Share this Job

Cyber Security Senior Manager - Risk and Regulatory

Date: Jan 15, 2021

Location: London, United Kingdom

Company: KPMG UK

KPMG Cyber

KPMG has been acknowledged by Forrester as a leader in the provision of cyber security consultancy. We are investing to building out our Corporates cyber consulting team to meet a growing demand and provide a comprehensive range of services to many of the largest companies in the world.

We help out clients protect, detect and respond to high end cyber threats; helping them understand the cyber threat landscape, make sensible decisions on investment priorities, and build out the specialist capabilities they need to counter financial crime and other threats.

We believe that cyber security is about helping our clients to harness business opportunities safely and securely. For us, cyber security isn’t just a technical issue, it is one which engages the whole business and focusses on a holistic approach to understanding and mitigating the risk.

Our team works closely with KPMG’s broader advisory practice to link cyber security to privacy, fraud, risk management, operational resilience and IT transformation.

The Role

This role requires previous experience in both business development, delivery and service ownership of Cloud Security, with excellent knowledge of digital technology for cloud security solutions, and cloud security risk and controls experience. The ability and credibility to advise our clients to select, design and implement complex cloud security solutions is essential. The successful candidate will be involved in client facing and client relationship building across all our key Corporates clients.

Roles and Responsibilities:
• Actively identifying and progressing business development opportunities for Cloud Security, as well as managing sales activities such as responding to RFPs, bid management, proposal writing and client presentations.
• Lead multiple client engagements.
• Understand risk and regulatory related client issues across different sectors.
• Responsibility for the overall output from client engagements. This includes providing services to implement cloud security related technology solutions, risk management, regulatory management and controls monitoring.
• A working knowledge of cyber security regulation, standards and methodologies.
• Work in a team and follow KPMG methodologies to deliver excellent cyber risk and regulatory services.
• Scoping, financial management, managing delivery risk, production and review of deliverables.
• Building and managing excellent client relationships across a range of clients.
• Developing internal networks and maintaining excellent relationships with colleagues across KPMG, but within the wider Cyber and Regulatory Risk and Transformation Advisory areas.
• Contributing to innovation and practice management, e.g. new services, training, knowledge management for the Cloud Security capability
• Coaching and developing team members both as part of our overall Performance Management process or on specific engagements.
• Ability to identify and assess complex cloud security threats and risks, to relate them to the wider business environment and to express opinions clearly to all levels of management.

The Person

Experience and Skills:

• Proven experience of successfully architecting, integrating, managing and delivering cloud security services (including implementations, creating business cases and roadmaps, assurance reviews and maturity assessments) to medium/large, multi-national clients.
• Experience in certain key sectors - Corporates.
• Ability to align client and sector specific issues to our services.
• Delivered or involved in several cloud security risk management engagements which have included a technology workstream and implementation.
• Experience in transformation and business change programmes.
• Advising clients that operate digital technology solutions on business risks, regulations, controls, benefits, solution fit and typical challenges.
• Functional experience of cloud security risk and controls
• Familiarity with regulatory compliance models and standards
• Great relationship/stakeholder management skills at all levels.
• Proven communication and presentation skills.
• Proven experience of successfully delivering digital technology risk services.
• “Big 4” professional services or dynamic IT consultancy environment experience.

Qualifications:
• Cyber security qualification e.g. CISSP / CISM (required)
• SAP Security certification (desirable)
• Information Security auditing qualification e.g. CISA (desirable)
• Degree or Masters qualification in Cyber, Information Security or IT management (desirable)
• Project management qualification e.g. Prince II, MSP or PMI (desirable)




Job Segment: Risk Management, Regulatory Affairs, Law, Consulting, Finance, Legal, Security, Technology