Share this Job

Threat Intelligence Manager

Date: May 30, 2019

Location: Watford, United Kingdom

Company: KPMG UK

AutoReq ID144997BR
Job TitleThreat Intelligence Manager
CountryUnited Kingdom
FunctionKPMG Business Services
Service LineQRM
Service Line InformationQuality and Risk Management are the responsibility of each partner and employee. This responsibility includes the need to understand and adhere to member firm policies and associated procedures in carrying out their day-to-day activities. UK Quality & Risk Management teams help to set, implement and enforce policies and procedures designed to help to enable KPMG UK and its personnel to achieve the following key objectives: (i) oversee and monitor service quality, (ii) protect the brand and reputation of KPMG, (iii) comply with laws, (iv) regulations and professional standards, and (v) minimize the risk of financial claims against KPMG UK.

KPMG OverviewKPMG is part of a global network of firms that offers Audit, Tax & Pensions, Consulting, Deal Advisory and Technology services. Through the talent of over 16,000 colleagues, we bring our creativity and insight to our clients’ most critical challenges.
With offices across the UK, we work with everyone from small start-ups and individuals to major multinationals, in virtually every industry imaginable. Our work is often complex, yet our vision is simple: to be the clear choice for our clients, for our people and for the communities we work in.

Job Description
Please note this role can be based at our Watford or other regional offices.

The role holder will be a key manager in the Information Assurance team, providing cyber and information security threat intelligence to strengthen KPMG UK’s situational awareness about current and emerging threats, supporting information risk-related decisions and activities. The role holder will have responsibility for the development and delivery of a threat intelligence capability which is insightful, contextual and actionable.

Key Stakeholders

- CISO/Head of Information Assurance
- Business and functional managers across the firm
- Chief Information Officer, Technology Information Security Officer and the IT security community in the firm
Key Responsibilities

Threat intelligence

- Manage the second line of defence threat intelligence capability and team
- Define and operate the requirements to direct the production of threat intelligence, including the selection of information sources (both internal and external to the firm) needed to support analysis
- Collect, process and analyse threat information
- Manage the relationship with any external providers of threat intelligence
- Communicate threat intelligence to relevant stakeholders to support evidence-based decision making
- Support the firm’s mission to build client trust and confidence with regard to information security generally and threat intelligence specifically
- Stay abreast of industry best practice in relation to threat intelligence

- Support the development of the UK firm’s information security policies, to ensure threat intelligence is reflected in policy controls
- Promote good information security practice and standards across the firm
- Risk management
- Manage the threat event catalogue used in the Information Risk Management framework
- Foster an environment that drives appropriate information risk control behaviour, including early anticipation, identification and mitigation of information risk, escalating issues in line with the Information Risk Management Framework.
Awareness and collaboration

- Establish strong relationships with business and functional teams
- Establish effective relationships with IT service providers and other relevant stakeholders
- Build on and preserve the firm’s reputation with clients, with regard to information security
Technical knowledge and qualifications

- Solid experience of information security with proven experience in a specific threat intelligence capacity
- Strong knowledge of threat intelligence sources and analysis methodologies
- Strong knowledge of information security standards (e.g. Cyber Essentials, ISF Standard of Good Practice for Information Security, ISO 27001, NIST Cybersecurity Framework, CIS Top 20 Controls)
- Good understanding of privacy requirements (including GDPR)
- Strong working knowledge of the IT security aspects of IT infrastructure (network and servers) and services, including Cloud computing
- Security certifications essential (CISSP or equivalent)

Leadership skills

- Experience of leading and inspiring others, providing guidance, mentoring and planning
- Ability to deal with a broad range of stakeholders at all levels, both internal and external, in a confident and assured manner
- Ability to prioritize and manage a complex workload, including multiple tasks for themselves and direct reports
- Strong influencing skills
Analytical skills

- Strong analytical and problem solving skills
- Proven ability to identify and articulate information security requirements, risks and issues, and to make clear decisions and recommendations
- Ability to understand business drivers and risk appetite and to align threat intelligence accordingly
Personal qualities

- A good team player, with the ability to act independently and exercise sound judgment
- Excellent communication skills, both written and verbal
- Multi-cultural awareness and sensitivity
- Strong integrity, independence and resilience
- Excellent attention to detail combined with strategic vision

Our Deal

Flexible Working

Our employees have many varied work schedules to suit their individual needs!

Our intelligent working options range from role sharing and flexible start and finish times, to home working and more informal arrangements agreed within teams.

Check out examples of KPMG employees enjoying different working patterns on our website and please do share your own individual requirements with us.

Applying with a DisabilityAs a member of the Business Disability Forum we're committed to ensuring a great experience for colleagues with a disability. Should you be successful after the initial application stage, please discuss any adjustments that you may require with your recruitment contact.

KPMG's commitment to diversity

We are proud of the value we place on individuality. We want you to bring your full self to work and maximise your potential. KPMG is a place where everyone can thrive, whatever their gender, ethnicity, disability, sexual orientation and socio-economic background.

Policy for Agencies

KPMG has a commitment to sourcing candidates directly and as such we do not accept speculative CV’s from agencies. Please check here to see our policy on agencies: Policy

Job Segment: Defense, Consulting, Claims, Risk Management, Database, Government, Technology, Insurance, Finance