Share this Job

Security Operations Specialist- Solutions & Digital

Date: Nov 25, 2018

Location: London, United Kingdom

Company: KPMG UK

AutoReq ID129955BR
Job TitleSecurity Operations Specialist- Solutions & Digital
CountryUnited Kingdom
LocationLondon
FunctionSolutions & Digital
Service LineSolutions & Digital
Service Line InformationSolutions & Digital services the broader Firm through delivery of core technology and managed services capabilities, collaboration and innovation development services and building our Alliances network.

KPMG OverviewJoining KPMG means joining a talented team of exceptional colleagues who bring innovative thoughts and a natural curiosity to the work they do each day. No one type of person succeeds at KPMG; a diverse business requires diverse personalities, characters and perspectives. There really is a place for you here.

Job DescriptionThe Team


Joining our TechSolutions business, the Security Operations Specialist will play a key part in the Security Operations team, responsible for the day to day monitoring and review of security across KPMG TechSolutions hosting environments, covering Private and Public Cloud. The role will involve, as a technical subject matter expert; communicating on operational security matters with stakeholders within TechSolutions and the wider KPMG business; and external clients. This role will also involve supporting the Security Operations Manager to drive continued improvement of the overall security posture. This role will report into the Security Operations Manager in TechSolutions.

The Role


- Day to day monitoring of security controls across TechSolutions estates; covering activities such as log inspection, access reviews, quality assurance and incident response.
- Operation and optimisation of security tooling/products, including anti-virus, patch management, encryption technologies, network security (IDS/IPS/Firewalls), logging and auditing, event and incident management, privileged access management.
- Responsible for security incident response; preparation, identification/analysis, containment, investigations, communications, recovery and lessons learnt.
- Responsibility for the security testing of the TechSolutions managed environments. This shall include overseeing penetration testing, IT health checks and vulnerability scanning. The role would entail scoping and supporting tests on a periodic basis and driving remediation plans.
- Maintaining the security operations risk register.
- Making recommendations to improve operational effectiveness and secure logical/physical access processes.
- Provide subject matter expertise to internal and external Clients on processes for information security and protection.
- Working with the business relationship managers to develop the security relationship with clients.
- Accountable for infrastructure change as a member of the Change Advisory Board.
- Documentation creation and review.

The Person


Must-have skills
- Experience in a security operations center (or similar) for a medium to large enterprise.
- Experience in a technology role; ideally security, although infrastructure or service desk orientated is acceptable
- Experience with Cloud-hosted environment – particularly client-facing digital applications.
- Experience in working with security tools such as vulnerability scanning/ Anti-Virus/patch deployment/centralized logging/privilege access management
- Good experience and technical understanding of Public and Private Cloud technologies such as AWS, Azure and VMware NSX.
- Hands-on experience in operating under Information Security accreditations – such as ISO27001 and those with a cloud-focus such as ISO 27017/18, CSA Star.
- Excellent information analysis and dissemination skills.
- Excellent verbal and written communication skills.
- Experience with working with senior technical and non-technical stakeholders.
- Strong and demonstrated team working experience.
Preferred Skills
- Strong attention to detail; concise yet meaningful reporting and presentation of technical information, often to non-technical stakeholders.
- Experience working in a fast paced role; able to effectively prioritise and deliver multiple work streams.
- Creative problem solving ability, working in ambiguous situations.
- Obsessive customer service orientation.
- A strong focus on business outcomes.
- Strong educational background with a degree preferably in Information Security or related field.
- High degree of personal motivation and ability to self-manage.
- Managing operational information security in Financial and Public Sector environments.

Preferred Qualifications


- CISSP, CISM, CEH, SSCP
- CCP
- Networking Certification (CCNA or similar)
- Cloud Certification (CCSP or similar)
- IT Management Certification (ITIL or similar)

Our DealAt KPMG, your long-term future is every bit as important to us as it is to you. That’s why our aim is to give you experiences that will stay with you for a lifetime. Whether it’s great training and development, mobility opportunities or corporate responsibility volunteering activities – you’ll gain a wealth of experiences on which to build a rewarding career. We’re a firm that encourages you to be yourself, values your contribution, and inspires you to act as a role model, always focused on doing the right thing for each other, our clients and our communities.

We’re at our best when you’re at your best; that’s why we’ve created ‘Our Deal’ and ‘The Academy’. Our Deal is the way we speak about the colleague experience and the expectations we have of our people. We expect the best from our people and in return we provide a stimulating, collaborative environment where each person can reach their extraordinary potential. Through ‘The Academy’, you’ll have access to communities which will support and develop you so that you build your skills and career. From introducing secondment programmes to preferential banking, and student loan payments to your birthday off, we’re making sure that our people have an amazing experience.

Flexible WorkingWhile our client-facing professionals can be required to travel regularly, and at times be based at client sites, our flexible working arrangements can help you to achieve a balanced lifestyle. We offer part time roles with flexible working arrangements which could include, annualised hours, early or late starts to fit around other commitments, shorter working days etc. We are happy to discuss your own requirements and our range of flexible working arrangements in more detail, should that be of interest and, as part of the recruitment process, we can put you in touch with people who work flexibly.

Applying with a DisabilityKPMG are proud to be an inclusive, equal opportunity employer and we seek to attract and retain the best people from the widest possible talent pool. As a member of the Business Disability Forum we're committed to ensuring that all candidates are treated fairly throughout the Recruitment Process. Should you be successful after the initial application stage, please discuss with your recruitment contact any reasonable adjustments to our Recruitment Process that you may require.

KPMG's commitment to diversity

KPMG consistently features in the Sunday Times Best Big Companies to work for, which has been recognised with a special achievement award to mark our 10 years in the Top 25. We pride ourselves on being a place where your individuality is valued; you can be yourself and still achieve your potential. We believe that your individuality helps us to deliver the best results to our clients. Diversity of background, diversity of experience, diversity of perspective - that's the KPMG difference. But, don't take our word for it, find out more about diversity at KPMG by viewing our Policy

Policy for Agencies

KPMG has a commitment to sourcing candidates directly and as such we do not accept speculative CV’s from agencies. Please check here to see our policy on agencies: Policy


Job Segment: Operations Manager, Corporate Security, Cisco, Operations, Security, Technology