Share this Job

National Information Technology Security Officer

Date: Feb 16, 2021

Location: London, United Kingdom

Company: KPMG UK

ITS Global (Information Technology Services Global) is one of four pillars within KPMG’s Global Technology & Knowledge group. As such, ITS Global provides innovative components that KPMG’s business functions and member firms use to deliver client-facing solutions.


ITS Global also provides the information protection and technology infrastructure that secures KPMG’s technology environment and connects its network of member firms. ITS Global works with the other GT&K pillars to provide KPMG technology solutions that leverage world-leading partnerships, disruptive digital capabilities and access to the firm’s collective intelligence.



Role Summary
The KPMGI National Information Technology Security Officer (NITSO) serves as the primary contact for information security matters for KPMGI and manage all aspects of information risk and security within KPMGi pursuant to the NITSO role, including:
- Lead the NITSO team,as part of Security Management Services, provide guidance and performance management duties for team members.
- Coordinate the KPMGi compliance activities, reporting the results and remediation activities to the Global CISO and Global CIO.
- Responsible for the Client query process at a global level, in support of KPMG member firms.
- Contribute to management and maintenance of the ITS Global certification and attestation efforts.
- Liaising with KPMG NITSOs, Regional ISOs, and regional hosting security teams.


Key Accountabilities
- 10% - Together with Office of the Global CISO Lead, helps to drive IPG strategic priorities, and ensure that workload is ‘ balanced’ to the reflect demand across the Office of the NITSO activitie
- 20% - Responsible for the management and improvement of information security within KPMGi, and serve as the primary contact for KPMGi information security matters.
- 20% - Lead the NITSO team, as part of Security Management Services, provide guidance and performance management duties for team members
- 20% - Coordinate the KPMGi compliance activities, reporting the results and remediation activities to the Global CISO
- 20% - Act as prime point of contact for member firms for Member firm National IT Security Officers (NITSOs) for client security queries relation to global infrastructure, applications and systems, policies and security governance
- 10% - Contribute to management and maintenance of the ITS Global certification and attestation efforts.


“Everyone a Leader” Competencies
- Apply a strategic perspective: Uses diverse sets of inputs to develop a broad perspective on business and people issues
- Build collaborative relationships: Connects with individuals, teams and organizations to build lasting, collaborative relationships that enable global, firm-wide growth
- Foster innovation: Embraces a culture of innovation and experimentation to create value
- Drive quality: Delivers high-quality products and exceptional service that provide value and exceed client expectations
- Develop and motivate others: Engages teams, instills confidence, and coaches people to find meaning in their work and achieve exceptional results
- Champion inclusion: Creates an environment in which all people feel like they belong
- Drive quality: Delivers high-quality products and exceptional service that provide value and exceed client expectations
- Advance an ethical environment: Takes personal responsibility for the ethical environment of the firm and encourages others to do the same
- Apply a strategic perspective: Uses diverse sets of inputs to develop a broad perspective on business and people issues
- Make sound decisions: Exercises sound ethical and business judgment when making decisions
- Foster innovation: Embraces a culture of innovation and experimentation to create value
- Demonstrate self-awareness: Focuses on self-development and continuous learning, using insight to build capability and confidence
- Build collaborative relationships: Connects with individuals, teams and organizations to build lasting, collaborative relationships that enable global, firm-wide growth
- Develop and motivate others: Engages teams, instills confidence, and coaches people to find meaning in their work and achieve exceptional results


Technical Skills & Qualifications
- Professional security qualifications such as CISSP preferred but not essential. Applicant must be willing to obtain CISSP, if they are not already certified.


Qualifications
- A Bachelor’s degree in Information Technology or related field required; Masters’ preferred.
- Capable of strategic thinking and of moving strategic plans into action
- Experience managing and leading projects
- Experience in matrix management environment
- Experience with deploying and supporting large scale infrastructures and applications
- Demonstrated experience mentoring and coaching and developing team members


Experience & Knowledge
- Experience working in an information protection role, within a professional services or similar organisation.
- Expert knowledge in key information security processes – incident and change management, data breach regulations and processes, risk remediation, and disaster recovery.
- Confidence in dealing with staff, managers and partners across the firm.
- Thorough knowledge and understanding of global and regional issues and structures, and effective at working with people from many different cultural backgrounds.
- Strong business process analysis, performance assessment, project management and risk assessment skills.
- Thorough knowledge and experience with ISO27001, Santa Fe Institute SIG, SSAE16/ISAE3402 SOC reporting.
- Effective and efficient IT security audit skills.
- Excellent written and verbal communications skills










Job Segment: Information Technology, Security Guard, Security Officer, Information Security, Technology, Security