Analyst- Penetration Testing
Service Line Information
Using a wide variety of technical and sector-specific skills, KPMG's Risk Consulting group proactively helps clients increase profits whilst reducing reputational, operational, financial and other risks. We are experienced in managing diverse issues including fraud, regulatory compliance, risk frameworks and modelling, capital efficiency, corporate governance, dispute resolution, deriving value from contracts and much more.
Technology - Our clients need to deal effectively with technology related risks and derive maximum value from data and documentation. Our specialists provide independent, jargon free advice and advanced technology capabilities to help our clients proactively manage their technology risks and use their data to its full potential.
The Information Protection practice provides advisory services to assess and deliver organisational security capabilities from a high-level view of the Information Security Management Processes through to specific assessments and control design services. We help our clients address their concerns around Confidentiality, Integrity, Availability and Privacy. Clients range across all market sectors both in the UK and internationally.
We are looking for a programmer to join as an Analyst – Penetration Tester in our IPBR practice based in our London Office. The role involves reverse engineering of applications, identifying vulnerabilities in IT platforms and code reviews for security-related engagements; in combination with our wider portfolio of strategy, design, implementation and assurance services.
This will be an ideal job for a programmer looking to get into the penetration testing industry and attain CHECK Team Leader status.
You will be willing to take an active role in KPMG’s global community of security professionals, driving best practice across the firm and help further develop our Information Protection service line.
As an Analyst – Penetration Tester in IPBR you will be responsible for reporting technical issues in business terms and delivering real value to clients using a pragmatic approach to the technical components of information security. You will work with fellow team members and the client to identify and quantify technical risks.
Qualifications and Skills
Desirable qualifications include:
- Programming Skills, .NET.
- Experience of secure coding practices.
- Reverse engineering experience desirable but not essential.
- Security Cleared or be capable of getting Security Clearance.<
Other general knowledge and skills:
- Strong interpersonal and communications skills, especially written skills.
- Can demonstrate understanding and practical application of information security principles.
- Information security auditing or evaluation experience desirable.
- Experience of technical information security consulting.
Experience and Background:
The candidate may currently be working as a security analyst, system integrator, technical security consultant, security systems engineer, technical auditor, or security compliance auditor.
"Information Security Consultancy of the Year" - SC Magazine Europe Awards 2011 & 2012
Applying with a Disability
KPMG are proud to be an inclusive, equal opportunity employer and we seek to attract and retain the best people from the widest possible talent pool. As a member of The Employers' Forum on Disability we're committed to ensuring that all candidates are treated fairly throughout the Recruitment Process. Should you be successful after the initial application stage, please discuss with your recruitment contact any reasonable adjustments to our Recruitment Process that you may require.
KPMG's commitment to diversity
KPMG consistently features in the Sunday Times Best Big Companies to work for, which has been recognised with a special achievement award to mark our 10 years in the Top 25. We pride ourselves on being a place where your individuality is valued; you can be yourself and still achieve your potential. We believe that your individuality helps us to deliver the best results to our clients. Diversity of background, diversity of experience, diversity of perspective - that's the KPMG difference. But, don't take our word for it, find out more about diversity at KPMG by viewing our policy.
Policy for Agencies
KPMG has a commitment to sourcing candidates directly and as such we do not accept speculative CV’s from agencies. Please check here to see our policy on agencies: Policy