Responsible for leadership, oversight, and successful delivery of cyber security transformation engagements serving multiple clients across various industries;
Consult to understand our clients’ key challenges and advise/ propose practical and cost-effective solutions to remedy or solve our clients’ cybersecurity challenges, and effectively manage risk across multiple layers of the technology architecture stack;
Hands-on participation in the digital and technical aspects of engagements including design and implementation;
Champion one or more technical service offerings such as threat risk assessments, threat modeling, identity access management, IT asset and vulnerability management, cyber maturity assessments and transformation roadmap development and execution;
Active involvement in the business development activities such as participating in the local business community and developing relationships with clients to increase awareness of the firm's services. Identifying and assisting in pursuits including developing marketing materials, proposals, presentations and research;
Contribute to team development through engaged mentorship and knowledge sharing to help them grow their consulting skills, professional brand, and technical acumen. Manage the performance and development of team members;
Work collaboratively across KPMG service lines to provide holistic support to our clients;
Engage in and contribute to the innovation, growth and enhancement of KPMG Cyber services;
Establish and maintain effective working relationships with colleagues, existing clients, and prospective client organizations.
Requirements :
8+ years of experience in cyber security consulting and/or technology operations including recommending applicable cyber security solutions within mid to large level organizations;
Industry relevant designations such as CISSP, CISA, CISM, CRISC, ITIL, PCI QSA, CIPP/C, TOGAF, or SABSA;
Experience with operational implementation of recognized security frameworks such as CIS (top 18 and benchmarks), ISO27k, NIST CSF and/or 800-53, Secure Controls Framework;
Strong knowledge of security risk management practices including security architecture, vulnerability and patch management, identity access management (IAM), cloud security, privacy, etc.;
Experience implementing business resilience strategies to minimize the impact of a cyber incidents, including designing and updating cybersecurity strategies, roadmaps, and target operating models within a business context;
Experience effectively communicate and present cyber security strategies, solutions, and insights to stakeholders at various levels;
Experience developing reports in a clear, organized structure catering to a mix of technical and managerial stakeholders;
Experience in a leadership role, providing engaged mentorship and knowledge sharing to the team and junior level consultants;
Post-secondary education in a related discipline or relevant experience.