GSOC Senior Security Analyst

Can be fully remote with occasional London travel. KPMG International helps set the strategy and protects the reputation of this global organization of independent professional services firms providing Audit, Tax and Advisory services. We deliver value to our member firms and drive positive change in the communities we serve.

As part of the Global Information Security Group (GISG), the Information Security Services (ISS) team which includes the Global Security Operations Center (GSOC) helps defend KPMG and its clients from cyber-attacks, through timely detection, investigation and remediation of potential threats.

Responsible for the continuous investigation of correlated security event feeds and the appropriate escalation in case of an identified security incident. Assess and assist in the creation and improvement (fine-tuning, whitelisting, etc.) of correlation rules, processes and procedures and other related documentation. Work with Threat Intelligence and Vulnerability Management to monitor for emerging threat patterns and vulnerabilities.

• Act as Subject Matter Experts for analysis functions, providing support on more involved cases and guiding the activity of other analysts through collaboration.
• Investigate incidents using SIEM technology, packet captures, reports, data visualization, and pattern analysis.
• Analyze, escalate, and assist in remediation of critical information security incidents.
• Act as the lead coordinator for the GSOC’s response to individual cyber security incidents.
• Maintain documentation on residual risk, along with assignment of leadership owners and recommended steps for remediation.
• Identify and document containment and remediation efforts which successfully reduce risk.
• Responsible for taking action on alerts, events, and incidents escalated from the shift Analysts.

• Bachelor's Degree in Computer Science, Computer Networking, or Computer Security or equivalent experience; Master’s Degree preferred.
• Proven experience in a relevant security related role.
• Strong understanding of computer science: algorithms, data structures, databases, operating systems, networks, and tool development.
• Able to evaluate current people, processes, technology, and business drivers to help improve GSOC.
• Strong ability to communicate, write clearly and speak authoritatively to different audiences.
• CISSP, CISA, CISM Certifications or equivalent.
• Advanced skills in analysis and response in a hybrid cloud/on premise environment.
• Network infrastructure knowledge, advanced knowledge of TCP/IP and Internet protocols.
• Advanced understanding of information security, border protection, incident handling & response, forensics, endpoint protection & encryption.
• Willingness to provide out of hours on call support for L1 and L3 Security Analysts.

• GSEC (GIAC Security Essentials Certification).
• GISP (GIAC Information Security Professional).
• Security toolset certification (vendor provided training, e.g. Microsoft, etc.).

At KPMG International, we are supportive of helping you to achieve a balance between your home and work demands. We are happy to discuss individual requirements and our range of flexible working arrangements could be of interest.

KPMG International is proud to be an inclusive place to work and we are committed to ensuring that you are treated fairly throughout our recruitment process.