Senior Associate / Assistant Manager – RC – Emerging Tech Risk and Cyber (Security Architecture and Technology)

  • Competitive
  • Petaling Jaya, Malaysien
  • Festanstellung, Vollzeit
  • KPMG PLT
  • 21 Jan 19

Senior Associate / Assistant Manager – RC – Emerging Tech Risk and Cyber (Security Architecture and Technology)

KPMG's ITA Advisory team provides in-depth IT guidance and support, from strategic planning and implementation, governance structure assistance, and project management to information protection and system assurance.

Through our full range of services, our ITA professionals help provide clients confidence on their IT delivery and the true potential of technology investments and provide them with the information they need to meet their strategic and financial goals.

Responsibilities :
As part of our regional and global security team, you will be responsible for:

• Performing Cyber Security Maturity Assessment, which includes reviews of network architecture design, cyber security solution designs, security policies and document artifacts, develop and design cyber security solutions according to KPMG framework and industry standards and best practices

•Prepare financial cost, time and human resources estimations and identify integration challenges and requirements for proposed cyber security solutions

• Acquire a complete understanding of a company's technology and information systems

• Plan, research and design robust security architectures for any IT project

• Research security standards, security systems and authentication protocols

• Define, implement and maintain corporate security policies and procedures

•Oversee security awareness programs and educational efforts

• Respond immediately to security-related incidents and provide a thorough post-event analysis

• Develop requirements for local area networks (LANs), wide area networks (WANs), virtual private networks (VPNs), routers, firewalls, and related network devices

• Review and quality assurance of engagements deliverables

• Supervision of junior team members working on engagements

• Professional development and coaching of team members

• Coordinating methodology development and updates and overall improvement of delivery of engagements

• Participating in business development activities which includes but not limited to preparation of proposals and presentations

• Identifying emerging trends, threats and technologies in cyber security field and be able to educate the team and clients

• Supporting the service line leader in strategic initiatives

• Providing technical direction and act as a subject matter expert as it relates to cyber security.

• Participate in auditing/assessment engagements to ensure security policies, architecture requirements and best practices are effectively applied

Requirements :
Skills:
• Possess strong enthusiasm and interest in information security.
• Deep understanding of Cyber Security landscape, current threats and security remediation
• Wide technical knowledge of current and new security technologies
• Good communication, presentation, interpersonal, and stakeholder management skills.
• Able to document technical information for executive level reporting and presentation.
• Independent, self-motivated, organized, and results oriented individuals capable of handling multiple engagements, meet tight deadlines with minimal guidance.
• Strong analytical and management skills.
• Excellent understanding of security capabilities, controls and enablement; and their relation to project delivery; security standards, guidelines and/or framework (e.g. ISO, NIST, CIS, OWASP, etc.…)
• Able to work in a multicultural team and a fast-paced environment.

Experience:
• Minimum of 3 years of experience or above in technical deployment of security solution
• Minimum of 3 years in designing security architecture and solutions
• Exposure to a wide range of industries would be recommended. Likely industry exposure will include but not limited to government, health, energy & natural resources, manufacturing and finance
• Experience with security engineering, system and network security, authentication and security protocols, cryptography, and application security

Qualifications:
• A Bachelor's Degree in Computer Science/Information Technology/Engineering/any related field, Master's degree would be an advantage
• Candidates with the following certifications would have an advantage:
o Certified Information Security Manager (CISM)
o Certified Information Systems Security Professional (CISSP)
o ISO/IEC 27001 Lead Auditor/Implementer
o The Open Group Architecture Forum (TOGAF)
o Relevant SANS training/certifications