I'm looking for

Search results for "IT Risk Management (IRM)"

Experienced Professional

IT Risk and Controls Senior Manager

Location: London

Service Line: RC Technology

View role

Experienced Professional

IT Risk & Controls Manager - Financial Services Consulting

Location: London

Service Line: RC Technology

View role

Experienced Professional

Third Party Risk Management Senior Manager - FS Tech Risk Consulting

Location: London

Service Line: RC Technology

View role

Experienced Professional

Technology Risk Senior Manager - Cloud / Digital / AI

Location: London

Service Line: RC Technology

View role

Experienced Professional

Identity & Access Management - Manager - Cyber Security

Location: London

Service Line: RC Technology

View role

IT Risk and Controls Senior Manager

Location: London

Capability: Risk Consulting

Service line: RC Technology

Experience level: B

Employment type: Full Time



The Team

The Financial Services Technology Risk Consulting team is focused on providing consultancy, advice and assurance on our clients' technology risks and controls. The market is evolving at pace and innovating, whilst embracing the digital age. We are building out our team to advise clients on emerging and legacy technology risks and controls. We are focused on project and programme risk, operational and technology resilience, technology risk and control, impact of regulatory change on data and technology and third party risk management. All underpinned by analytics. We deliver our work through consulting projects, focused on risk and control assurance, as well as projects with 2nd and 3rd lines of defence. KPMG are growing their IMG FS Tech Risk team to meet an ever increasing demand for our market leading services and are seeking IT management consultants with relevant expertise and experience.

The Role:

Communicating compelling and well thought out solutions to complex problems
Building constructive working relationships across different teams, functions, countries or cultures
Developing lasting client relationships and actively building a network and range of experience to help address client needs
Provide compelling and well thought out solutions to problems of moderate complexity
Oversee and deliver technology risk consulting projects in Financial Services leading teams and working independently providing client-side advice
Deliver Tech Risk transformation projects, providing advice to first and second lines of defence on operating models, frameworks, taxonomy, risk and control services
Oversee client services on IT control testing, supplier assurance and other technology risk related projects
Identify, anticipate and recommend the need for changes to methodologies / approaches in response to changing risk profiles and business needs
Convince clients to invest in technology and digital risk management - explain how to deploy this in the business
Identify revenue-generating opportunities and get involved in business development activities such as proposal writing, pitch presentations
Develop relationships with FS clients (CIO, Head of Technology Risk, CRO, Head of Information Security, COO)
Demonstrate and share industry / technical expertise and be positioned as an IT risk & controls expert in FS
Create thought leadership and participate in market forums to enhance KPMG’s brand
Build relationships with other KPMG functions to deliver market and client focused business solutions, including data analytics and dashboarding

Skills, Experience and Qualifications:

• Proven experience of successfully managing and delivering large IT Risk projects / advice to FS clients either within a large FS institution or a Consulting Firm
• Accounting / auditing (eg CISA) / tech risk qualification
• Experience in an IT risk and control / audit environment
• Degree/masters qualification in IT / Risk
• Experience of managing / delivering IT Risk advice and improvement projects in FS with experience of leading teams
• Experience of managing diverse business and IT stakeholders at all levels of seniority, including CIO, CRO, CTO, CFO and CISO
• Experience in identifying and assessing complex IT risks and controls, to relate them to the wider business environment and to express opinions clearly to all levels
• Experience of working with business processes / products / keys risks in an Financial Services environment.
• Experience of different operating systems, databases, networking, security concepts and technologies from an IT risk and controls perspective
• Strong leadership skills both on engagements and in an office environment
• Experience of business development
• Strong analytical skills and ability to adapt to changing circumstances
• Experience of working on tenders and proposals
• Proven experience in managing and monitoring engagement budgets and financial performance
• Experience of fee negotiations and negotiating scope changes with clients

IT Risk & Controls Manager - Financial Services Consulting

Location: London

Capability: Risk Consulting

Service line: RC Technology

Experience level: C

Employment type: Full Time


The Team


The Financial Services Technology Risk Consulting team is focused on providing consultancy, advice and assurance on our clients' technology risks and controls. The market is evolving at pace and innovating, whilst embracing the digital age. We are building out our team to advise clients on emerging and legacy technology risks and controls. We are focused on project and programme risk, technology resilience, technology risk and control, impact of regulatory change on data and technology and third party risk management. We deliver our work through consulting projects, focused on risk and control assurance, as well as engagements with 2nd and 3rd lines of defence. KPMG are growing their IMG FS Tech Risk team to meet an ever increasing demand for our market leading services and are seeking IT management consultants with relevant expertise and experience.

Job Responsibilities


- Developing lasting client relationships and actively building a network and range of experience to help address client needs
- Provide compelling and well thought out solutions to problems of moderate complexity
- Deliver technology risk consulting projects in Financial Services leading teams and working independently providing client-side advice
- Deliver Tech Risk control testing and transformation projects, providing advice to first and second lines of defence on operating models, frameworks, taxonomy, risk and control services.
- Oversee client services on IT control testing, supplier assurance and other technology risk related projects incl IT Sox testing
- Take responsibility for client liaison and relationship
- Take responsibility for delivering risk and control assessments and testing, following strict methdology
- Quality assure testing undertaken offshore or by junior members of staff
- Identify revenue-generating opportunities and support business development activities such as proposal writing, pitch presentations
- Develop relationships with FS clients (CIO, Head of Technology Risk, CRO, Head of Information Security, COO)
- Demonstrate and share industry / technical expertise and be positioned as an IT risk & controls expert in FS

Skills, Experience and Qualifications:


- Proven experience of successfully managing and delivering large IT risk and control testing projects either within a Big 4 firm or a large Financial Services Institution
- Recognised accounting / auditing (eg CISA) / risk qualification
- Experience in an IT risk and control / audit environment
- Degree/masters qualification in IT
- Experience of managing IT Risk and Control testing projects in the FS sector with experience of working in teams
- Experience of managing business and IT stakeholders from across the business and all levels of seniority
- Experience in identifying and assessing complex IT risks and controls, to relate them to the wider business environment and to express opinions clearly to all levels
- Experience of financial reporting and controls relating to IT
- Experience of FS sector business processes / products / keys risks
- A good understanding of technology platforms
- Good knowledge of different operating systems, databases, networking, security concepts and technologies from an IT risk and controls perspective
- Experience of working on tenders and large audit proposals

Third Party Risk Management Senior Manager - FS Tech Risk Consulting

Location: London

Capability: Risk Consulting

Service line: RC Technology

Experience level: B

Employment type: Full Time



The Team


The Financial Services Technology Risk Consulting team is focused on providing consultancy, advice and assurance on our clients' technology risks and controls. The market is evolving at pace and innovating, whilst embracing the digital age. We are building out our team to advise clients on emerging and legacy technology risks and controls. We are focused on project and programme risk, operational and technology resilience, technology risk and control, impact of regulatory change on data and technology and third party risk management. All underpinned by analytics. We deliver our work through consulting projects, focused on risk and control assurance, as well as projects with 2nd and 3rd lines of defence.

The Role


• Building global relationships and actively seeking out the global networks best experts to address client needs
• Communicating compelling and well thought out solutions to complex problems
• Building constructive working relationships across different teams, functions, countries or cultures
• Work with Partners and Directors in delivering risk services to the Financial Services sector with particular focus on Third Party Risk Management
• Oversight of delivery of Third Party Risk Management consulting projects - including reviews of maturity, process, governance and operating model. Advice on automation and tooling, conulting advice on regulatory requirements and expectations on Third Party Risk Management. Oversee and deliver end to end supplier assurance projects and Third Party Risk Management transformation projects
• Assume ownership of key client relationships, identify revenue-generating opportunities and get involved in business development activities.
• Build and develop relationships with key market contacts
• Develop industry and technical expertise and be positioned as an Third Party Risk Management SME for the Financial Services sector
• Identify, anticipate and recommend the need for and make changes to third party risk management methodologies and related services in response to changing risk profiles and regulatory expectations
• Build relationships with other departments to further develop and mature KPMG's Third Party Risk Management offering
• Understand the Financial Services industry - key performance drivers, emerging technical and industry developments

The Person


• Recognises the importance of continuous self and team development and actively strives to achieve this.
• Helps others to understand how their work contributes to the overall success of an engagement and the wider firm
• Fosters a sense of self belief and confidence in others
• Seeks to understand others motivations
• Supports others to make brave decisions

Qualifications and Skills
• Proven experience of successfully managing and delivering risk and controls assessments.
• Proven experience of implementing Third Party Risk Management frameworks in large Financial Services organisations
• Thorough understanding of Third Party Risk Management and experience of developing Third Party Risk Management programs for Financial Services organisations
• Extensive knowledge and insight of regulatory requirements and expectations on Third Party Risk Management and wider risks
• Extensive knowledge of related regulations
• Degree/masters qualification in IT

Experience and Background
• Experience of building Third Party Risk Management programs in the Financial Services sector from the ground-up
• Experience of the end to end procurement lifecycle
• Extensive experience of working with UK regulators to provide knowledge and insights on regulatory thinking on third party risk management
• Experience of reviewing Third Party Risk Management for banks and/or insurers and providing gap assessments and remediation plans
• Experience of managing business and IT stakeholders from across the business and all levels of seniority, including CIO, CFO and CISO
• Ability to identify and assess IT risks and controls, to relate them to the wider business environment and to express opinions clearly to all levels
• Strong understanding of Financial Services sector
• A good understanding of technology platforms
• Strong leadership skills both on engagements and in an office environment
• Ability to play an active role in the business development process
• Ability to present on specific subjects to a large group of people
• Strong analytical skills and ability to adapt to changing circumstances
• Demonstrate professional scepticism - proven track record of constructively challenging clients to drive best results
• An aptitude for embracing and adapting to new technology
• Ability to spot opportunities to add value to clients and work with colleagues in other lines of service to help clients
• Ability to work flexibly in terms of working hours to accommodate tight timelines and manage well under pressure

Technology Risk Senior Manager - Cloud / Digital / AI

Location: London

Capability: Risk Consulting

Service line: RC Technology

Experience level: B

Employment type: Full Time


The Team


The Financial Services Technology Risk Consulting team is focused on providing consultancy, advice and assurance on our clients' technology risks and controls. The market is evolving at pace and innovating, whilst embracing the digital age. We are building out our team to advise clients on emerging and legacy technology risks and controls. We are focused on project and programme risk, operational and technology resilience, technology risk and control, impact of regulatory change on data and technology and third party risk management. All underpinned by analytics. We deliver our work through collaborative consulting projects, focused on risk and control assurance, as well as projects with 2nd and 3rd lines of defence.

The Role


• Communicating compelling and well thought out solutions to complex problems
• Building constructive working relationships across different teams, functions, countries or cultures
• Developing lasting client relationships and actively building a network and range of experience to help address client needs
• Provide compelling and well thought out solutions to problems of moderate complexity
Work with Partners, Directors and team in the Emerging Technology Risk areas - including AI / machine learning, cloud and digital
Lead and deliver technology risk services to the Financial Services sector focused on risk and controls
Conduct risk and control assessments on client projects when they are implementing new and advanced technology
Define a risk and control methodology and framework to use in conducting risk assessments
Link into global and cross industry working groups to share knowledge
Identify revenue-generating opportunities and get involved in business development activities such as proposal writing, pitch presentations
Build and develop relationships with key internal and external contacts to embed risk and control into other propositions
Develop a go to market approach and materials to support
Create thought leadership and participate in market forums to enhance KPMG’s brand

The Person


• Recognises the importance of continuous self and team development and actively strives to achieve this.
• Helps others to understand how their work contributes to the overall success of an engagement and the wider firm
• Fosters a sense of self belief and confidence in others
• Seeks to understand others motivations
• Supports others to make brave decisions

Qualifications and Skills
• Proven experience of successfully delivering digital, cloud or AI/ML projects, advice or assurance
• Recognised expert in areas of new technology
• Experience in working in a risk and control / assurance environment
• Degree/masters qualification in IT or similar

Experience and Background
• A specialist understanding of digital/cloud/AI and their impact on the business control environment
• Ability to identify and assess complex technology risks and controls, to relate them to the wider business environment and to express opinions clearly to all levels
• Strong understanding of FS sector – business processes / products / keys risks
• Ability to play an active role in the business development process
• Ability to present on specific subjects to a large group of people
• Strong analytical skills and ability to adapt to changing circumstances
• An aptitude for embracing and adapting to new technology
• Ability to spot opportunities to add value to clients and work with colleagues in other lines of service to help clients find solutions to the challenges they face
• Ability to work flexibly in terms of working hours to accommodate tight timelines and manage well under pressure

Identity & Access Management - Manager - Cyber Security

Location: London

Capability: Risk Consulting

Service line: RC Technology

Experience level: C

Employment type: Full Time



The Role

We are looking for a competent and experienced Manager specialising in Identity & Access Management (IAM) who will be responsible for developing and delivering complex and innovative solutions whilst reducing reputational, operational, financial and other risks for our clients.. IAM is a part of the Risk Consulting Practice in KPMG, one of the key areas identified for major investment and growth. KPMG is growing its IAM service line and has recently acquired Silicon Valley-based Cyberinc, which provides cyber security solutions globally. This will enhance KPMG’s existing capabilities as a leader in information security consulting services and expand the firm’s ability to provide clients with newer and more agile IAM solutions. This bolsters KPMG’s talent and offerings in the rapidly growing area of digital consumer identity and privileged user management.
Our clients need to deal effectively with technology related risks and derive maximum value from their investment in security systems and technology. Our specialists provide independent, jargon free advice and advanced technology capabilities to help our clients proactively manage their technology risks and use their IT assets to its full potential. The individual selected for this role will be responsible for driving the next phase of growth for our IAM Service Line.

Key Accountabilities

• Experienced in developing identity management strategy, solution architecture and implementation roadmaps that include identity and privileged access management, RBAC, provisioning, certification, entitlement management and policy management.
Practical knowledge and experience in Privileged Access Management is essential.
Practical knowledge and experience in Customer Identity and Access management is essential.
Strong design and implementation experience of at least one of the following vendor technologies like CyberArk, SailPoint or BeyondTrust is essential.
• Proven years of strong IAM advisory, design and implementation oversight experience on large, complex projects (e.g; FTSE 100 clients)
• Actively identifying and progressing business development opportunities, as well as managing sales activities such as proposal development, writing and assisting with client presentations.
Capability to identify technical risks, articulate the associated IT costs and business impacts, and propose options for resolution
• Able to initiate, develop and challenge thought leadership in in all areas of identity management.
• Recognised in the industry as a specialist in the IAM space, with a good understanding of disruptive trends, evolution of IAM solutions backed by knowledge of the business value of IAM.
• Good understanding of Digital Transformation initiatives, GDPR and other regulation that impacts and drives the adoption of IAM controls.
• Knowledge of Customer Identity Management solutions with proven experience in either delivering and developing business case, strategy and roadmaps.
• Ability to develop constructive client relationships, both inside and outside of KPMG.
• Understanding of managed services delivery models for the delivery of Identity Management services.
• Experience in Role modelling, Risk based Authentication, Identity Federation and Data Access Governance.

The Person

• Excellent business and technical stakeholder engagement skills within the IAM project setting is required.
• Experience with Project Management duties (project planning, resource management, scope, schedule and status, documentation).
• Continuous development of self and team, including managing client feedback.
• Monitoring quality of service and products to clients and carrying out improvement or development as necessary.
• Management of SailPoint discovery, onboarding and go live
• Detailed understanding of SailPoint and access management functionalities.
• Good understanding of CyberArk and other similar privileged management tools.
• Strong ability to interact with Tech Operations and CISO teams in a client facing roles and to explain technical concepts in an easy to understand manner
• Good ability to manage technical resources.

Qualifications & Skills:

• Bachelor's Degree in a relevant field (e.g. Computer Engineering, Computer Science, Information Security) or in a STEM major (Science, Technology, Engineering, or Math).
• Recognised information protection qualifications (e.g. CISSP, CISSP-ISSAP, CISM, GIAC) desirable.
• Experience using Project Management tools like MS Project desirable.
• Excellent communication and presentation skills (both written and oral)
• Excellent negotiation skills.
• Demonstrated ability in strong verbal and written communication skills to interface with both technical and non-technical stakeholders, including the ability to confidently lead software presentations.
• Highly organised with ability to prioritise workload to incorporate changing priorities.
• Delivering quality and striving for continual improvement.
• Strong planning, organising and decision making skills.

Search and apply

Let your curiosity guide you. Search and apply to our open opportunities.

Student community

Join our student community to stay up to date with programmes.

This website uses cookies that provide necessary site functionality and improve your online experience. By continuing to use this website, you agree to the use of cookies. Our cookies notice provides more information about what cookies we use and how you can change them.

TOP