Join KPMG, a renowned organization recognized for its exceptional workplace culture and commitment to career development. We offer audit, tax, and advisory services across today's most vital industries. Our success is driven by delivering tangible results for our clients, supported by a culture that promotes individual growth, inclusivity, innovation, and community support. It’s no surprise that we are frequently listed among the best companies to work for by leading publications. If you are passionate about shaping your future, we invite you to be part of our team.
KPMG is currently seeking a Manager of Security Posture Management to join our Global Technology & Group, which is part of KPMG International.
Responsibilities:
- Oversee and enhance Security Posture by identifying vulnerabilities and automating solutions to minimize potential attack surfaces.
- Develop proof-of-concept (PoC) projects for new tools and processes, ensuring they align with enterprise architecture.
- Evaluate the application of AI/ML, predictive analytics, and orchestration platforms for effective vulnerability prioritization and remediation.
- Design systems for new technologies integrated with existing monitoring, ticketing, and reporting tools (e.g., MDC, Qualys, ServiceNow).
- Collaborate across all Information Security Services to leverage data and implement automation that improves security posture through automated remediation.
- Effectively communicate technical concepts and business value to both technical and non-technical stakeholders.
- Maintain integrity, professionalism, and accountability to foster KPMG's respectful work environment.
Qualifications:
- At least seven years in cloud-centric cybersecurity, with a minimum of three years in vulnerability or threat management.
- Bachelor's degree in a relevant field (such as Computer Science, Computer Engineering, Information Technology, or Security) or five years of pertinent cloud-centric security experience.
- Proven experience in presenting technical solutions and ROI to both technical and executive audiences.
- Strong knowledge of the vulnerability management lifecycle (identification, prioritization, remediation), and understanding of identity and data lifecycle management.
- Proficiency in various Security Posture management tools such as CSPM, SSPM, and Qualys.
- Experience with CI/CD pipelines, integrating security tools, API integration, and utilizing Agentic AI.
- Must be authorized to work in the U.S. without the need for employment-based visa sponsorship; KPMG LLP will not sponsor U.S. work visa status for this opportunity.
KPMG offers a competitive compensation and benefits package. We are proud to support our employees with a broad range of benefits designed to fit individual needs, including medical and dental plans, vision coverage, disability and life insurance, 401(k) plans, and mental health support. Personal Time Off is provided each fiscal year and includes two breaks where employees are not required to use their Personal Time Off. Further details about our benefits can be found on the KPMG US Careers site under Benefits & How We Work.
KPMG is an equal opportunity employer and complies with all applicable federal, state, and local laws regarding recruitment and hiring. We consider all qualified applicants without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, citizenship status, disability, protected veteran status, or any other category protected by law. We are committed to fair chance hiring practices and will consider qualified applicants with arrest and conviction records.