Manager Global Information Security Guardrails Assessment

Company: KPMG
Location: Anchorage
Posted on: August 7, 2022

Job Description:

Known for being a great place to work and build a career, KPMG provides audit, tax and advisory services for organizations in today's most important industries. Our growth is driven by delivering real results for our clients. It's also enabled by our culture, which encourages individual development, embraces an inclusive environment, rewards innovative excellence and supports our communities. With qualities like those, it's no wonder we're consistently ranked among the best companies to work for by Fortune Magazine, Consulting Magazine, Working Mother Magazine, Diversity Inc. and others. If you're as passionate about your future as we are, join our team. KPMG is currently seeking a Manager, Global Information Security Guardrails (GCSG) Assessments to join our Global Information Technology Group which is part of KPMG International.Responsibilities:Plan, execute and report on assessments of cloud platforms against the Global Information Security Guardrails (GCSG)Provide feedback for risk treatment planning and remediation progress for gaps identified during the assessments, monitor and report on remediation progressPrepare management reporting on assessment results and potential risks.Develop training and awareness materials and collaborate with other global, regional and local groups to raise awareness for the GCSG and deliver trainingContribute to the development, maintenance and enhancement of the GCSG program framework, materials, process and procedures and the supporting technology solutionsProvide SME input to overall efforts for GCSG automation (including deployment, monitoring and assessment)Qualifications:Minimum five years of recent combined experience in information protection assessment experience and cloud security experience within a corporate environment (global companies preferred)Bachelor's Degree from an accredited college or university or equivalent work experienceCloud technology and security certifications a plus (e.g. Microsoft Azure Solutions Architect Expert, Azure Security Engineer Associate, Microsoft DevOps Engineer Expert, CCSK, CISSP, CCSP, CISA, CEH, OSCP)Good understanding of industry leading practices and standards on information technology and cloud security, including NITSO 800-53, ISO 27001 and 2701 and cloud platform governance tools for Azure (e.g. Azure Policy, Blueprints, Azure Resource Graph etc.)Practical experience with ServiceNow Governance, Risk, and Compliance (GRC) Integrated Risk Management (IRM) administration and /or use Strong experience planning, executing, managing and reporting skills for information security assessments of cloud platformsGood understanding of cloud security governance (preferably Azure), cloud automation, infrastructure as code (ARM, Bicep, terraform etc.) and policy as code leveraging tools such as Azure Policy, Blueprints, Azure Resource Graph etc Colorado Salary Statement: The salary range displayed is specifically for those potential hires who will work or reside in the state of Colorado if selected for the role. Any offered salary is determined based on internal equity, internal salary ranges, market data/ranges, applicant's skills and prior relevant experience, certain degrees and certifications (e.g. JD/technology), for example. Colorado Salary Range: Low: $93600 - High: $176900 KPMG LLP (the U.S. member firm of KPMG International) offers a comprehensive compensation and benefits package. KPMG is an affirmative action-equal opportunity employer. KPMG complies with all applicable federal, state and local laws regarding recruitment and hiring. All qualified applicants are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other category protected by applicable federal, state or local laws. The attached link contains further information regarding the firm's compliance with federal, state and local recruitment and hiring laws. No phone calls or agencies please. At KPMG, any partner or employee must be fully vaccinated or test negative for COVID-19 in order to go to any KPMG office, client site or KPMG event. In some circumstances, individuals who are not fully vaccinated may also be required to have a reasonable accommodation to not be fully vaccinated for COVID-19.

Keywords: KPMG, Anchorage , Manager Global Information Security Guardrails Assessment, Executive , Anchorage, Alaska