Job description
Job Title/Req Number: Information Security Automation Specialist 106271
Base Location: Anywhere in the UK, including London, Manchester, Birmingham or Edinburgh plus network of 20 offices nationally:
KPMG International helps set the strategy and protects the reputation of this global organization of independent professional services firms providing Audit, Tax and Advisory services. We deliver value to our member firms and drive positive change in the communities we serve. By joining us you will gain a unique understanding of how a global organization operates and work on projects that impact the whole organization. From setting standards and best practices to developing innovative tech- enabled solutions for clients, you'll be part of a global team changing the way our business operates. We look forward to welcoming you to our team.
KPMG is one of the world's largest and most respected consultancy businesses, we've supported the UK through times of war and peace, prosperity and recession, political and regulatory upheaval. We've proudly stood beside the institutions and businesses which make the UK what it is.
Why Join KPMG
The core services provided by Global Technology & Knowledge are more crucial than ever to our future, as we enable KPMG’s digital transformation, provide trusted technology services, ensure security across the network and accelerate our Collective Strategy. Our ways of working are based on the principles of customer-centricity, communities of expertise, an optimized delivery model, flexibility, a culture of empowerment, and fulfilling careers. We are organized under five new ‘domains’: Technology Portfolio Delivery, Global Enterprise Technology, Technology Strategy & Blueprint, Global Information Security Group and Business Operations. This is an exciting time for us as we continue to drive technology excellence at the heart of Collective Strategy v3.0, and our GT&K colleagues all play a pivotal role in making this a success.
About this Team
As part of the Global Information Security Group (GISG), the Information Security Services (ISS) team which includes the Global Security Operations Center (GSOC) helps defend KPMG and its clients from cyber-attacks, through timely detection, investigation and remediation of potential threats.
What will you be doing?
1. SOAR Playbook Development, Programming new API Integrations, developing new automation tasks and maintenance. Responsible for installation, management, maintenance, and support of GSOC tools hosted on multiple environments including physical Data Centres, Azure public cloud and O365. #
2. Co-ordinate with various vendors, other KPMG teams and business stakeholders on work related to design and setup activities at different stages of a technical project.
3. Compile and maintain the necessary documentation of all system designs, builds and modifications.
4. Responsible for coordination and delivery of user training and training material.
5. Monitor systems, identify/resolve issues, prepare status reviews and reports.
6. Manage support cases to ensure issues are recorded, tracked, resolved, and follow-ups are done in a timely manner
What will you need to do it?
7. Software Development / Programming intermediate / advanced level
8. An Information or Cyber Security qualification is preferred but not essential: CompTIA, CISSP, CISSM, CISMP, GIAC, CEH, or equivalent
9. Hands on experience with modern programming languages such as Python, JavaScript, or similar
10. Must have experience with RESTful APIs, including development
11. Must have excellent written and oral communications
12. Must be able to document processes and procedures to a professional level
13. Preferred experience working with vendors and various solution providers
14. Programming using modern programming languages to a professional standard
15. Disparate systems integration using RESTful APIs
16. Automation / Workflow / Orchestration / BPM
17. Querying large datasets
18. Working in an operational role with strict SLA
Skills we’d love to see/Amazing Extras:
19. Preferred experience in a Security Operations environment
20. Preferred experience with recognized SIEM solutions, preferably Azure Sentinel
21. Preferred experience with developing and configuring SOAR tools such as XSOAR or Azure Logic Apps with Azure Functions
22. Preferred experience with Query Languages, preferably KQL
23. Preferred a good working knowledge of Microsoft Azure and O365 Solutions
24. Preferred experience in managing Unix/Linux based servers
To discuss this or wider Technology roles with our recruitment team, all you need to do is apply, create a profile, upload your CV and begin to make your mark with KPMG.
Our Locations:
We are open to talk to talent across the country but our core Tech hubs for this role are:
25. Glasgow
26. Leeds
27. London Canary Wharf
28. Manchester
With 20 sites across the UK, we can potentially facilitate office work, working from home, flexible hours, and part-time options. If you have a need for flexibility, please register and discuss this with our team.
Find out more:
Within Tech and Engineering we have a range of divisions and specialisms. Click the links to find out more below:
29. Technology and Engineering at KPMG :
30. ITs Her Future Women in Tech programme:
31. KPMG Workability and Disability confidence:
For any additional support in applying, please click the links to find out more:
32. Applying to KPMG:
33. Tips for interview:
34. KPMG values:
35. KPMG Competencies:
36. KPMG Locations and FAQ: