Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead and coordinate SOC 2 assessments, ensuring compliance and effective information protection.
- Company: Join KPMG, a global leader in technology assurance with a collaborative culture.
- Benefits: Competitive salary, health benefits, and opportunities for professional growth.
- Why this job: Make a real impact in tech assurance while developing your career in a dynamic environment.
- Qualifications: Experience in information protection audits and strong project management skills required.
- Other info: Work with a diverse team and gain exposure to global technology practices.
The predicted salary is between 36000 - 60000 Β£ per year.
Technology Assurance Management services focus on management of certification, attestation and independent testing audits of global technology systems and services on the cloud, and alignment of efforts and efficiencies. Efficient and effective information protection audits provide required assurance for and permission to operate key KPMG technology solutions supporting client service delivery.
Responsibilities
- Plan for and coordinate multiple Service and Organization Controls (SOC) 2 readiness assessment and examination streams for several business and technology areas, coordinate auditor and key stakeholder meetings, gather requested evidence, track and report on progress and provide updates to stakeholders.
- Work closely with technology and business stakeholders to clarify compliance requirements and drive implementation of process improvements, provide leading practice and current guidance to control owners, assist in ensuring that controls are appropriately designed and effective and formally documented following global policies.
- Prepare executive management reporting on SOC2 efforts status, support the management of project risks.
- Identify methods to leverage testing for several certification, internal audit and attestation purposes and efficiently coordinate relevant activities.
- Oversee activities to ensure that audits are planned in advance, considering scope overlaps, stakeholder outreach and resource limitations, and managed according to procedures. Develops and implements PMO processes.
- Identify trends and propose robust solutions for challenges. Identify themes in information protection audit observations and suggest solutions to efficiently address based on industry experience, leading practices and global technology group context.
- Collaborate with other KPMGI/ GT&K teams, advising on suitable approach for auditable information protection practices and audit success, while ensuring minimum burden on business as usual activities.
- Proven experience in information protection, including leading and/or managing information protection controls assessments, such as those based on ISO27001, ISO27017 and SSAE18 / SOC 2 for cloud platforms (internal and/or external assessments).
- Program and project management skills and experience. Proven track record of leading multiple projects or programs, through the management of teams of cross-discipline specialists. Ability to multi-task, adapt strategy based on competing priorities and work independently within a global team. High quality results delivery with attention to detail.
- Experience of senior stakeholder management (including ability to efficiently articulate challenges), ability to apply forward thinking mindset, develop service strategy and understand business impact.
- Information security auditing experience and certifications a big plus, such as CISA or Certified ISO 27001 Lead Auditor.
- Strong cloud information protection audit experience that includes scoping, planning, performing, managing, reporting and remediation monitoring activities.
- Possess excellent business writing, reporting, presentation and communication skills in English.
- Strong SOC2 and IT operations knowledge. ISO27001 and ISO27017 standards and cloud security knowledge a big plus.
- Ability to manage but also be hands-on when required.
- Excellent communication and presentation skills, including executive reporting skills.
- Information security certifications would be a big plus, such as CISA or Certified ISO 27001 Lead Auditor.
Together with more than 276,000 colleagues in 138 countries throughout our member firms, people at KPMG imagine big ideas and bring solutions to life for clients both big and small. A role with KPMG International will open a world of opportunity in your career.
Attestation Manager in Bristol employer: KPMG International Cooperative
Contact Detail:
KPMG International Cooperative Recruiting Team
StudySmarter Expert Advice π€«
We think this is how you could land Attestation Manager in Bristol
β¨Tip Number 1
Network like a pro! Reach out to your connections in the industry, attend relevant events, and donβt be shy about asking for introductions. We all know that sometimes itβs not just what you know, but who you know that can land you that dream job.
β¨Tip Number 2
Prepare for interviews by researching the company and its culture. We recommend practising common interview questions and tailoring your answers to highlight your experience with SOC 2 and information protection. Show them youβre the perfect fit!
β¨Tip Number 3
Follow up after interviews! A quick thank-you email can go a long way in keeping you top of mind. We suggest mentioning something specific from your conversation to remind them why youβre the right choice for the Attestation Manager role.
β¨Tip Number 4
Donβt forget to apply through our website! Itβs the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive about their job search!
We think you need these skills to ace Attestation Manager in Bristol
Some tips for your application π«‘
Tailor Your Application: Make sure to customise your CV and cover letter for the Attestation Manager role. Highlight your experience with SOC 2 assessments and information protection controls, as this will show us you understand what we're looking for.
Showcase Your Skills: Donβt just list your qualifications; demonstrate how your project management skills and experience align with our needs. Use specific examples that reflect your ability to manage multiple projects and engage with senior stakeholders.
Be Clear and Concise: When writing your application, keep it straightforward. We appreciate clarity, so make sure your points are easy to follow and directly related to the responsibilities outlined in the job description.
Apply Through Our Website: We encourage you to submit your application through our website. Itβs the best way for us to receive your details and ensures youβre considered for the role. Plus, itβs super easy!
How to prepare for a job interview at KPMG International Cooperative
β¨Know Your SOC2 Inside Out
Make sure youβre well-versed in SOC2 requirements and how they apply to cloud platforms. Brush up on ISO27001 and ISO27017 standards too, as these will likely come up during your interview. Being able to discuss these frameworks confidently will show that youβre the right fit for the Attestation Manager role.
β¨Showcase Your Project Management Skills
Prepare examples of how you've successfully managed multiple projects or programmes in the past. Highlight your ability to coordinate teams and stakeholders effectively, especially in a global context. This will demonstrate your capability to handle the responsibilities outlined in the job description.
β¨Communicate Clearly and Effectively
Since this role involves senior stakeholder management, practice articulating complex challenges in a straightforward manner. Use clear, concise language when discussing your experiences and be ready to present your ideas confidently. Good communication skills are key to success in this position.
β¨Be Ready to Discuss Trends and Solutions
Think about recent trends in information protection audits and be prepared to discuss how you would address common challenges. Bring examples from your experience where you identified themes in audit observations and proposed effective solutions. This shows your proactive approach and industry knowledge.
