CDIR - OT Security - Senior - Mumbai
Mumbai, Maharashtra, India
About KPMG in India
KPMG entities in India are professional services firm(s). These Indian member firms are affiliated with KPMG International Limited. KPMG was established in India in August 1993. Our professionals leverage the global network of firms, and are conversant with local laws, regulations, markets and competition. KPMG has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Jaipur, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, Vadodara and Vijayawada.
KPMG entities in India offer services to national and international clients in India across sectors. We strive to provide rapid, performance-based, industry-focused and technology-enabled services, which reflect a shared knowledge of global and local industries and our experience of the Indian business environment.
- Conduct comprehensive VAPT assessments for IT and OT environments.
- Identify and report vulnerabilities, including risk levels and potential impacts.
- Develop actionable recommendations to mitigate identified risks.
- Perform penetration testing on industrial control systems (ICS) and SCADA networks.
- Ensure compliance with relevant standards and frameworks (e.g., NIST, ISO 27001).
- Provide a detailed report of findings, including remediation strategies.
- Collaborate with the internal team and stakeholders to deliver results efficiently.
- Proven experience in IT/OT VAPT, with a strong understanding of ICS and SCADA security.
- Proficiency in tools like Burp Suite, Nessus, Metasploit, Nmap, etc.
- Familiarity with cybersecurity frameworks and compliance standards (NIST, IEC 62443, ISO 27001).
- Knowledge of network protocols, firewalls, and secure configurations in OT environments.
- Strong analytical and problem-solving skills.
- Excellent reporting and communication skills.
- Certification in relevant fields (e.g., CEH, CISSP, GICSP, OSCP) is a plus (not compulsory )
- Cyber security assessments
- Red Teaming
- Security architecture design
- Infrastructure and application security assessments
- Vulnerability assessment and penetration testing
- Security reviews of traditional IT and non-IT network environments including Telecom and OT networks
- ICS Security
- IOT Security
- API Security Testing
Equal employment opportunity information
KPMG India has a policy of providing equal opportunity for all applicants and employees regardless of their color, caste, religion, age, sex/gender, national origin, citizenship, sexual orientation, gender identity or expression, disability or other legally protected status. KPMG India values diversity and we request you to submit the details below to support us in our endeavor for diversity. Providing the below information is voluntary and refusal to submit such information will not be prejudicial to you.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: APIs Application security Burp Suite CEH CISSP Compliance Firewalls GICSP ICS IEC 62443 Industrial IoT ISO 27001 Metasploit Nessus NIST Nmap OSCP Pentesting Red team SCADA Security assessment Vulnerabilities
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.