Tax Devsecops Security Engineer

Job Type : Permanent

Reference code : 124332

Primary Location : Toronto, ON

All Available Locations : Toronto, ON

Our Purpose

At Deloitte, we are driven to inspire and help our people, organization, communities, and country to thrive. Our Purpose is to build a better future by accelerating and expanding access to knowledge.

Purpose defines who we are and gives us reason to exist as an organization.

By living our Purpose, we will make an impact that matters.

• Enjoy flexible, proactive, and practical benefits that foster a culture of well-being and connectedness.
• Experience a firm where wellness matters.
• Be expected to share your ideas and to make them a reality.

As a Tax DevOps Security Engineer, responsibilities will include :

• Advocates for the application teams Cybersecurity, DevSecOps, and Agile engineering procedures, quality engineering practices and advanced requirement capturing techniques for improving end-to-end secure delivery practices.
• Works to harden cloud infrastructure from attacks by implementing automated and integrated release cycles incorporated within the Agile Security Software Development Lifecycle's (SSDL) tools and processes.
• Responsible for day-to-day collaboration with the Cyber team to ensure successful implementation of secure coding practices, and integration of secure application and design processes across Deloitte.
• Supports the Secure Systems Development Lifecycle (SSDLC), including functional and non-functional cybersecurity requirements.
• Builds Automation to validate security requirements within the CI / CD pipeline.
• Applies secure application principles to the testing and validation of security requirements derived in the SSDLC processes.
• Works with the application Infrastructure architect to complete security questionaires
• Organizes and coordinates pen testing as needed
• Acts as the Security Champion for the application team

What will your typical day look like?

You will focus on partnering with the Deloitte Global Cyber team to create, implement, and apply application security principles, DevSecOps, processes and culture.

You will provide subject matter expertise on application security and design, leading our engineering teams in building secure software and development along with implementing security controls in an Agile environment.

About the team

Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world.

In this truly global environment, we operate not in "what is" but rather "what can be" to help Deloitte deliver and connect with its clients, its communities, and one another in ways not previously conceived.

Enough about us, let's talk about you

Requirements for this role include :

• Minimum of 4 years of combined experience in software engineering, and DevOps / DevSecOps, preferably in an information security context
• Working with Secure CI / CD pipelines and ALM tools to automate security requirements validation tasks
• Programming skills in one or more of the following programming and markup languages : Java, .Net, Terraform, Python, Visual Basic, PowerShell, Bash, C++, C#, Django, JavaScript, HTML, CSS, etc.
• Hands-on experience with containerization, orchestration, and Cloud infrastructure management (e.g., Infrastructure as Code, immutable infrastructure, Configuration as Code)
• Knowledge of Source Code Management concepts (e.g., code lines, branching, merging, integration, versioning)
• Experience producing PoCs (Proof of Concept) to support the development and DevOps teams
• Ability to translate traditional SDLC approach (plan, code, build, test, release, deploy and monitor) to the phases of agile development when writing software to automate security related tasks.

Our promise to our people : Deloitte is where potential comes to life.

Be yourself, and more.

We are a group of talented people who want to learn, gain experience, and develop skills. Wherever you are in your career, we want you to advance.

You shape how we make impact.

Diverse perspectives and life experiences make us better. Whoever you are and wherever you're from, we want you to feel like you belong here.

We provide flexible working options to support you and how you can contribute. Be the leader you want to be.

Be the leader you want to be

Some guide teams, some change culture, some build essential expertise. We offer opportunities and experiences that support your continuing growth as a leader.

Have as many careers as you want.

We are uniquely able to offer you new challenges and roles - and prepare you for them. We bring together people with unique experiences and talents, and we are the place to develop a lasting network of friends, peers, and mentors.

Our TVP is about relationships - between leaders and their people, the firm and its people, peers, and within in our communities.

The next step is yours

At Deloitte, we are all about doing business inclusively - that starts with having diverse colleagues of all abilities. Deloitte encourages applications from all qualified candidates who represent the full diversity of communities across Canada.

This includes, but is not limited to, people with disabilities, candidates from Indigenous communities, and candidates from the Black community in support of living our values, creating a culture of Diversity Equity and Inclusion and our commitment to our AccessAbility Action Plan, Reconciliation Action Plan and the BlackNorth Initiative.