Known for being a great place to work and build a career, KPMG provides audit, tax and advisory services for organizations in today’s most important industries. Our growth is driven by delivering real results for our clients. It’s also enabled by our culture, which encourages individual development, embraces an inclusive environment, rewards innovative excellence and supports our communities. With qualities like those, it’s no wonder we’re consistently ranked among the best companies to work for by Fortune Magazine, Consulting Magazine, Working Mother Magazine, Diversity Inc. and others. If you’re as passionate about your future as we are, join our team.
KPMG is currently seeking a Senior Associate, Cyber Operations to join our Enterprise Security Services organization. This is a remote work opportunity.
Responsibilities:
- Account for response activities which may include incident response, incident management, driving remediation or threat mitigation, threat hunting and forensic analysis; take charge of other security operations activities may include identification of weakness (for example, vulnerabilities / insecure configurations), reviewing/assessing security configuration change requests and driving the coverage of the security monitoring services
- Stay abreast of the latest information security controls, practices, techniques and capabilities in the marketplace; participate in internal skills development activities for information security personnel on the topic of security monitoring and incident response, by providing knowledge sharing sessions
- Develop and keep effective working relationships with multiple internal technology groups; collaborate across multiple internal federated technology groups; Act as a go-to subject matter professional to others within the firm to achieve the required goals and objectives
- Leverage intelligence, monitor for threats and vulnerabilities and respond accordingly, including the development of risk mitigating approaches; incorporate learnings into additional preventive and detective controls as a continuous feedback loop; define or implement security configuration for monitoring tools, including alerts, correlation rules, and reporting; leverage a combination of vendor products and services, open source, and custom developed utilities
- Serve as an active project team member or self-manage small projects, which may include facilitating team meetings; publish meeting notes and action items; update project documents and systems; ensure timely completion of assigned action items
- Apply a fundamental understanding of cyber security operations and monitoring to perform the day-to-day operational responsibility of security monitoring and incident response activities, associated with operations that provide up to 24x7 coverage; implement efficiencies and improvements
Qualifications:
- Minimum three years of recent experience in security monitoring, security operations, and incident response activities; preferably within a professional services firm or similar environment
- Bachelor's degree from an accredited college or university is preferred; preferred certifications include CISSP, CCSP, CCSK, GSEC, GCIH, GCFE, GCFA, SC-200, CEH, and AZ-900
- Experience creating playbooks and procedures; experience tuning security monitoring rules, monitoring events, assessing risk, responding to incidents
- Applied network or system administration skills or experience with SIEM and security infrastructure; proven experience with scripting or automation
- Excellent verbal/written communication, collaboration, analytical and presentation skills to lead an environment driven by customer service and teamwork; Demonstrated experience leading meetings and operating effectively in a matrixed environment
- U.S. citizenship is required
Follow this link to obtain salary ranges by city outside of CA:
KPMG LLP (the U.S. member firm of KPMG International) offers a comprehensive compensation and benefits package. KPMG is an affirmative action-equal opportunity employer. KPMG complies with all applicable federal, state and local laws regarding recruitment and hiring. All qualified applicants are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, citizenship status, disability, protected veteran status, or any other category protected by applicable federal, state or local laws. The attached link contains further information regarding the firm's compliance with federal, state and local recruitment and hiring laws. No phone calls or agencies please.
KPMG recruits on a rolling basis. Candidates are considered as they apply, until the opportunity is filled. Candidates are encouraged to apply expeditiously to any role(s) for which they are qualified that is also of interest to them.
KPMG does not currently require partners or employees to be fully vaccinated or test negative for COVID-19 in order to go to KPMG offices, client sites or KPMG events, except when mandated by federal, state or local law. In some circumstances, clients also may require proof of vaccination or testing (e.g., to go to the client site).