Skip to main content

This job has expired

You will need to login before you can apply for a job.

Incident Response - Assistant Manager

Employer
KPMG
Location
London, United Kingdom
Salary
Competitive
Closing date
2 Dec 2021

View more

Sector
Consultancy
Job Role
Risk Analyst
Job Type
Permanent
Job description
The Role
The role will be working in the Cyber Response Services (CRS) Team within our Risk Consulting practice. Cyber security is one of the areas which KPMG has identified for tremendous investment and growth. Our clients face a challenging cyber threat and look to us to help them understand and respond to that threat.
This is a hands-on role with opportunities to grow into management. The successful candidate is expected to manage cyber-security incidents as well as perform digital forensics (disk, volatile memory, network packets, logfiles) and help advance KPMG's proprietary in-house toolkit.
In this role we are looking for a person who can demonstrate strong technical background, experience in incident response and digital forensics and is looking to grow skills and experience. You will be expected to lead one or two analysts to achieve a task in a project, as well as have the opportunity to work with, and learn from, our most experienced team members as part of your continuous development.
When not responding to incidents, you will help our clients to build their in-house incident response capabilities, which will include: building and developing cyber-response tools, authoring and adapting runbooks/playbooks, assessing the incident response maturity, assisting in table-top cyber-scenario exercises.
We will welcome applications from candidate with a good competency in incident management, but with a developing competency and keen interest in digital forensics, or vice versa. KPMG will provide training and coaching to help you continually improve you skills. Strong technical competency - intermediate systems administration skills and programming skills to develop tools is highly desired.
Our clients expect that cyber-incidents will be tackled with urgency, therefore, there is an expectation that you will be flexible in terms of working hours. In return, KPMG will offer flexible working hours, on call allowances, a personal training budget and work from home days.
Above all, KPMG is looking for someone who is passionate about helping our clients with their cyber security challenges, often at a time of critical need. In return, we are committed to helping you to enjoy the role and develop your skills and career within the KPMG.

Responsibilities
  • Help manage and co-ordinate cyber security incidents for our clients, working closely with the incident management lead within the team.
  • Digital forensics of relevant incident data (disk, volatile memory, network packets, log files).
  • Maintaining a current view of the cyber threat, and being able to advise clients on the threat landscape and attacks which may be relevant to them.
  • Develop KPMG's in house cyber-response tools
  • Help assess client incident response capability maturity.
  • Help stand-up or improve clients' own incident response capabilities.
  • Help with project management of engagements to deliver high quality work in a timely manner, including:
    • Scoping
    • Basic financial management
    • Engagement and risk management
    • Production and review of deliverables.
  • Liaising with clients on delivery, implementation and sales issues.

The Person
This position is well suited for an individual with 3 to 5 years of experience in cyber-security and incident response. For example: a very common type of incident is ransomware on a single workstation/laptop. You should be able to guide a client through a structured incident response process - triage, containment, eradication and recovery. If you are provided with forensic data such as: disk image, memory image and network data capture or proxy logs, you should be able to identify malware artefacts, source of infection and use online research to identify malware family.

  • A broad understanding of the cyber security threat landscape.
  • Strong technical background in computers and networks, and programming skills.
  • Experience of dealing with cyber security incidents and associated response measures.
  • Experience of being part of an incident response team, either holding a formal role, or being able to evidence your personal contribution to the team.
  • Understanding of a wide range of information security and IT methodologies, principles, technologies and techniques.
  • A genuine interest and desire to work in the information security field.
  • Standing and positive reputation in the information security community is seen as a plus.

Get job alerts

Create a job alert and receive personalised job recommendations straight to your inbox.

Create alert