Share this Job

Senior Penetration Tester - Cyber Security

Date: Jul 25, 2019

Location: London, United Kingdom

Company: KPMG UK

Using a wide variety of technical and sector-specific skills, KPMG's Risk Consulting group proactively helps clients increase profits whilst reducing reputational, operational, financial and other risks. We are experienced in managing diverse issues including fraud, regulatory compliance, risk frameworks and modelling, capital efficiency, corporate governance, dispute resolution, deriving value from contracts and much more.

Technology - Our clients need to deal effectively with technology related risks and derive maximum value from data and documentation. Our specialists provide independent, jargon free advice and advanced technology capabilities to help our clients proactively manage their technology risks and use their data to its full potential.

The Role
The role will be working in the Cyber Defence Services (CDS) Team within the cyber security department which is part of the Risk Consulting practice. Information Protection is one of the areas which KPMG has identified for tremendous investment and growth. Our clients need to deal effectively with technology related risks and derive maximum value from data and documentation.

• Delivery of penetration testing and incident response services to clients
• Project management of small engagements and end-to-end and support on larger engagements to deliver high quality work in a timely manner to include:
• Scoping
• Financial management
• Engagement and risk management
• Production and review of deliverables
• Liaising with clients on delivery, implementation and sales issues.
• Developing constructive client relationships, both inside and outside of KPMG
• Coaching and developing team members through sharing of experience and knowledge
• Supporting leadership of the team in the embedding effective working practices

Experience and Background
• Proven experience or working within the penetration testing industry
• Experience of dealing with cyber security incidents and associated response measures
• Proven ability to identify and assess complex information protection risks and controls
• Understanding of a wide range of information security and IT methodologies, principles, technologies and techniques.
• Experience in and an understanding of the Cyber risks faced by clients within a specific industry and the impact to their business
• A genuine interest and desire to work in the information security field

Qualifications and Skills
• Degree level qualified, MSc in Information Security, IT or relevant subject (preferred)
• Must have the following qualifications CREST Registered Tester (CREST CRT) and Offensive Security Certified Professional (OSCP)
• Must have experience in Vulnerability Assessment and Penetration Testing
• Must have experience with Web Application Security Testing
• Must have experience of performing Cyber Maturity Assessments
• Excellent communication skills

Job Segment: Corporate Security, Consulting, Law, Outside Sales, Security, Technology, Legal, Sales