KPMG Digital Trust & Cyber helps organizations with tailored solutions for cyber security and data protection. Our professionals assist clients to address their concerns around Confidentiality, Integrity, Availability and Privacy of their technology, business systems, and information assets to build enterprise-wide security strategies to help move the organizations from reacting in crisis mode to having proactive, value-added business solutions, we help them carry security throughout their entire organization.
We are seeking for someone who have proven track record in cyber defense and incident response area with experience on penetration testing, red team, digital forensics, and incident response for professional working experience, within professional services or an in-house information security function.
What you will do:
- Advising and delivering projects on penetration testing, red teaming, digital forensics, and incident response.
- Support project and engagement management teams to deliver high quality work in a timely manner to include: scoping activities, production of deliverables, financial management & engagement and risk management.
- Developing constructive relationships, both internal and external, and support the business development activity of senior members of the team.
- Supporting leadership of the team in the embedding effective working practices.
- Recognize the importance of continuous self-development and actively strive to achieve this.
Desired Skills & Experience
- Excellent academic background in fields related to Computer Science, Cyber, Information Security, IT or relevant STEM subjects.
- Experienced in performing Web Application Security testing, Network Penetration Testing, Mobile Application Testing, Wireless Security Testing, Social Engineering, and Cloud Security Testing.
- Experienced in mimicking real-world adversary tactics, techniques, and procedures (TTPs) to evaluate organizational security postures
- Experience in identifying and exploiting weaknesses in a system's architecture to gain access and escalate privileges across environments.
- Experience in delivering detailed reports, including attack narratives, evidence collection, and recommendations for improving security.
- Ability to build strong and lasting internal and client relationships.
- Good English communication skills (both written and oral) and project management skills.
- Strong attention for detail and the ability to manage multiple simultaneous cases and flexibility to adapt to a variety of different engagement types, working hours and work environments and locations.
- Preferably hold one of the following certifications: OSCP, OSWE, OSCE, OSEE, OSWP, CEH & CRRP.
Only shortlisted candidates will be contacted by KPMG Siddharta Advisory Recruitment team. All applicants information and personal data will be treated as strictly confidential and used for recruitment purposes only.
