Base Location: London/Bristol plus network of 20 offices nationally: www.kpmg88careers.co.uk/experienced-professional/#LeBlender.OfficeLocations

The KPMG Defence Consulting and National Security function is a cornerstone of our business.  Operating from London and Bristol we do work that matters, serving the country with diligence and expertise.

KPMG is one of the world's largest and most respected consultancies.  We've supported the UK through times of war and peace, prosperity and recession, political and regulatory upheaval. We've proudly stood beside the institutions and businesses which make the UK what it is.

We advise government and industry clients on their largest, most complex, and highest profile strategic issues. Our team combines deep sector insight, expert consulting capabilities and trusted client relationships to design and implement solutions that span all aspects of our clients’ operations. We become immersed in our clients' organisations, applying sector knowledge and technology solutions to deliver the best possible outcomes and get it right first time.

Why Join KPMG as an Assistant Manager within our National Security function?

Defence and National Security is a KPMG priority sector. That means we are a fast-growing team which presents exciting opportunities for a manager to lead impactful projects, drive our ambitious growth agenda and seek career progression.

The KPMG Private Client tax team is a fast-growing and integral part of the wider KPMG tax practice. In order to support further growth we are looking to appoint a Senior Manager in Nottingham.

We are looking for excellent candidates with a proven track record in this area who are seeking a dynamic and supportive working environment to help deliver these solutions.

You would be expected to lead the delivery of a quality output to our clients and participate in winning new clients by bringing new offerings to the market. Your client base would include a portfolio of high net worth clients, entrepreneurs, shareholders and international individuals.

KPMG’s Cloud Transformation practice is an award-winning team of over 50 consultants that helps clients transform the way CIOs and their teams deliver technology services to their business stakeholders. Our team help the UK’s largest and most complex organisations develop cloud strategies, build the operating models, architectures and capabilities to deliver value from cloud, and operate their cloud or hybrid estates effectively and cost-efficiently.

To support our clients, we use KPMG’s deep industry insights, C-suite relationships, cloud architecture capabilities, alliances and accelerators ranging from our cloud value labs, KPMG Cloud Cost Management models, Cloud controls frameworks and landing zones.  Our 350+ strong engineering teams implement these strategies and solutions – sitting at the heart of major transformations across the UK, helping technology executives convert business strategy into compelling technology outcomes.

Service Delivery Security Manager

Team

The Service Delivery Security Manager role is in the KPMG UK Information Security function and reports directly to the Security Production Assurance & Compliance Lead.  This role is critical in the provision and delivery of secure, innovative, technology-enabled services and solutions for KPMG and our clients.  The role is vital to KPMG’s ability to demonstrate that we are delivering ‘secure by design’ services and solutions such that our business stakeholders, our clients and our regulators trust KPMG.

Role

The primary purpose of the role is to enable harmonious delivery of Security Services, by ensuring strong collaboration with the external Service Providers and entire range of KPMG business functions.  There are 3 main areas of focus:

• Manage the security services relationship to protect the delivery of the end to service services that involve all KPMG UK Technology services, or third-party suppliers.
• Provide governance for infrastructure security services
• Provide an overview of the complete set of services provided by all KPMG UK Technology services, or third-party suppliers and troubleshoot any issues and escalate as appropriate.

Key responsibilities are:

• Work closely with the Service Owners who are accountable for the end-to-end services, understand their roadmap for the service and the day-to-day operational requirements

• Maintain and lead the process to manage the Governance of these services
• Ensure firm standards and guidelines are followed, and contractual or operational commitments are delivered
• Review and govern the Service Provider Quality, Improvement Plans, Issues and Operational Risks, engaging the Security Production Assurance & Compliance Lead as required
• Raise and build consensus around issues or escalations and enable timely resolution.
• Govern Service Provider Knowledge Management, Knowledge Transfer, Reporting, Documentation and other engagement practices to ensure ongoing operational excellence
• Review Service Provider capacity plan to ensure it has enough capacity to meet the required demand and is in line with the Service Owner’s roadmaps
• Consolidate and provide reports on the delivery of Security services and initiatives across the relevant KPMG capabilities
• Ensure any planned changes across Technology or Service Provider are co-ordinated to ensure there is minimum disruption to Information Security services.
• Communicate major changes or enhancements in Information Security to Service Provider/ Business function and vice-versa
• Act as a single point of contact for general queries or issues flowing to and from the Security Function to the delivery teams
• Work closely with the Service Delivery Managers and Service Owners to ensure everyone has a clear view of the remediations and expectations
• Work closely with the Security Production Assurance & Compliance Lead to implement the operational security activities, processes and standards as determined by them.
• Build long-term stakeholder relationships including negotiating service levels, and defining project scope.
• Monitor, review and drive compliance to security policies, guideline and standards (as defined by KPMG) using compliance reports supplied by the Supplier and internal teams. You will escalate issues to the Security Production Assurance & Compliance Lead where necessary
• Use your experience to propose changes to existing policies and procedures based on feedback from Internal and Supplier Service Operations teams to Security Production Assurance & Compliance Lead to drive operating efficiency and compliance
• You will support incident and problem management teams in prioritisation o

Role summary

The purpose of the Information Security Automation Specialist role is to ensure sound delivery of technical projects, systems, and services for the GSOC. The Information Security Automation Specialist will be responsible for customization, maintenance and support of various security monitoring platforms and provide a mixture of project delivery, system integration, maintenance, and support around the GSOC platforms including Microsoft Azure Sentinel and Microsoft Defender security suite. This role will be part of a team working in a fast-paced environment driving performance, reliability and supporting the GSOC tools and infrastructure hosted on Physical and Cloud platforms delivering SOC services. The successful candidate for this role will have strong analytical and troubleshooting skills, experience in integrating technology platforms, strong communication skills and a desire to tackle the complex problems of scale which are unique to a SOC environment. We will consider a candidate that has the core technical skills and wants to move into a security role. • Adhere to strict Service Level Agreements for fault resolutions and service requests completions • Maintain a good working knowledge of current infrastructure and future trends • Deliver excellent customer service • Ensure leadership are aware of all issues • Identify, liaise, and manage any escalated faults with 3rd party suppliers for major incidents, network improvements or correction of recurring problems • Ensure work is completed in such a way that complies with established compliance and other internal control requirements • Exercising judgment within defined procedures and practices to determine appropriate action