Share this Job

Firewall Compliance Analyst


Western Sydney, NSW, AU

Department:  Internal Client Services

•    Work in a highly innovative and transformative business
•    Work/life balance with access to flexible work arrangements
•    Salary packaging – to suit your personal and financial circumstances


What will your typical day look like?


The Firewall Compliance Analyst is responsible for secure operation of the technologies that fall under the umbrella of the Cybersecurity – Firewall. Maintains global firewall security policy requirements. Actively participates in the change requests of firewall security policy. Collaborates with other Deloitte teams, member firms and external parties to address/remediate identified security issues.


Joining the Deloitte Global IT Cybersecurity team based in Sydney/Western Sydney, you will be working in one of the world’s largest holistic internal cybersecurity organisations. You will be operationally responsible for proactively preventing, detecting, and responding to cyber-attacks across a complex global footprint.

As part of the Global Cybersecurity team, you will work closely with stakeholders across the APAC member firm to deliver technical assessments against a broad range of services. As such your responsibilities in this role could include:

  • Review firewall security policy changes against Deloitte policies, standards, and best practice
  • Respond to firewall change requests to provide compliance validation for their approval
  • Providing consultation services with regards to firewall policy change requests, including potential workarounds to meet business needs in a secure manner
  • Continually improve the security posture of Deloitte network firewall systems.
  • Participate and provide input in development of network firewall architecture.
  • Define and adapt criteria for security reviews based on internal policy and standards.
  • Perform periodic reviews of all network firewall configurations to maintain compliance.
  • Track remediation of findings by firewall compliance team.
  • Act and communicate security project requests.
  • Willingness to participate in vendor relationships and meetings.

People Management:

  • Help others in information security concepts, issues, standard and policies.
  • Work closely with teams delivering firewall compliance requests and projects.

 Knowledge Sharing / Documentation:

  • Assist in drafting and editing firewall related standards, policies and guidelines.
  • Assist in drafting and editing firewall related risk models, methods and procedures.


About the team 
The Deloitte Global Cybersecurity function is responsible for enhancing data protection, standardising and securing critical infrastructure, and gaining cyber visibility through security operations centres. The Cybersecurity organization delivers a comprehensive set of security services to Deloitte’s global network of firms around the globe. 


Enough about us, let’s talk about you. 
You will have experience in the Information Security / Cybersecurity domain with a focus on Firewall management.


More specifically, you are someone who has:

Technical expertise: 

  • Strong background in security operations and security systems management
  • Good understanding of common TCP/IP architecture, principles, operations and controls
  • Good understanding of network security firewall UTM technologies, trends, vendors, processes and methodologies.
  • Good understanding of common firewall architectures and implementations.
  • Strong understanding of basic protocols used by the internet, such as HTTP(S), DNS, TLS
  • Good understanding of basic networking concepts, such as routing, switching, firewall, and common enterprise security monitoring tools.
  • Good understanding of information security principles
  • Good understanding of information security policy enforcement
  • Any experience with host-based firewall, or network-based VPN F5 products


Experience with the following products are strongly preferred:

  • Knowledge of next-gen firewall technologies
  • Knowledge of the Cisco Firepower, Checkpoint, Palo Alto, and/or Tufin platforms
  • Any experience with host-based firewall, or network-based VPN products as well as SIEM management tools is a plus. 


Other Qualifications:

  • High degree of personal integrity and ethics as well as a passion for protecting people and systems
  • Constantly striving for excellence using objective, transparent and agreed upon standards
  • Excellent written and oral communication and presentation skills for leadership, technical and business audiences
  • Possess industry-recognized security certifications (e.g., Cisco Certified Security Professional, CCNA-S, Check Point Certified Security Administrator, Palo Alto Networks Certified Network Security Engineer.)


Why Deloitte? 
At Deloitte, we create positively differentiated work experiences that enable our people to feel valued and achieve their full potential. We value difference and embrace people with diverse backgrounds and thinking styles. Knowing that people work best in a variety of ways, we are happy to discuss alternative arrangements if the working pattern you are looking for is not specifically indicated.

Next Steps 
Sound like the sort of role for you? Apply now using the link provided.
 If you require more information you can contact Marlon Vallarta at mvallarta@ deloitte.com.au for a confidential discussion.


By applying to this job, you will be assessed against the Deloitte Global Talent Standards. We’ve designed these standards to provide our clients with a consistent and exceptional Deloitte employee experience globally.


Deloitte is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, or any other characteristic protected by law. If you need assistance or an accommodation during the application process because of a disability, it is available upon request. 


The preferred candidate will be subject to background screening by Deloitte or by their external third-party provider.