Analyst - Security Generalist
Service Line Information
Using a wide variety of technical and sector-specific skills, KPMG's Risk Consulting group proactively helps clients increase profits whilst reducing reputational, operational, financial and other risks. We are experienced in managing diverse issues including fraud, regulatory compliance, risk frameworks and modelling, capital efficiency, corporate governance, dispute resolution, deriving value from contracts and much more.Technology - Our clients need to deal effectively with technology related risks and derive maximum value from data and documentation. Our specialists provide independent, jargon free advice and advanced technology capabilities to help our clients proactively manage their technology risks and use their data to its full potential.
"Information Security Consultancy of the Year" - SC Magazine Europe Awards 2011 & 2012
To learn more about our services please visit our external website - www.kpmg.co.uk/security
Roles and Responsibilities
The Information Protection practice, works for our clients to assess and deliver organisations security capabilities from a high level view of the Information Security Management Processes through to specific assessments and control design services addressing the Confidentiality, Integrity, Availability and Privacy of our clients.
Assisting in the planning and scoping of security engagements.
Delivery of security related services to clients including but not limited to:
ISO 27001 (information security management) / BS 25999 (business continuity) certification audits
Third party security assurance reviews
Security policy and standards assurance work
Public Key Infrastructure (PKI) related assessments (such as tScheme and Webtrust)
Data Loss Prevention, Identity Access Management, and Security Architecture solutions
Preparing written reports, memos and issue logs.
Assisting with the ongoing management and maintenance of the certification and training management system.
Performing and maintaining research in current information security areas and attend information security related seminars and conferences.
Qualifications and Skills
It is desirable that you have:
- A genuine interest in Information Security and passion for the subject matter.
- An MSc in Information Security.
- Degree level educated or equivalent.
Experience and Background
Understanding of a wide range of information security and IT methodologies, principles, technologies and techniques including risk management, control assurance and security operational activities.An interest and proficient understanding of security, risk and IT standards, policies and frameworks e.g. ISO27001, COBIT, ITIL, BS2599.Good understanding of information security management practices.A genuine interest in the information security field.Excellent communication, negotiation and project management skills.The ability to work individually and as part of a team.Able to multi-task and prioritise workload to a high standard.
Applying with a Disability
KPMG are proud to be an inclusive, equal opportunity employer and we seek to attract and retain the best people from the widest possible talent pool. As a member of The Employers' Forum on Disability we're committed to ensuring that all candidates are treated fairly throughout the Recruitment Process. Should you be successful after the initial application stage, please discuss with your recruitment contact any reasonable adjustments to our Recruitment Process that you may require.
KPMG's commitment to diversity
KPMG consistently features in the Sunday Times Best Big Companies to work for, which has been recognised with a special achievement award to mark our 10 years in the Top 25. We pride ourselves on being a place where your individuality is valued; you can be yourself and still achieve your potential. We believe that your individuality helps us to deliver the best results to our clients. Diversity of background, diversity of experience, diversity of perspective - that's the KPMG difference. But, don't take our word for it, find out more about diversity at KPMG by viewing our policy.
Policy for Agencies
KPMG has a commitment to sourcing candidates directly and as such we do not accept speculative CV’s from agencies. Please check here to see our policy on agencies: Policy