Regional Information Security Manager - Incident Response

Regional Information Security Manager - Incident Response

Location: Birmingham, Bristol, Glasgow, London, Manchester, Milton Keynes, Reading, Watford

Capability: International

Experience Level: Senior Manager

Type: Full Time

Business Area: KPMG International

Contract type: Permanent

About the Team

Global Information Security Group (GISG) is a domain within KPMG's Global Digital group that provides information protection and technology infrastructure and services to secure KPMG's technology environment and connect its network of member firms.

Role Summary

• Advise member firms on the implementation of KPMG information risk and security standards / requirements related to Incident Management.
• Recommend and support member firms to enforce defined security policies and global technology standard.
• Maintain an up-to-date knowledge base following global incident trends, security advisories and alerts, information on global standard and best practices.
• Vulnerability management and controls validation: evaluate and select vulnerability assessment and other security assessment capabilities, and deploy, operate and maintain these technologies and adjacent processes.
• Closely follow security trends and vulnerabilities, cyber security threats and provide feedback to Global security. Actively communicate and keep abreast of the latest trends in threat intelligence and incident response.
• Advise member firms how to best manage local incident response training to ensure readiness across regions.
• Advise and support member firms in improving the effectiveness of their event and incident management operation.
• Monitor and report a consolidated regional view of global technology standard adoption status and take action by following up on findings.
• Lead the assessment and provide recommendations on any exceptions to policies or standards.
• Lead and oversee regional incident triage activities and tracking of critical cybersecurity incidents from initial detection through final resolution.
• Lead and oversee incident escalation towards member firms and global teams.
• Work with Global security on red / blue teaming activities on regional level.
• Setting up and leading a community with the EMA region with respect to technical trends, vulnerabilities and incidents.
• Lead and oversee compliance with any applicable regulatory requirements for cyber incident.

Key Accountabilities

• Advise member firms on Global security standards for incident response and issues (adopting, monitoring).
• Deliver security reporting for incident response, escalations, and opportunities into Regional Information Security Officer (RISO).
• Facilitate meetings with Member Firms on implementation incident management processing and tools, including best practices.
• Capture specific Member Firm requirements for services and act as a conduit into RISO to recommend service updates.
• Provide support into Member Firms on incident management related matters.
• Support Security Incident Response processes across the Region.

Experience, Knowledge & Qualification

• Bachelor's degree in Computer Science, Information Security, Information Systems, Computer Engineering, or a related field is required.
• Proven experience developing or managing an enterprise level of security programs (focus on Incident Management).
• At least one industry certification preferred (e.g. CISSP, CISA, CISM, CRISC, ISAAP).
• Background working on large-scale international services and the ability to manage multiple processes and service delivery at once while building constructive working relationships across the different teams, functions, cultures, genders and demonstrating KPMG behaviours and values.
• Security Operations / Incident Management / Managed Security Services experience preferred.
• Working knowledge of multiple security topics such as threat intelligence, vulnerability management products, firewall management or endpoint protection.
• Deep knowledge of cyber kill chain and understanding of threat intelligence lifecycle.
• Strong knowledge of computer networking concepts and protocols (including OSI and TCP/IP layer models) and network security methodologies.
• Strong knowledge of intrusion detection methodologies and techniques for detecting host and network-based intrusions.
• Experienced in deployment and maintenance of Microsoft products.
• Keeps abreast of security related technology, practices and regulations in the marketplace and validates tools for use to improve the Managed Security Services offerings.
• Experience in working in a matrix management environment.
• Working knowledge of common IT security-related regulations and or standards such as Sarbanes Oxley and ISO highly desired.
• Strong oral and written communication skills.
• Must have strong analytical and critical thinking skills.
• Expertise in conducting incident response activities and seeing incidents through to successful remediation across multiple geographies.

Accessibility and Reasonable Adjustments

KPMG International is proud to be an inclusive place to work and we are committed to ensuring that you are treated fairly throughout our recruitment process. If you require reasonable adjustments, please discuss them with your recruitment contact.

Commitment to Inclusion & Diversity

KPMG International recognises that inclusion and diversity are essential for success and strives to attract, retain, and develop diverse talent at all levels, creating a fully inclusive environment that empowers everyone.