Share this Job

Information Security Engineer - GSOC automation

Date: Apr 10, 2021

Location: London, United Kingdom

Company: KPMG UK

The Team
ITS Global (Information Technology Services Global) is one of four pillars within KPMG’s Global Technology & Knowledge group. As such, ITS Global provides innovative components that KPMG’s business functions and member firms use to deliver client-facing solutions. ITS Global also provides the information protection and technology infrastructure that secures KPMG’s technology environment and connects its network of member firms. ITS Global works with the other GT&K pillars to provide KPMG technology solutions that leverage world-leading partnerships, disruptive digital capabilities and access to the firm’s collective intelligence.

The Role

KPMG’s Global Security Operations Centre helps defend KPMG and its clients from cyber-attack, through timely detection, investigation and remediation of potential threats.

The purpose of the Information Security Engineer role is to ensure sound delivery of technical projects, systems and services for the GSOC. Information Security Engineer will be responsible for customisation, maintenance and support of various security monitoring platforms and provide a mixture of project delivery, system integration, maintenance and support around the GSOC platforms including Microsoft Azure Sentinel platform and Microsoft ATP security suite. The Information Security Engineer will be part of a team working in a fast paced environment driving performance, reliability and supporting the GSOC tools and infrastructure hosted on Physical and Cloud platforms delivering SOC services.

The successful candidate for this role will have strong analytical and troubleshooting skills, experience in integrating multi technology platforms and brands of product, solid communication skills and a desire to tackle the complex problems of scale which are unique.

• Adhere to strict Service Level Agreements for fault resolutions and service requests completions
• Maintain a good working knowledge of current infrastructure and future trends
• Deliver an excellent customer service
• Ensure leadership are aware of all issues
• Identify, liaise and manage any escalated faults with 3rd party suppliers for major incidents, network improvements or correction of recurring problems
• Ensure work is completed in such a way that complies with established compliance and other internal control requirements
• Exercising judgment within defined procedures and practices to determine appropriate action

Technical Skills & Qualifications
• Experience with industry recognized SIEM solutions preferably with Azure Sentinel
• Experience with Query Languages preferably KQL
• Knowledge and solid experience with PowerShell, Python and other scripting languages
• Knowledge of MS Azure & O365 Solutions preferable
• Experience with configuring and using SOAR tools preferably Demisto and/ or Azure Logic Apps w/o Azure Functions

Experience & Knowledge
• Experience working with vendors and various solution providers
• Demonstrated ability to document processes and procedures.
• Excellent written and oral communications

Job Segment: Information Security, Technology, Security