AutoReq ID

140437BR

Job Title

Lead Penetration Tester - Cyber Security (CCSAS / CCSAM)

Country

United Kingdom

Location

London

Function

Risk Consulting

Service Line

RC Technology

Service Line Information

Using a wide variety of technical and sector-specific skills, KPMG's Risk Consulting group proactively helps clients increase profits whilst reducing reputational, operational, financial and other risks. We are experienced in managing diverse issues including fraud, regulatory compliance, risk frameworks and modelling, capital efficiency, corporate governance, dispute resolution, deriving value from contracts and much more.

Technology - Our clients need to deal effectively with technology related risks and derive maximum value from data and documentation. Our specialists provide independent, jargon free advice and advanced technology capabilities to help our clients proactively manage their technology risks and use their data to its full potential.

KPMG Overview

KPMG is part of a global network of firms that offers Audit, Tax & Pensions, Consulting, Deal Advisory and Technology services. Through the talent of over 16,000 colleagues, we bring our creativity and insight to our clients' most critical challenges.

With offices across the UK, we work with everyone from small start-ups and individuals to major multinationals, in virtually every industry imaginable. Our work is often complex, yet our vision is simple: to be the clear choice for our clients, for our people and for the communities we work in.

Job Description

KPMG has been acknowledged by Forrester as a leader in the provision of cyber security consultancy. We are investing to building out our financial services cyber consulting team to meet a growing demand and provide a comprehensive range of services to many of the largest financial services companies in the world.

We help our clients to protect, detect and respond to high end cyber threats; helping them understand the cyber threat landscape, make sensible decisions on investment priorities, and build out the specialist capabilities they need to counter financial crime and other threats.

We believe that cyber security is about helping our clients to harness business opportunities safely and securely. For us, cyber security isn't just a technical issue, it is one which engages the whole business and focusses on a holistic approach to understanding and mitigating the risk.
Our team works closely with KPMG's broader advisory practice to link cyber security to financial crime, risk management, operational resilience and IT transformation.

The Role
The role will be working in the Cyber Defence Services (CDS) Team within the cyber security department which is part of the Risk Consulting practice. Cyber security is one of the areas which KPMG has identified for major investment and growth. Our clients need to deal effectively with technology related risks and derive maximum value from data and documentation.

Responsibilities
- Management and delivery of penetration testing services to clients to include the following:
- Scoping
- Financial management
- Engagement and risk management
- production and review of deliverables
- Reporting technical issues in business terms.
- Developing constructive client relationships, both inside and outside of KPMG.
- Developing an understanding of KPMG's broader offerings to enable identification of business opportunities.
- Actively identifying and progressing business development opportunities, as well as managing sales activities such as proposal writing and assisting with client presentations.
- Role modelling risk and engagement management practices.
- Coaching and developing team members through sharing of experience and knowledge.
- Continuous development of self and team, including managing client feedback.
- Monitoring quality of service and products to clients and carrying out improvement or development as necessary.
- Performance management of junior staff.

Experience and Background
- Proven experience of successfully managing and delivering projects on time and to budget
- Proven experience working within the industry
- Clear and demonstrable understanding of penetration testing, including CESG accredited schemes such as CBEST, STAR, CPA, CHECK and CTAS.
- Demonstrable understanding and practical application of information security principles.
- Proven experience of producing high quality deliverables working alone and as part of a team.
- Excellent communication skills
- Proven experience of secure coding practices
- Reverse engineering experience desirable

Qualifications and Skills
- Degree level qualified, MSc in Information Security, IT or relevant subject (preferred)
- CHECK TEAM Leader preferred or a commitment to gain the qualification within 6 months of commencing role
- OSCP/CCSAS/CCSAM
- Programming skills, .NET
- Excellent communication skills (both written and oral) and project management skills
- Clearances required - SC is required (or eligibility), DV desirable

Our Deal

If the chance to work with interesting clients and innovative technology wasn't rewarding enough, we'll motivate you in other ways too. At KPMG you can expect real responsibilities and opportunities to grow professionally.

'Our Deal' sets out all the different ways you'll be rewarded at KPMG. Among other things you can benefit from honest conversations about your career as well as a range of other rewards. In all these ways and more, we have created an environment that can bring out the best in you.

Flexible Working

While some of our client-facing professionals can be required to travel regularly, and at times be based at client sites, we are supportive where possible of helping you to achieve a balance between your home and work demands.

We are happy to discuss individual requirements and our range of flexible working arrangements could be of interest. Furthermore, as part of the recruitment process, we can put you in touch with people who work flexibly so you can understand from them what our culture is like.

Applying with a Disability

KPMG are proud to be an inclusive, equal opportunity employer and we seek to attract and retain the best people from the widest possible talent pool. As a member of the Business Disability Forum we're committed to ensuring that you are treated fairly throughout our Recruitment Process. Should you be successful after the initial application stage, please discuss any reasonable adjustments that you may require, with your recruitment contact.

KPMG's commitment to diversity

We are proud of the value we place on individuality; we want you to bring your full self to work and truly maximise your potential. We believe that your individuality helps us to deliver the best results for our clients. Diversity of background, diversity of experience, diversity of perspective - that's the KPMG difference. But, don't take our word for it, find out more about diversity at KPMG.

Returning to work after a break
At KPMG, we appreciate that returning to work after an extended career break can be daunting. We understand that those with experience who have taken a career break have a wealth of experience and knowledge to offer our organisation, which helps us to achieve our business goals. We will support you to refresh your skills, develop your confidence and provide a supportive network across the firm to help you best integrate into the working environment. This role welcomes applications for individuals who have been out of work for 18 months or more and who have previous relevant experience.

Policy for Agencies

KPMG has a commitment to sourcing candidates directly and as such we do not accept speculative CV's from agencies. Please check here to see our policy on agencies: Policy

Job Segment: Corporate Security, Consulting, Law, Business Development, Security, Technology, Legal, Sales