cyber team helps complex organizations more confidently pursue their growth, innovation and performance agendas through proactive management of the associated cyber risks. Our professionals provide advisory and implementation services that integrate risk, regulatory, and technology skills to help clients transform their legacy programs into proactive cyber risk programs. Join the team developing the future state of cyber risk solutions. Learn more about Deloitte Advisory’s Cyber Risk Services practice.
Required:
- 7+ years of experience in cloud security, cybersecurity consulting, cloud engineering, DevSecOps, or closely related disciplines.
- Demonstrated experience leading or owning workstreams in client-facing security engagements.
- Experience designing, assessing, or implementing security controls for cloud-hosted applications, platforms, or AI/ML environments.
- Strong hands-on experience with at least one major cloud platform and working knowledge of the other leading platforms: AWS, Microsoft Azure, and Google Cloud.
- Strong understanding of AI/ML and GenAI security concepts, including prompt injection, model misuse, data leakage, secure model access, agent security, and responsible AI fundamentals.
- Experience implementing cloud security controls across IAM, network security, encryption, key management, secrets management, logging, monitoring, and policy enforcement.
- Experience with Infrastructure as Code and automation using tools such as Terraform, CloudFormation, Ansible, Bash, and PowerShell.
- Experience with DevOps, CI/CD, and secure engineering practices, including policy validation, secrets handling, and continuous compliance.
- Familiarity with cloud AI services such as Amazon Bedrock, Amazon SageMaker, Azure AI Foundry, Azure Machine Learning, Azure OpenAI, Mythos, Anthropic, and Vertex AI.
- Familiarity with AI governance and security frameworks such as NIST CSF, ISO 27001, NIST AI RMF, and ISO 42001.
- Strong written and verbal communication skills, including the ability to communicate technical risks and recommendations to both technical and non-technical stakeholders.
Preferred:
-
Experience conducting AI security assessments, architecture reviews, control design, and remediation programs across AWS, Azure, and/or Google Cloud.
-
Deep hands-on experience with identity and access management, including AWS IAM, Microsoft Entra ID, Azure RBAC, and Google Cloud IAM.
-
Experience designing governance and guardrails for cloud AI environments using services such as AWS Organizations, AWS Control Tower, Azure Policy, Security Command Center, and equivalent policy enforcement capabilities.
-
Experience with cloud-native monitoring and security tooling such as AWS Security Hub, CloudTrail, AWS Config, Microsoft Defender for Cloud, Azure Policy, and Google Security Command Center.
-
Experience with CNAPP, CSPM, CWPP, DSPM, SIEM, vulnerability management, container security, and posture management tools supporting AI workloads.
-
Experience with prompt security, content safety, model guardrails, and AI runtime monitoring for generative AI applications.
-
Exposure to AI red teaming, misuse-case testing, prompt attack validation, or adversarial testing of LLM-enabled applications.
-
Experience securing containerized, API-driven, and agent-based AI applications.
-
Knowledge of privacy, legal, and data governance considerations relevant to AI workloads, including data residency, retention, sensitive data handling, and auditability.
-
Experience establishing AI governance processes such as AI inventory, model classification, approval gates, traceability, and documentation aligned to AI risk management practices.
-
Relevant certifications such as:
- AWS Certified Security – Specialty
- Microsoft Certified: Azure Security Engineer Associate
- Google Cloud Certified – Professional Cloud Security Engineer
- Microsoft Certified: Azure AI Engineer Associate
- Google Cloud Certified – Professional Machine Learning Engineer
- AWS Certified AI Practitioner (AIF-C01)
-
CISSP, CCSP, or comparable senior security certifications
-
Strong organizational skills and the ability to manage multiple client priorities independently.
How you’ll grow
At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to help sharpen skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs at Deloitte University, our professionals have a variety of opportunities to continue to grow throughout their career. Explore Deloitte University, The Leadership Center.
Benefits
At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you.
Deloitte’s culture
Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte.
Corporate citizenship
Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world.
Recruiter tips
We want job seekers exploring opportunities at Deloitte to feel prepared and confident. To help you with your interview, we suggest that you do your research: know some background about the organization and the business area you’re applying to. Check out recruiting tips from Deloitte professionals.
Benefits to help you thrive
At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you.