Senior Associate, Cyber Treats Mgmt
KPMG
KPMG Advisory practice is currently our fastest growing practice. We are seeing tremendous client demand, and looking forward we do not anticipate that slowing down. In this ever-changing market environment, our professionals must be adaptable and thrive in a collaborative, team-driven culture. At KPMG, our people are our number one priority. With a wealth of learning and career development opportunities, a world-class training facility and leading market tools, we make sure our people continue to grow both professionally and personally. If you're looking for a firm with a strong team connection where you can be your whole self, have an impact, advance your skills, deepen your experiences, and have the flexibility and access to constantly find new areas of inspiration and expand your capabilities, then consider a career in Advisory.
KPMG is currently seeking a Lead Specialist, Cyber Security Compliance Lead to join our Managed Services practice.
- Make implementation recommendations for new solutions or updates to existing solutions to ensure compliance is factored in from the start of the software development lifecycle
- Design and compile compliance documentation from security packages to plans, policies, standards, and procedures
- Perform assessments to confirm solution compliance with different industry and government standards and frameworks
- Lead documentation delivery, evidence collection, and remediation reporting for client or third-party audits and assessments
- Contribute to development of core solution framework to bake compliance across clients into the Maintenance and Operations shared services model
- Minimum three years of recent experience in security and compliance
- Bachelor's degree from an accredited college or university in information technology, computer science, or related discipline, or equivalent work experience
- Skilled with application security controls design, implementation oversight, and testing as well as strong writing abilities
- Technical acumen to drive conversations with developers, system administrators, and operations teams with little security/compliance experience on regulatory requirements and how to satisfy them
- Knowledge on NIST SP 800-53, CMS MARS-E 2.2, FedRAMP, HIPAA, StateRAMP, SOC 2 Type II, and other relevant industry and government cyber security compliance standards and frameworks
- Basic understanding of cloud security (AWS, Azure, GCP) is expected
- Applicants must be currently authorized to work in the United States without the need for visa sponsorship now or in the future
https://kpmg.com/us/en/how-we-work/pay-transparency.html/?id=M105_4_24
California Salary Range: $84500 - $179900
KPMG LLP (the U.S. member firm of KPMG International) offers a comprehensive compensation and benefits package. KPMG is an affirmative action-equal opportunity employer. KPMG complies with all applicable federal, state and local laws regarding recruitment and hiring. All qualified applicants are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, citizenship status, disability, protected veteran status, or any other category protected by applicable federal, state or local laws. The attached link contains further information regarding the firm's compliance with federal, state and local recruitment and hiring laws. No phone calls or agencies please.
KPMG does not currently require partners or employees to be fully vaccinated or test negative for COVID-19 in order to go to KPMG offices, client sites or KPMG events, except when mandated by federal, state or local law. In some circumstances, clients also may require proof of vaccination or testing (e.g., to go to the client site).
KPMG recruits on a rolling basis. Candidates are considered as they apply, until the opportunity is filled. Candidates are encouraged to apply expeditiously to any role(s) for which they are qualified that is also of interest to them.
Los Angeles County applicants: Material job duties for this position are listed above. Criminal history may have a direct, adverse, and negative relationship with some of the material job duties of this position. These include the duties and responsibilities listed above, as well as the abilities to adhere to company policies, exercise sound judgment, effectively manage stress and work safely and respectfully with others, exhibit trustworthiness, and safeguard business operations and company reputation. Pursuant to the California Fair Chance Act, Los Angeles County Fair Chance Ordinance for Employers, Fair Chance Initiative for Hiring Ordinance, and San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.