Cyber Defence Services - Consultant

Cyber Defence Services – Consultant – 107127

Base Location: UK (Hybrid) www.kpmg88careers.co.uk/experienced-professional/#LeBlender.OfficeLocations

The KPMG Connected Technology function is a cornerstone of our business. We do work that matters to our local business and communities – supporting technical innovation and adoption of cutting-edge solutions across the UK. Working on complex engagements in Identity & Access Management this team is responsible for the delivery of cutting-edge technical solutions and trusted to get it right first time.

KPMG is one of the world\’s largest and most respected consultancy businesses, we\’ve supported the UK through times of war and peace, prosperity and recession, political and regulatory upheaval. We\’ve proudly stood beside the institutions and businesses which make the UK what it is.

Why Join KPMG Technology and Engineering as a Cyber Defence Services – Consultant?

At KPMG we are looking for a Consultant who lives and breathes hacking and information security. You will be ready to jump into delivering CHECK work, and assessments across the private sector.

In return we will provide some of the UK’s most unique government and commercial engagements for you to cut your teeth on and a friendly, passionate team to develop and grow.

The KPMG’s Cyber Defence (CDS) Team conducts client facing technical assurance and penetration testing and has a long and successful history in KPMG. Our clients are diverse and we cover many sectors with particular specialisms in Financial Services, High-end Defence Assurance and Telecommunications. We work closely with the NCSC developing new schemes such as Cross Domain Solutions Testing (https://www.ncsc.gov.uk/blog-post/ncsc-cross-domain-industry-pilot-stage-2) and are members of all current NCSC and CREST testing schemes – as a result we conduct interesting and challenging work that isn’t on offer elsewhere.

Our team is made up of skilled individuals at different stages in their careers, centred around three locations in Leeds, Bristol and London, therefore we are able to offer flexibility in base location, as well as embracing remote working.

What will you be doing?

Aspects of the role include:

• HACKING!
• Learning and developing penetration testing skills in: Infrastructure, Application (web, mobile, desktop), Cloud and AI. Working through a clear and defined certification pathway.
• Delivering penetration tests to some of our most prestigious clients through well established frameworks.
• Collaborating with senior testers to identify vulnerabilities and simulate real-world attack scenarios.
• Documenting findings in clear, actionable reports to help clients enhance their posture.
• Staying up-to-date with the latest treds, tooling, techniques to continuously improve testing approaches.

What will you need to do it?

• Some demonstrable practical experience in penetration testing and vulnerability assessments
• Understanding of common vulnerabilities and how to exploit or mitigate them.
• Basic Knowledge of network security, application security and cloud security principles.
• A passion for all things hacking and the drive to learn more.
• Excellent communication and report writing skills.

Amazing Extras

• Experience in generating and writing clear, concise and actionable penetration testing reports
• Hands-on familiarity with tools such as Burp Suite, Nessus, Qualys and other industry testing tools.
• Experience to scripting or automation tools, such as Python, Bash or PowerShell.
• Desirable to have any penetration testing qualifications (CompTIA, CPSA or OSCP) but by no means essential.

Qualifications and Skills

Qualifications are a good way to demonstrate knowledge but are not the be all and end all, our team is made up of a large number of individuals with diverse backgrounds who all share the “hacker mindset”.

If you have the experience, then we want you to apply. Didn’t do a degree in information security? A-Levels weren’t as good as you hoped. Haven’t attended every SANS course going, we don’t mind!

Above all, KPMG is looking for someone who is passionate about helping our clients (including the UK Government) with their cyber security challenges. In return, we are committed to helping you enjoy the role and develop your skills and career within the KPMG network.

To discuss this or wider Consulting roles with our recruitment team, all you need to do is apply, create a profile, upload your CV and begin to make your mark with KPMG.

Find out more:

Within Consulting we have a range of divisions and specialisms. Click the links to find out more below:

• Consulting at KPMG: www.kpmgcareers.co.uk/experienced-professional/consulting/
• ITs Her Future Women in Tech programme: www.kpmgcareers.co.uk/people-culture/it-s-her-future/
• KPMG Workability and Disability confidence: www.kpmgcareers.co.uk/experienced-professional/applying-to-kpmg/need-support-let-us-know/

For any additional support in applying, please click the links to find out more:

• Applying to KPMG: www.kpmgcareers.co.uk/experienced-professional/applying-to-kpmg/
• Tips for interview: www.kpmgcareers.co.uk/experienced-professional/applying-to-kpmg/application-advice/
• KPMG values: www.kpmgcareers.co.uk/experienced-professional/applying-to-kpmg/our-values/
• KPMG Competencies: www.kpmgcareers.co.uk/experienced-professional/applying-to-kpmg/kpmg-competencies/
• KPMG Locations and FAQ: www.kpmgcareers.co.uk/faq/?category=Experienced+professionals