Role overview
Cyber Security Innovation Engineer - 106791
As part of the Global Information Security Group (GISG), the Information Security Services (ISS) team helps defend KPMG and its clients from cyber attacks, through timely detection, investigation and remediation of potential threats. This role focuses on Innovation, ensuring that automation supports and is part of operationalization activities while leveraging DevOps principles to enhance security operations. The ideal candidate will possess expertise in Palo Alto Cortex, Azure technologies including Logic Apps and Microsoft Sentinel, and ServiceNow, and will be responsible for building, improving, and maintaining automated workflows to streamline security monitoring and incident response.
You will also work with the Innovation Lead to introduce new technologies and processes, and to participate in the delivery of technical projects, systems and services for the GSOC. You will be working in a fast-paced environment driving performance, reliability and supporting the GSOC tools and infrastructure hosted on Physical and Cloud platforms delivering SOC services.
The successful candidate will have strong analytical and troubleshooting skills, experience in integrating multiple technologies, solid communication skills and a desire to tackle the complex problems of scale which are unique.
Responsibilities
* Design, implement, and maintain security automation solutions to improve operational efficiency and reduce manual intervention in security processes.
* Use Palo Alto Cortex, Azure, and other security tools to automate threat detection, incident response, and workflow management within the SOC.
* Collaborate with GSOC teams to integrate security automation solutions into the CI/CD pipeline, ensuring security is embedded throughout the DevOps process.
* Work with cross-functional teams to identify opportunities for improvement and develop new capabilities for better detection, prevention, and response to security threats.
* Collaborate with the SOC analysts, security engineers, and other IT teams to enhance security visibility and reduce response time to potential threats.
Key Accountabilities
* Ensure continuous improvement to GSOC processes and technology through automation.
* Support the Innovation Lead and liaise with KPMG teams, business stakeholders, and vendors to design and setup activities at different stages of a technical project.
* Installation, management, maintenance and support of GSOC technologies hosted on multiple environments including physical Data Centers, Azure public cloud and O365.
* Monitor systems, identify/resolve issues, prepare status reviews and reports.
* Compile and maintain the necessary documentation of all system designs, builds and modifications.
* Responsible for coordination and delivery of user training and training material.
* Manage support cases to ensure issues are recorded, tracked, resolved, and follow-ups are done in a timely manner.
Experience / Qualifications
* Bachelor’s degree, Master’s, or PhD in Computing, Information Security, or related field (or equivalent work experience)
* Certifications such as CISSP, CISM, AWS Certified Security – Specialty, Azure Security Engineer are a plus
* Familiarity with threat intelligence platforms and SIEM tools
* Deep understanding of security technologies, principles, and best practices related to incident response and threat detection
* Expert in scripting or development languages e.g. Python, and a query language e.g. KQL
* Experience automating security workflows using scripting languages such as Python, PowerShell, or Bash
* Experience with Query Languages preferably KQL
* Experience working as a Security Engineer or in a Security Operations Center (SOC) environment
* Strong hands-on experience with automation and Azure Security technologies (including Azure Sentinel, Logic Apps, etc.)
* Proven expertise in DevOps tools and practices (e.g., Git, Jenkins, Terraform, Docker, Kubernetes)
* Strong troubleshooting and problem-solving skills with an ability to work under pressure in a dynamic environment
Agile / Flexible Working
At KPMG International, we are supportive of helping you to achieve a balance between your home and work demands. We are happy to discuss individual requirements and our range of flexible working arrangements could be of interest. Please ask to find out more.
Inclusion & Diversity
At KPMG International, we recognise that we need inclusion and diversity to be successful. We want to attract, retain and develop diverse talent at all levels. This means recruiting from the widest pool of talent across our network and beyond, removing barriers that can prevent our people from reaching their full potential, and fostering a fully inclusive environment which empowers everyone to bring their whole selves to work.
Seniority level
* Mid-Senior level
Employment type
* Full-time
Job function
* Information Technology
Industries
* Business Consulting and Services
#J-18808-Ljbffr