IMSS Monitoring Manager
- Employer
- KPMG
- Location
- London, United Kingdom
- Salary
- Competitive
- Closing date
- 1 Oct 2019
View more
- Recruiter Type
- Direct Employer
- Sector
- Consultancy
- Job Role
- Risk Analyst
- Job Type
- Permanent
You need to sign in or create an account to save a job.
IMSS Monitoring Manager
The Team
KPMG's IMSS helps defend KPMG and its clients from cyber-attacks, through timely detection, investigation and remediation of potential threats.
The Role
The IMSS Monitoring Manager is responsible for the following:
• The role holder is responsible for deputizing for the IMSS Operations Manager in his/her absence
• The day to day availability of the IMSS Monitoring and Alerting (M&A) function.
• Mentor security analysts regarding risk management, information security controls, incident analysis, incident response, SIEM monitoring, and other operational tasks in support of technologies managed by the GSOC.
• Cyber Wargames scheduling, organizing and delivery.
• M&A management and operational reporting activity.
• Assist with Incident Management and Co-ordination, and out of hours incident escalation.
• Assist IMSS Operations Manager with Member Firm Interaction.
• Assist IMSS Operations Manager with operationalizing new monitoring technology.
• Assist audit and compliance entities with M&A aligned audit requests and requirements.
• Remain up to date with emerging adversarial threats, techniques and procedures.
• Remain up to date with existing and emerging monitoring and preventative security technologies in use within KPMG.
The Person
Qualifications, experience and skills
• 5 plus years of security experience preferable and 5 plus years of IT experience preferable Bachelor's Degree in Computer Science, Computer Networking, or Computer Security or equivalent
• CISSP or CISA or CISM Certifications or equivalent
Technical Skills
• Knowledge and experience of cloud technologies, in particular Microsoft Azure.
• Knowledge and experience of Windows defender.
• Advanced understanding of information security, border protection, incident handling & response, endpoint protection & encryption
• Strong understanding of computer science: algorithms, data structures, databases, operating systems, networks, and tool development
• Able to evaluate current people, processes, technology, and business drivers to improve the IMSS service.
• Network infrastructure knowledge, advanced knowledge of TCP/IP and Internet protocols.
• Experience with network packet and Netflow analysis, In-depth knowledge of infrastructure and operating systems.
• Policy and Standards, Incident Management, Prioritization, Technologies, Security, Testing, Monitoring, IT Change, Infrastructure, Application
• Understanding and experience using various security related exploits and tools
• Strong ability to communicate: write clearly and speak authoritatively to different audiences
• Advanced knowledge in; Firewalls, VPN, Intrusion detection and prevention systems, anti-virus and content filtering, URL filtering, authentication solutions, switches, routers, VoIP, DMZ.
• Ability to troubleshoot common network devices, network, vulnerabilities and network.
Optional
• Master's Degree preferred. Earned one or more of the following certifications:
• (GIAC Security Essentials Certification)
• GISP (GIAC Information Security Professional)
• GMON (GIAC Continuous Monitoring Certification)
• GCIH (GIAC Certified Incident Handler)
• CCFP (Certified Cyber Forensics Professional)
• CCNP (Cisco Certified Network Professional)
• Security toolset certification (vendor provided training, eg Checkpoint, etc.).
• Operate firewalls, intrusion detection systems, and various enterprise security management, endpoint assessment and asset inventory technologies
• Experience of RSA SIEM tool set (Security Analytics, Security Operations, Archer)
Job Segment: Cisco, Telecom, Telecommunications, Manager, Computer Science, Technology, Management
The Team
KPMG's IMSS helps defend KPMG and its clients from cyber-attacks, through timely detection, investigation and remediation of potential threats.
The Role
The IMSS Monitoring Manager is responsible for the following:
• The role holder is responsible for deputizing for the IMSS Operations Manager in his/her absence
• The day to day availability of the IMSS Monitoring and Alerting (M&A) function.
• Mentor security analysts regarding risk management, information security controls, incident analysis, incident response, SIEM monitoring, and other operational tasks in support of technologies managed by the GSOC.
• Cyber Wargames scheduling, organizing and delivery.
• M&A management and operational reporting activity.
• Assist with Incident Management and Co-ordination, and out of hours incident escalation.
• Assist IMSS Operations Manager with Member Firm Interaction.
• Assist IMSS Operations Manager with operationalizing new monitoring technology.
• Assist audit and compliance entities with M&A aligned audit requests and requirements.
• Remain up to date with emerging adversarial threats, techniques and procedures.
• Remain up to date with existing and emerging monitoring and preventative security technologies in use within KPMG.
The Person
Qualifications, experience and skills
• 5 plus years of security experience preferable and 5 plus years of IT experience preferable Bachelor's Degree in Computer Science, Computer Networking, or Computer Security or equivalent
• CISSP or CISA or CISM Certifications or equivalent
Technical Skills
• Knowledge and experience of cloud technologies, in particular Microsoft Azure.
• Knowledge and experience of Windows defender.
• Advanced understanding of information security, border protection, incident handling & response, endpoint protection & encryption
• Strong understanding of computer science: algorithms, data structures, databases, operating systems, networks, and tool development
• Able to evaluate current people, processes, technology, and business drivers to improve the IMSS service.
• Network infrastructure knowledge, advanced knowledge of TCP/IP and Internet protocols.
• Experience with network packet and Netflow analysis, In-depth knowledge of infrastructure and operating systems.
• Policy and Standards, Incident Management, Prioritization, Technologies, Security, Testing, Monitoring, IT Change, Infrastructure, Application
• Understanding and experience using various security related exploits and tools
• Strong ability to communicate: write clearly and speak authoritatively to different audiences
• Advanced knowledge in; Firewalls, VPN, Intrusion detection and prevention systems, anti-virus and content filtering, URL filtering, authentication solutions, switches, routers, VoIP, DMZ.
• Ability to troubleshoot common network devices, network, vulnerabilities and network.
Optional
• Master's Degree preferred. Earned one or more of the following certifications:
• (GIAC Security Essentials Certification)
• GISP (GIAC Information Security Professional)
• GMON (GIAC Continuous Monitoring Certification)
• GCIH (GIAC Certified Incident Handler)
• CCFP (Certified Cyber Forensics Professional)
• CCNP (Cisco Certified Network Professional)
• Security toolset certification (vendor provided training, eg Checkpoint, etc.).
• Operate firewalls, intrusion detection systems, and various enterprise security management, endpoint assessment and asset inventory technologies
• Experience of RSA SIEM tool set (Security Analytics, Security Operations, Archer)
Job Segment: Cisco, Telecom, Telecommunications, Manager, Computer Science, Technology, Management
You need to sign in or create an account to save a job.
Get job alerts
Create a job alert and receive personalised job recommendations straight to your inbox.
Create alert