I'm looking for

The Team

Within the FS Technology Risk team, our work involves providing advisory, assurance and IT Internal Audit services to clients on their IT systems and processes. Our focus is on IT risk management, IT controls testing, IT project assurance, GRC, Emerging Tech and the Technology and Data aspects of regulation. This work is delivered through stand-alone assignments, large scale consulting projects and as part of internal audit engagements.

The Role

Responsibilities:

• Managing delivery of IT Internal Audit services in the Financial Services Sector.
• Taking responsibility for the overall output from client engagements including scoping, financial management, risk management, managing delivery risk, production, quality and review of deliverables.
• Building and maintaining excellent relationships across a range of clients and prospects including senior leadership.
• Actively identifying and progressing business development opportunities and supporting the team with sales activities such as proposal writing and assisting with client presentations.
• Participating in service line development, reporting to the service line leader on progress of development, sales and delivery.
• Developing internal networks and maintaining excellent relationships with colleagues across KPMG, in particular in the wider IT Advisory practice.
• Coaching, mentoring and developing team members, both on and off engagements (e.g. setting goals and appraising performance), and contributing to practice management (e.g. training and knowledge sharing).

The Person

Experience and Background :

• Proven experience of successfully delivering IT internal audits to, or within, medium to large multi-national clients with complex IT environments and applications.
• Experience in identifying and assessing complex IT risks and controls, to relate them to the wider business environment and to express opinions clearly.
• Strong project management skills including being able to manage multiple assignments simultaneously, to manage teams effectively, and to deliver projects on time and to budget.
• Able to add value to assignments through an analytical approach to work, and adept at challenging existing processes to identify and implement smarter ways of working.
• Able to develop excellent client and internal relationships at all levels of seniority.
• Proficient at creating and delivering captivating presentations to audiences comprising groups of clients, prospects and/or internal staff.
• Excellent team player as well as able to deliver engagements independently
• Experience of auditing application controls for a range of business processes within a Financial Services environment, cyber audits, infrastructure testing, data management and experience in auditing emerging technologies such as AI & Machine Learning, cloud.
• Professional services experience (big 4 or similar FS IT Internal Audit industry experience).
Degree qualification.
• CISA or equivalent auditing qualification preferred

Responsibilities:


Advising clients on the impact of changing requirements in provision accounting standards (IFRS9) and
Basel credit risk capital requirements (IRB). This will model review and validation activities such as:

- Technical model development documentation review;
- Technical model validation documentation review;
- Assessment of model performance;
- Replication testing; and
- Reviewing models’ against IRB regulatory requirements.The individual will also be expected to perform technical analysis for workstreams within both IRB, IFRS9 and credit risk modelling engagements

The individual will also be required to apply their skills to a broad range of banking risk related issues supporting both regional and national propositions. This could include reviews of Governance frameworks, Stress testing, Risk appetite, ICAAPs.

The individual will also be expected to work independently and be able to manage teams when delivery a range of projects.



The Person


Knowledge & Experience:


- Experience working in a credit risk modelling role within a financial or professional services firm.

- Experience in managing teams of 6-10 people

- Practical experience in credit risk modelling techniques, IRB and IFRS9

- Knowledge and practical experience in accounting and risk requirements as related to IRB and/or IFRS9 and regulatory credit risk models.


Detailed working knowledge and experience of all aspects of model development and validation including the following:

1) Data extraction and pre-processing

2) Modular model development

3) User acceptance testing

4) Model performance assessments
Relevant Sectoral experience – developing Retail/ Wholesale banking PD/EAD/LGD models

Knowledge and experience of credit risk processes, governance and documentation

Qualifications & Skills:


- Must have excellent knowledge and experience within the finance sector.

- Ability to communicate risk/finance requirements of IRB/IFRS9 to the reciprocal function, i.e. risk to finance and finance to risk.
- Flexibility and agility to contribute in a senior capacity to a broad range of banking risk engagements.
- Excellent oral / written communication, planning, project management, networking and influencing, team coordination and stakeholder management skills.
-
Flexibility to work across the UK (and internationally) where required

The Team

The Financial Services Technology Risk Consulting team is focused on providing consultancy, advice and assurance on our clients' technology risks and controls. The market is evolving at pace and innovating, whilst embracing the digital age. We are building out our team to advise clients on emerging and legacy technology risks and controls. We are focused on project and programme risk, operational and technology resilience, technology risk and control, impact of regulatory change on data and technology and third party risk management. All underpinned by analytics. We deliver our work through consulting projects, focused on risk and control assurance, as well as projects with 2nd and 3rd lines of defence.
The Role

• Building global relationships and actively seeking out the global networks best experts to address client needs
• Communicating compelling and well thought out solutions to complex problems
• Building constructive working relationships across different teams, functions, countries or cultures
• Work with Partners and Directors in delivering risk services to the Financial Services sector with particular focus on Third Party Risk Management
• Oversight of delivery of Third Party Risk Management consulting projects - including reviews of maturity, process, governance and operating model. Advice on automation and tooling, conulting advice on regulatory requirements and expectations on Third Party Risk Management. Oversee and deliver end to end supplier assurance projects and Third Party Risk Management transformation projects
• Assume ownership of key client relationships, identify revenue-generating opportunities and get involved in business development activities.
• Build and develop relationships with key market contacts
• Develop industry and technical expertise and be positioned as an Third Party Risk Management SME for the Financial Services sector
• Identify, anticipate and recommend the need for and make changes to third party risk management methodologies and related services in response to changing risk profiles and regulatory expectations
• Build relationships with other departments to further develop and mature KPMG's Third Party Risk Management offering
• Understand the Financial Services industry - key performance drivers, emerging technical and industry developments
The Person

• Recognises the importance of continuous self and team development and actively strives to achieve this.
• Helps others to understand how their work contributes to the overall success of an engagement and the wider firm
• Fosters a sense of self belief and confidence in others
• Seeks to understand others motivations
• Supports others to make brave decisions
Qualifications and Skills
• Proven experience of successfully managing and delivering risk and controls assessments.
• Proven experience of implementing Third Party Risk Management frameworks in large Financial Services organisations
• Thorough understanding of Third Party Risk Management and experience of developing Third Party Risk Management programs for Financial Services organisations
• Extensive knowledge and insight of regulatory requirements and expectations on Third Party Risk Management and wider risks
• Extensive knowledge of related regulations
• Degree/masters qualification in IT
Experience and Background
• Experience of building Third Party Risk Management programs in the Financial Services sector from the ground-up
• Experience of the end to end procurement lifecycle
• Extensive experience of working with UK regulators to provide knowledge and insights on regulatory thinking on third party risk management
• Experience of reviewing Third Party Risk Management for banks and/or insurers and providing gap assessments and remediation plans
• Experience of managing business and IT stakeholders from across the business and all levels of seniority, including CIO, CFO and CISO
• Ability to identify and assess IT risks and controls, to relate them to the wider business environment and to express opinions clearly to all levels
• Strong understanding of Financial Services sector
• A good understanding of technology platforms
• Strong leadership skills both on engagements and in an office environment
• Ability to play an active role in the business development process
• Ability to present on specific subjects to a large group of people
• Strong analytical skills and ability to adapt to changing circumstances
• Demonstrate professional scepticism - proven track record of constructively challenging clients to drive best results
• An aptitude for embracing and adapting to new technology
• Ability to spot opportunities to add value to clients and work with colleagues in other lines of service to help clients
• Ability to work flexibly in terms of working hours to accommodate tight timelines and manage well under pressure

The Role

•You will be working as a consultant in KPMG’s expanding Security Operations practice.
•As a Security Operations consultant, you will help our clients in solving some of the key challenges faced by security operations leaders.
•The work would involve advising our clients on Security Operations Strategy, Design, Maturity Assessment, and Optimisation.
•You will get a chance to learn new skills, certifications and work with some of our key alliance partners, including some the largest security vendors in the industry
•You will be working in a dynamic environment and engage with leading companies around the world.

Requirements
•Hands on experience in a Security Operations Centre
•Alternatively, consulting or advisory experience in Security Operations.
•Operational level experience in some of these domains (not all): security engineering, alert triaging, rule writing, incident response, DFIR, threat intelligence and management, vulnerability management, and security control testing
•In-depth knowledge of at least one SIEM platform or security data lake and related processes
•Knowledge of various security tools, their functions and comparisons
•Knowledge of network and cloud security fundamentals
•Ability to explain complex technical concepts in business terms
•Extensive experience in report writing and presentation

Good to have:
•Previous experience in cyber project management
•Part of a large transformation and implementation project
•Hands on experience with ServiceNow and ServiceNow SecOps
•Experience with any other Incident Response or SOAR tool
•A network of other security professionals and relationships in the industry

Qualification and certifications (good to have but not mandatory)
•Bachelor degree in Information Security, Computer Science, Engineering, Technology or a similar degree
•Any SecOps related certifications, including security vendor certifications
•Good to have - at least one of the following certifications – CISSP, CISM, CCSP, GIAC certifications or an equivalent security certifications

The Team

Within the FS Technology Risk team, our work involves providing advisory, assurance and IT Internal Audit services to clients on their IT systems and processes. Our focus is on IT risk management, IT controls testing, IT project assurance, GRC, Emerging Tech and the Technology and Data aspects of regulation. This work is delivered through stand-alone assignments, large scale consulting projects and as part of internal audit engagements.

The Role

Responsibilities:

• Managing delivery of IT Internal Audit services in the Financial Services Sector.
• Taking responsibility for the overall output from client engagements including scoping, financial management, risk management, managing delivery risk, production, quality and review of deliverables.
• Building and maintaining excellent relationships across a range of clients and prospects including senior leadership.
• Actively identifying and progressing business development opportunities and supporting the team with sales activities such as proposal writing and assisting with client presentations.
• Participating in service line development, reporting to the service line leader on progress of development, sales and delivery.
• Developing internal networks and maintaining excellent relationships with colleagues across KPMG, in particular in the wider IT Advisory practice.
• Coaching, mentoring and developing team members, both on and off engagements (e.g. setting goals and appraising performance), and contributing to practice management (e.g. training and knowledge sharing).

The Person

Experience and Background :

• Proven experience of successfully delivering IT internal audits to, or within, medium to large multi-national clients with complex IT environments and applications.
• Experience in identifying and assessing complex IT risks and controls, to relate them to the wider business environment and to express opinions clearly.
• Strong project management skills including being able to manage multiple assignments simultaneously, to manage teams effectively, and to deliver projects on time and to budget.
• Able to add value to assignments through an analytical approach to work, and adept at challenging existing processes to identify and implement smarter ways of working.
• Able to develop excellent client and internal relationships at all levels of seniority.
• Proficient at creating and delivering captivating presentations to audiences comprising groups of clients, prospects and/or internal staff.
• Excellent team player as well as able to deliver engagements independently
• Experience of auditing application controls for a range of business processes within a Financial Services environment, cyber audits, infrastructure testing, data management and experience in auditing emerging technologies such as AI & Machine Learning, cloud.
• Professional services experience (big 4 or similar FS IT Internal Audit industry experience).
Degree qualification.
• CISA or equivalent auditing qualification preferred