Overview
At KPMG, you’ll join a team of diverse and dedicated problem solvers, connected by a common cause turning insight into opportunity for clients and communities around the world.
The Opportunity
The
Security Analyst is primarily responsible for responding to SOC tickets, ITSM tickets and administrating/maintaining information security systems, policies and controls. The Analyst will be required to perform other Information Security related tasks as well, including acting as a backup to the DLP Administrator.
The role requires an in-depth understanding of Information Security practices as well as a good understanding of Microsoft products (such as the M365 suite of applications and operating systems), Vulnerability Management, Anti-Virus, Identify & Access management, the network (proxy servers, firewalls), databases and exposure to a DLP product (such as Symantec, McAfee or RSA).
The Analyst will be a member of the Information Security team at KPMG and work under the supervision of the Senior Manager, Information Security.
What You Will Do
The Security Analyst will be responsible for monitoring systems, both Host and Network-based, and help improve the implementation of those systems. The activity of monitoring includes daily review of the product consoles, analyzing the events/alerts/tickets, and responding/resolving these alerts/tickets. The IT Security Analyst will need to interact with all KPMG business functions, bridging the gap between technical data and business objectives.
Responsibilities include but not limited to
- Perform daily monitoring and analysis of host and network alerts and the investigate output
- Create and distribute daily status and compliance reports
- Assist with resolution of operational product deployment, implementation, and technical issues
- Engage with business contacts and IT to identify sensitive data and monitor for unauthorized disclosures.
- Investigate, process, and resolve open security tickets in the ITSM queue
- Develop & maintain live/near real-time PowerBI compliance dashboards
- Develop, update & maintain PowerShell scripts for automation
- Remediate cloud vulnerabilities, alerts & recommendation to increase posture
- Proactively audit the network security environment (cloud and on-prem) and provide actionable information pertaining to risk discovery and remediation technologies, techniques, and processes.
- Consult, advise, and collaborate with department staff and personnel within ITS to coordinate data security related activities
- Assist senior IT Security analysts with developing and implementing of a security incident response process and the maintenance of all associated documentation.
- Update skills as necessary to support KPMG Security and remain knowledgeable of industry standards and advancements
- Ability to prioritize, multi-task, meet deadlines, and manage expectations
- Performs other security duties, when required
Position may require on-call and after-hours work, as needed to support KPMG business needs
What You Bring To The Role
- Associate degree in a related technical field or equivalent experience
- CISSP, CISA, CISM or other similar Security certification
- Microsoft MCSE/MCSA and/or Cisco certification preferred
- Cloud Certifications (Azure, AWS, GCP) an asset
- Minimum of 2 years of progressive experience in information services, including one year in systems security with certification, maintenance, and use of security products in a distributed enterprise environment.
- Minimum of 1 year experience in security operations/support
- Experience in Windows & Linux Servers and Workstations, F5 load balancers, Cisco routers and switches, Encryption, Defense Strategies, Hacker Techniques, and a SIEM product or EDR solution
- Experience in complex multi-site LAN/WAN environments
- Experience with network applications, such as Firewall Security (NGFW & WAF) and Virtual Private Networking. Experience with Ethernet and TCP/IP
- Experience in Windows Active Directory, InTune, PowerBI, PowerShell
- Knowledge of network and host IDS/IPS
- Ability to analyze and understand technical information
- Ability to successfully interact with non-technical business contacts
- Familiarity with data classification concepts and processes
- Conceptual understanding of data loss and data protection processes
- Experienced in a wide variety of technical solutions focused on data protection and cyber security
Keys to your success
KPMG individuals
Deliver Impact | Seek Growth | Inspire Trust and understand that a diverse workforce enables us to deepen relationships and strengthen our business.
Providing you with the support you need to be at your best
For more information about KPMG in Canada’s Benefits and well-being, click here.
This is a remote/hybrid position.
Our Values, The KPMG Way
Integrity, we do what is right |
Excellence, we never stop learning and improving |
Courage, we think and act boldly |
Together, we respect each other and draw strength from our differences |
For Better, we do what matters
KPMG in Canada is a proud equal opportunities employer and we are committed to creating a respectful, inclusive and barrier-free workplace that allows all of our people to reach their full potential. A diverse workforce is key to our success and we believe in bringing your whole self to work. We welcome all qualified candidates to apply and hope you will choose KPMG in Canada as your employer of choice. For more information about Inclusion, Diversity & Equity in Recruitment, please click here.
For general recruitment-related inquiries, please contact the HR Delivery Centre at cafmcdnhrsthotline@kpmg.ca.
If you have a question about accessible employment at KPMG, or to begin a confidential conversation about your individual accessibility or accommodation needs through the recruitment process, we encourage you to contact us at cafmcdnhrsthotline@kpmg.ca or phone 416-777-8002 or toll free 1-888-466-4778.