KPMG has been acknowledged by Forrester as a leader in the provision of cyber security consultancy. We are investing to building out our cloud architecture cyber consulting team to meet a growing demand and provide a comprehensive range of services to many of the largest companies in the world.
We help our clients protect, detect and respond to high end cyber threats; helping them understand the cyber threat landscape, make sensible decisions on investment priorities, and build out the specialist capabilities they need to counter key threats.
We believe that cyber security is about helping our clients to harness business opportunities safely and securely. For us, cyber security isn't just a technical issue, it is one which engages the whole business and focusses on a holistic approach to understanding and mitigating the risk.
You will be a Senior Manager within the Corporates Cyber team, focussed on cloud architecture, helping both grow our cloud business and ensure our teams deliver high quality zero trust and cloud architecture advice to clients.
This role will work closely also with our Microsoft and cloud strategy teams to ensure security by design.
As a Senior Manager, we expect you to understand the business issues and to be able to translate complex cyber security issues into straightforward, credible, jargon free advice to our clients;
and delivering the support they require.
As a technical cyber security Senior Manager / Security Architect you will be advising clients on how to leverage securely a wide range of digital technologies including cloud, APIs, big data platforms and mobile;
on assessing and developing their security architecture covering both infrastructure and containerised environments; on securely taking advantage of Agile, DevSecOps and continuous integration / continuous deployment pipelines.
Our clients are under regulatory scrutiny but are also continually battling to match a rapidly changing cyber threat landscape while harnessing the opportunities offered by digital services.
As a Senior Manager in our team, we expect you to understand the world of our clients, the complexities of modern technologies, and to be able to translate complex business and cyber security issues into straightforward, credible, jargon free advice to our clients;
while making sure we can deliver the support they require.
Management and delivery of challenging, complex client engagements to ensure delivery, quality and value to our clients by :
Understanding their business challenges and the threats they face
Work with clients in helping them understand KPMG's Zero Trust framework and developing actionable approaches for adoption
Advising on digital and technical aspects of cyber security governance, frameworks and operating models
Helping them optimise their approach to digital and technical cyber security controls and risk management
Using Security Architecture in the definition of their security transformation
Helping them create innovative security solutions
Integrating security in Agile and throughout the system development life cycle
Supporting them in the development of their security architecture and cloud capability
Linking cyber security to other consultancy offerings on risk management, resilience and IT transformation to provide holistic support to our clients
Managing and delivering medium- / large-sized engagement
Assisting with sales and business development activities
Developing constructive client relationships, both inside and outside of KPMG
Coaching and developing team members through sharing of experience and knowledge, as well as managing the performance and development of other team members
Upholding KPMG's values by acting with integrity
Experience and Skills
Specific to the role, we expect that you will have :
Proven experience of delivering and leading cross functional teams across : security architecture (enterprise, infrastructure or application security architecture), cloud security (technical design and assessments, cloud security frameworks and controls), DevSecOps, securing digital strategy and transformation (essential)
Proven experience of delivering security in one or more of the following cloud service provider environments : Microsoft Azure, Amazon Web Services (AWS), Google Cloud Platform, Oracle Cloud (essential).
Understanding and delivery experience with leading security frameworks ( National Institution of Standards Technology (NIST), Cybersecurity (CSF), Zero Trust etc.)
Proven experience in managing the security aspects of technologies such as containers; APIs and microservices; big data platforms;
automation and orchestration
More generally, we expect that you will have :
Proven ability to analyse problems, identify core issues and recommend appropriate technical solutions
Proven experience of successfully managing complex cyber security services in a commercial environment, ensuring the delivery of high quality work on time and to budget
Proven ability to lead work at sustained levels of high intensity, and inspire drive and resilience in others
Proven ability to produce thought leadership material and engage as a subject matter expert with senior audiences and security professional communities
Excellent communication skills (both written and oral), negotiation and project management skills
Ability to interact with organisations at senior levels
Qualifications and Skills
Degree level qualified
Recognised cyber security qualifications ( CISSP, CISM, M. Inst IISP, etc.), or comparable experience
Cloud security certifications at higher levels
Recognised architecture qualifications ( SABSA, TOGAF, etc.) (preferable)