Senior Associate, Cyber Operations (shift work)

Known for being a great place to work and build a career, KPMG provides audit, tax and advisory services for organizations in today's most important industries. Our growth is driven by delivering real results for our clients. It's also enabled by our culture, which encourages individual development, embraces an inclusive environment, rewards innovative excellence and supports our communities. With qualities like those, it's no wonder we're consistently ranked among the best companies to work for by Fortune Magazine, Consulting Magazine, Seramount, Fair360 and others. If you're as passionate about your future as we are, join our team.

KPMG is currently seeking a Senior Associate, Cyber Operations to join our Enterprise Security Services organization. This is a remote work opportunity.

Responsibilities:

• Utilize your expertise in IT security, security operations, and incident response to enhance and maintain robust 24x7 cybersecurity operations, ensuring swift and effective handling of incidents and ongoing protection of organizational assets
• Handle and coordinate tasks such as incident management, threat hunting, forensic analysis, and remediation efforts to mitigate threats; conduct regular assessments to identify vulnerabilities and insecure configurations and review security change requests to ensure robust protective measures
• Configure and monitor security tools, including alerts, correlation rules, and reporting mechanisms; implement automation and orchestration to improve the efficiency and effectiveness of security monitoring and response processes, aiming for a unified "single pane of glass" solution
• Leverage intelligence to apply threat monitoring and vulnerability detection to evaluate and respond effectively to events and developing risk severity level and mitigation approaches, incorporating feedback and lessons learned into enhanced preventive and detective controls
• Stay updated on the latest security practices and technologies, mentor the team through knowledge-sharing sessions, and build strong relationships with internal tech groups to ensure strategic alignment and foster collaboration
• Develop work product(s) and support small projects, threat assessments, and incident investigations while managing deadlines, expectations, and contributing to staffing decisions

Qualifications:

• Minimum three years of experience in cybersecurity operations with experience executing processes and playbooks in cybersecurity monitoring and incident response activities
• Bachelor's degree from an accredited college or university is preferred; relevant certifications such as: CISSP, CCSP, CCSK, GSEC, GCIH, GCFE, GCFA, SC-200, CEH, and AZ-900 are preferred
• Experience with scripting or automation, and ServiceNow ticketing is a plus
• Work Schedule: 10-hour shifts, Sunday-Wednesday or Wednesday-Saturday. Flexibility is required to adapt to business needs.
• Excellent verbal/written English communication, collaboration, analytical and presentation skills; effectively communicate risk, technical information, and host meetings effectively in a matrixed environment
• Experience with on prem and Azure Cloud environments; EDR experience required
• Must be authorized to work in the U.S. without the need for employment-based visa sponsorship now or in the future. KPMG LLP will not sponsor applicants for U.S. work visa status for this opportunity (no sponsorship is available for H-1B, L-1, TN, O-1, E-3, H-1B1, F-1, J-1, OPT, CPT or any other employment-based visa)