You’ve got big plans. We have opportunities to match, and we’re committed to empowering you to become a better you, no matter what you do.
When you join KPMG you’ll be one of over 207,000 professionals providing audit, tax, advisory and business enablement services across 153 countries.
With the support to do things differently, grow personally and professionally and bring your whole self to work, there’s no limit to the impact you can make. Let’s do this.
Overview of the opportunity:
The Senior Security Analyst/DLP Administrator is primarily responsible for administrating and maintaining the Data Loss Prevention (DLP) system. The Analyst will be required to perform other Information Security related tasks as well.
The role requires an in-depth understanding of Information Security practices as well as a good understanding of Microsoft products (such as Windows, Outlook/Exchange/O365), the network (proxy servers, firewalls), databases and exposure to a DLP product (such as Symantec, McAfee or RSA).
The Analyst will be a member of the Information Security team at KPMG and work under the supervision of the Manager, Information Security.
What you will do:
The Senior Security Analyst will be responsible for monitoring KPMG Data Loss Prevention systems, both Host and Network-based, and help improve the implementation of those systems. The activity of monitoring includes daily review of the product consoles, analyzing the events, and determining which events are actionable. The Senior IT Security Analyst will need to interact with all KPMG business functions, bridging the gap between technical data and business objectives.
Responsibilities include but not limited to:
Perform daily monitoring and analysis of host and network alerts from the DLP product and investigate output.
Assist with resolution of operational product deployment, implementation, and technical issues.
Engage with business contacts and IT to identify sensitive data and monitor for unauthorized disclosures.
Resolve and document complex security incidents.
Interpret and summarize technical information for presentation to non-technical business contacts.
Develop and improve processes and procedures for data protection activities.
Prepare formal incident reports.
Generate reports and create dashboards for leadership
Create/update and maintain reporting dashboards using business intelligence and data analytics tools
Data Loss Prevention reporting, analysis, investigation and remediation
Be a secondary responder for cyber-security incidents.
Perform assessments of current security technology and authentication systems and evaluate against KPMG Security Policies, and other relevant regulations and best practice controls pertaining to the protection of corporate information assets with respect to security and privacy.
Advance IT Security policies, standards and procedures in conjunction with the application and technology teams responsible for the day-to-day systems configuration and operation.
Proactively audit the network security environment and provide actionable information pertaining to risk discovery and remediation technologies, techniques, and processes.
Assess and review new and existing technology infrastructure to identify key risk areas, and ensure adequate levels of control are in place to address those risks and develop risk mitigation techniques and processes to ensure that all reviews as actionable by system managers and the operations staff.
Consult, advise, and collaborate with department staff and personnel within ITS to coordinate data security related activities.
Assist other senior IT Security analysts with developing and implementing of a security incident response process and the maintenance of all associated documentation.
Update skills as necessary to support KPMG Security and remain knowledgeable of industry standards and advancements.
Role requires you to provide on-call after-hours support and you may be required to carry a pager.
Performs other security duties, when required.
Position may require on-call and after hours work, as needed to support KPMG business needs.
What you bring to the role:
Associate degree in a related technical field or equivalent experience.
CISSP, CISA, CISM or other similar Security certification
Microsoft MCSE/MCSA and/or Cisco certification preferred
Minimum of 4 years of progressive experience in information services, including two years in systems security with certification, maintenance and use of security products in a distributed enterprise environment.
Experience in compliance and /or audit
Minimum of 2 years’ experience in security operations/support
Must have experience and demonstrate knowledge and/or skills in the following areas:
Unstructured Data Protection
Data At Rest Scanning
Data Loss Prevention
Experience in Windows, CISCO routers and switches, Encryption, Defense Strategies, and Hacker Techniques.
Experience in complex multi-site LAN/WAN environments.
Experience with network applications, such as Firewall Security and Virtual Private Networking. Experience with Ethernet and TCP/IP.
Experience in Windows Active Directory.
Experience in PowerShell Scripting
Experience with business intelligence and data analytics tools (PowerBI, Tableau)
Knowledge of network and host IDS/IPS.
Familiarity working with databases (Oracle, SQL) schema, queries, entries, creation
Ability to analyze and understand technical information
Ability to author clear and concise incident reports
Ability to successfully interact with non-technical business contacts
Strong familiarity with data classification concepts and processes
Deep understanding of data loss and data protection processes
Experienced in a wide variety of technical solutions focused on data protection and cyber security
Learn more about where a career at KPMG can take you.