Deloitte - Recruitment
Information Security Officer (Cloud Security)

How your CV stacks up
Upload your CV to see how well it fits this job role
?%
Contract Role: Information Security Officer (Cloud Security)
Contract Location: London/Belfast (Hybrid)
Contract Duration: 6 months initially (with potential extension)
Contract Start Date: Immediate
Contract Classification: Inside IR35
Daily Rate Breakdown:
- Traditional Daily Rate: £450
- Agreed Contract Rate (ACR): £346.95
- Equivalent Annual Salary: £90,206 + £10,887 holiday pay
- Payroll provider: Rockford Payroll Info for Contingent Workers - Rockford Pay
Overview:
Deloitte is supporting a Tier 1 Global Bank in hiring experienced Information Security Officers to lead cloud security governance, security architecture, and cyber risk management across large-scale technology platforms. This is a senior security role responsible for driving secure-by-design principles, identifying cyber risks, and ensuring compliance with enterprise security policies.
Key Responsibilities:
- Lead Information Security activities across supported technology and infrastructure functions.
- Identify opportunities to automate and standardise security controls.
- Identify, investigate, and remediate security vulnerabilities across infrastructure and applications.
- Analyse source code to identify and mitigate security weaknesses.
- Review automated security testing results and prioritise remediation based on risk.
- Perform manual and automated security testing where required.
- Conduct Information Security risk assessments.
- Analyse root causes of vulnerabilities and recommend corrective actions.
- Work with engineering and business teams to deliver secure technical solutions.
- Contribute to enterprise security architecture across major technology programmes.
- Ensure cloud architectures align with corporate security policies and industry best practices.
- Assess security risks and define compensating controls where required.
- Translate business requirements into secure technical solutions.
- Recommend secure infrastructure platforms and cloud architectures.
- Influence security strategy and architectural decisions.
- Provide technical leadership across complex cloud security initiatives.
Reasons to use Rodeo
I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?
Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.
Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.
Start with a chat, not a search bar
Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.
Graduate Consultant — 2026 Scheme
Why you're a good match
StrongYour economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.
See breakdownIt searches the market for you
Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.
Why you're a good match
You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.
Experience fit
Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.
Only hits
No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.
Essential Skills & Experience:
- Minimum 6 years’ IT experience, including at least 4 years in Cyber Security/Information Security across cloud and on-premises environments.
- Minimum 2 years securing AWS and/or GCP cloud environments.
- Experience conducting Information Security Risk Assessments and Security Governance.
- Strong understanding of AWS Well-Architected Framework and Google Cloud Security Command Center.
- Strong knowledge of AWS and GCP IAM security models.
- In-depth knowledge of cloud infrastructure including VPC, EC2, S3, Cloud Storage, and Compute Engine.
- Familiarity with NIST, ISO 27001, and CSA STAR compliance frameworks.
- Experience engaging with Information Security, Risk, Control & Compliance, Architecture, and Project teams.
- Demonstrated expertise in Threat Modelling methodologies such as STRIDE, PASTA, or MITRE ATT&CK/ATLAS.
- Strong understanding of authentication, authorisation, encryption, logging & monitoring, infrastructure security, and network segmentation.
- Ability to design and review secure technical architectures.
- Experience reviewing Infrastructure as Code using Terraform and/or CloudFormation.
- Strong understanding of SDLC and CI/CD pipelines.
- Hands-on Python scripting experience.


Get help with your application
Your very own career expert that helps elevate your application to the next level.
Qualifications:
- Associate or Professional AWS or GCP Cloud Certification (mandatory).
- Associate or Professional Cyber Security Certification (mandatory).
- Excellent communication and influencing skills.
- Strong stakeholder and relationship management.
- Excellent analytical and problem-solving capability.
- Self-motivated with the ability to lead complex security initiatives.
- Strong technical documentation and presentation skills.
- Bachelor’s degree in Computer Science, Cyber Security, or related discipline (or equivalent experience).
- CISSP, CISM, or CCSP highly desirable.
- AWS Solutions Architect or Google Professional Cloud Security Engineer certifications are advantageous.
“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”
Jessica, London
Skills