Technical Lead - Penetration Testing Senior Manager - CCSAS / CCSAM
- Employer
- KPMG
- Location
- London, United Kingdom
- Salary
- Competitive
- Closing date
- 3 Sep 2019
View more
- Recruiter Type
- Direct Employer
- Sector
- Consultancy
- Job Role
- Risk Analyst
- Job Type
- Permanent
You need to sign in or create an account to save a job.
KPMG has been acknowledged by Forrester as a leader in the provision of cyber security consultancy. We are investing to building out our cyber consulting team to meet a growing demand and provide a comprehensive range of services to many of the largest financial services companies in the world.
We help out clients protect, detect and respond to high end cyber threats; helping them understand the cyber threat landscape, make sensible decisions on investment priorities, and build out the specialist capabilities they need to counter financial crime and other threats.
We believe that cyber security is about helping our clients to harness business opportunities safely and securely. For us, cyber security isn't just a technical issue, it is one which engages the whole business and focusses on a holistic approach to understanding and mitigating the risk.
Our cyber practice works closely with KPMG's broader advisory practice to link cyber security to financial crime and risk management, operational resilience and IT transformation.
Within the cyber practice our Cyber Defence Services (CDS) team undertakes penetration testing, red teaming and a variety of technical security reviews for some of the largest and most demanding clients in the world. Our clients include major banks, pharma, oil and gas, telecommunication and government organisations.
The Role
You will play a leading role within the Cyber Defence Services (CDS) team, helping drive the development of the business and taking responsibility for the oversight and delivery of some of our most demanding penetration testing and red team engagements. As a manager you will help raise the profile of the team, play a key part in making sure that we develop new CDS service offerings and help coach and mentor team members.
Responsibilities
Management and delivery of penetration testing services to clients to include the following:
o Scoping
o Financial management
o Engagement and risk management
o Production and review of deliverables.
- Reporting technical issues in business terms
- Developing constructive client relationships, both inside and outside of KPMG.
- Developing an understanding of KPMG's broader offerings to enable identification of business opportunities
- Actively identifying and progressing business development opportunities, as well as managing sales activities such as proposal writing and assisting with client presentations.
- Role modelling risk and engagement management practices.
- Coaching and developing team members through sharing of experience and knowledge.
- Continuous development of self and team, including managing client feedback.
- Monitoring quality of service and products to clients and carrying out improvement or development as necessary.
- Performance management of junior staff
The Person
- Proven experience of successfully managing and delivering projects on time and to budget.
- Proven experience working within the industry
- Clear and demonstrable understanding of penetration testing, including CESG accredited schemes such as CBEST, STAR, CPA, CHECK and CTAS. OSCP, CCSAS/CCSAM
- Demonstrable understanding and practical application of information security principles
- Proven experience of producing high quality deliverables working alone and as part of a team.
- Excellent communication skills
- Proven experience of secure coding practices
- Reverse engineering experience desirable
Qualifications and Skills
- Degree level qualified, MSc in Information Security, IT or relevant subject (preferred)
- Web-application penetration testing experience preferred
- Programming skills, .NET
- Excellent communication skills (both written and oral) and project management skills
- Clearances required - eligibility for SC or DV is desirable
Job Segment: Telecom, Telecommunications, Information Technology, IT Manager, Consulting, Technology
We help out clients protect, detect and respond to high end cyber threats; helping them understand the cyber threat landscape, make sensible decisions on investment priorities, and build out the specialist capabilities they need to counter financial crime and other threats.
We believe that cyber security is about helping our clients to harness business opportunities safely and securely. For us, cyber security isn't just a technical issue, it is one which engages the whole business and focusses on a holistic approach to understanding and mitigating the risk.
Our cyber practice works closely with KPMG's broader advisory practice to link cyber security to financial crime and risk management, operational resilience and IT transformation.
Within the cyber practice our Cyber Defence Services (CDS) team undertakes penetration testing, red teaming and a variety of technical security reviews for some of the largest and most demanding clients in the world. Our clients include major banks, pharma, oil and gas, telecommunication and government organisations.
The Role
You will play a leading role within the Cyber Defence Services (CDS) team, helping drive the development of the business and taking responsibility for the oversight and delivery of some of our most demanding penetration testing and red team engagements. As a manager you will help raise the profile of the team, play a key part in making sure that we develop new CDS service offerings and help coach and mentor team members.
Responsibilities
Management and delivery of penetration testing services to clients to include the following:
o Scoping
o Financial management
o Engagement and risk management
o Production and review of deliverables.
- Reporting technical issues in business terms
- Developing constructive client relationships, both inside and outside of KPMG.
- Developing an understanding of KPMG's broader offerings to enable identification of business opportunities
- Actively identifying and progressing business development opportunities, as well as managing sales activities such as proposal writing and assisting with client presentations.
- Role modelling risk and engagement management practices.
- Coaching and developing team members through sharing of experience and knowledge.
- Continuous development of self and team, including managing client feedback.
- Monitoring quality of service and products to clients and carrying out improvement or development as necessary.
- Performance management of junior staff
The Person
- Proven experience of successfully managing and delivering projects on time and to budget.
- Proven experience working within the industry
- Clear and demonstrable understanding of penetration testing, including CESG accredited schemes such as CBEST, STAR, CPA, CHECK and CTAS. OSCP, CCSAS/CCSAM
- Demonstrable understanding and practical application of information security principles
- Proven experience of producing high quality deliverables working alone and as part of a team.
- Excellent communication skills
- Proven experience of secure coding practices
- Reverse engineering experience desirable
Qualifications and Skills
- Degree level qualified, MSc in Information Security, IT or relevant subject (preferred)
- Web-application penetration testing experience preferred
- Programming skills, .NET
- Excellent communication skills (both written and oral) and project management skills
- Clearances required - eligibility for SC or DV is desirable
Job Segment: Telecom, Telecommunications, Information Technology, IT Manager, Consulting, Technology
You need to sign in or create an account to save a job.
Get job alerts
Create a job alert and receive personalised job recommendations straight to your inbox.
Create alert