Position Summary Senior Analyst - Cloud Compliance Technology and Infrastructure- Deloitte Support Services Work you’ll do Deloitte Technology – Service Assurance – Compliance team for enabling compliant cloud environments & asset development for Audit and Attestation Support (ISO, SOC 2, internal audits, US MFS8, etc.), Remediation Tracking, Standard and Policy Support, Operational Certifications (access reviews, database reviews, etc.), Compliance Advising, US Member Firm Control Monitoring etc. The Compliance team is responsible for conducting various types of audits as required and to be in compliance with the Cyber Security Standards: Identity and Access Management, SOC 2 Controls, ISO 27001, and ITGC Controls, all elevated access in production domains (cloud) must be periodically reviewed to ensure appropriate levels of authority. In this role you will partner with peers in AMS (Access Management Services), MAC (Modern Control Access), CMP(Cloud Managed Platform),DCS Ops(Deloitte Cloud Services), Service Assurance-Compliance,Assurance and Resilience pillars) internal teams, GRC(Governance, Risk and Controls), Infra Teams to deliver and provide end-to-end guidance and support. Role Specific Responsibilities Experience and knowledge in conducting compliance audits, assessments, and reviews to ensure adherence to applicable laws, regulations, and internal policies. Audit Planning and Execution: Planning and execution of the Cloud Platform access reviews, remediations, ownership transfers capturing and reporting metrics (end to end). Supporting Semi-Annual Elevated Access Reviews for Databases. Compliance Monitoring and Remediation: Remediation Tracking as part of all Access reviews (Quarterly, Bi-Annual and Annual reviews). Working on Ownership transfers as part of Access reviews (Quarterly, Bi-Annual and Annual reviews). Planning and execution of MFS8 Tech Refresh requirement where the Identify assets that are approaching end of life and communicate with asset owners either for upgrading or decommissioning the asset. Tech Refresh reporting: Informing leadership of upcoming end of life assets, tracking remediations and exceptions and report on the KPIs as needed on a weekly and monthly basis. Control Testing and evaluation:Performing control testing to assess the operating effectiveness of controls as part SOC 2 audits. Collecting evidence as per samples received from GRC and verifying that they are executed as intended. Evaluating the sufficiency of evidence provided by the service organization. Communication and Relationship Management: Collaborating with various teams, including legal, IT, operations, and management, to understand compliance requirements and gather necessary information. Building positive working relationships with auditees and stakeholders. Communicating audit objectives, scope, and procedures effectively and professionally Participate and contribute to the postmortem calls/Check in calls with the respective stakeholders and work towards the Continuous Improvement of the audits and assessments. Working/documenting on the Knowledge articles for every project new project within Compliance team and updating the existing KB documents. Assist GRC team with client/internal/external audit requirements for the select samples evidence gathering both Onprem as well as Cloud infrastructure. Bring your experience/ knowledge and creativity and collaborate with cross-functional teams and address any complex and changing regulations and their impact to cloud transformations. Gather reports on established metrics and identify opportunities to enhance/automate from a tool and or process perspective. Maintain/update/document procedures and runbooks related to Cloud Compliance. Required Technical Skills: Cloud fundamentals, Compliance, Governance – Azure, AWS, GCP Chef, or Puppet ITIL V3/4 SAFe for Teams ServiceNow SOC 2 audit ISO 27001 IAM/AD knowledge Education: BE/ B Tech Experience: Exceptional communication skills and the ability to communicate appropriately with business and technical teams Basic knowledge in Cloud Technology (preferably foundational knowledge in Azure, Aws and GCP) Good understanding of the principles and best practices of ITIL, Agile and scrum. Understanding of ServiceNow GRC or any other GRC tools. Ability to prioritize tasks and manage time across multiple projects to achieve on-time deadlines. Demonstrated experience with at least two security control frameworks (e.g. SOC 2, ISO, etc.) Working understanding of how compliance works with cloud-native technology. Cross collaborates within the team for skill upgrade in other areas. Years of Experience: 3 to 6 years Work Location : Hyderabad Good to have: AZ 104 Microsoft Azure Administrator Associate, AWS Cloud Practitioner or AWS Certified Solutions Architect - Associate (SAA) Any cloud certification in Google platform, ITIL V3/4, The team At Deloitte, we’re all about collaboration. And nowhere is this more apparent than among our 2,000-strong internal services team. With our combined specialist skills, we provide all the essential support and advice our client-facing colleagues need, right across the firm. This enables them to focus all of their efforts on delivering the best service possible to their clients. Covering seven distinct areas; Human Resources, Clients & Industries, Finance & Legal, Practice Support Services, Quality & Risk Services, IT Services, and Workplace Services & Real Estate, together we live, breathe and deliver the Deloitte experience. How You’ll Grow At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities— including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India Benefits At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you. Deloitte’s Culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate Citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people and our communities.We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. CA-AUP Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Benefits At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you. Our people and culture Our diverse, equitable, and inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our client most complex challenges. This makes Deloitte one of the most rewarding places to work. Learn more about our inclusive culture. Our purpose Deloitte’s purpose is to make an impact that matters for our clients, our people, and in our communities. We are creating trust and confidence in a more equitable society. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. We are focusing our collective efforts to advance sustainability, equity, and trust that come to life through our core commitments. Learn more about Deloitte's purpose, commitments, and impact. Professional development From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to build new skills, take on leadership opportunities and connect and grow through mentorship. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career. Requisition code: 156610