Global Digital Risk Senior Associate

About KPMG International

Together with more than 273,000 colleagues in 143 countries throughout our member firms, people at KPMG imagine big ideas and bring solutions to life for clients both big and small. A role with KPMG International will open a world of opportunity in your career.

KPMG International helps set the strategy and protects the reputation of this global organization of independent professional services firms providing Audit, Tax and Advisory services. We deliver value to our member firms and drive positive change in the communities we serve. By joining us you will gain a unique understanding of how a global organization operates and work on projects that impact the whole organization. From setting standards and best practices to developing innovative tech- enabled solutions for clients, you'll be part of a global team changing the way our business operates. We look forward to welcoming you to our team.

About this Global Group

Global Quality & Risk Management

Global Quality & Risk Management (GQ&RM) helps protect the KPMG brand and reputation by dealing with live issues and learning quickly from challenges across the network. GQ&RM develops globally consistent quality and risk management policies to enable the business to make smart, agile decisions, and we monitor compliance and the quality of delivery across all three functions.

GQ&RM is comprised of a number of high-performing teams, including: Advisory Risk, Audit Risk, Tax & Legal Risk, Digital Risk, Risk Assessment, Monitoring and Reporting, Policy, Independence, Ethics, Business Operations, Transformation and Operations. Working together, our global team is delivering value to our member firms and functions, and driving our ambition to become the most trusted and trustworthy professional services firm.

About this team

The Global Digital Risk (GDR) team is responsible for the development, maintenance, and assurance of the firm's critical global digital risk policies and awareness training, reviews of the testing of a baseline set of information protection & security controls, global privacy, and risk management (including risk management for emerging technologies).

Role summary

The Global Digital Risk (GDR) team is responsible for the development, maintenance, and assurance of the firm's critical global digital risk policies and awareness training, reviews of the testing of a baseline set of information protection & security controls, global privacy, and risk management (including risk management for emerging technologies).

Key Accountabilities

• GDR Risk Management:  responsible for: finalizing documentation for 2nd line risk program- KPMG Unified Risk Program, writing in coordination with the policy team the Information Protection Risk Policy, developing and coordinating the requirements for the unified risk program, and assisting in the role out and communication of all of the 2nd line risk programs.
• GDR Policy & Awareness:  will assist in the coordination between the IPCR, Transformation, Privacy and Risk Teams to ensure that all requirements are included in the risk program; will coordinate with supporting teams to ensure that documentation and comms is coordinated
• GDR Assurance:  will assist in the coordination between the IPCR, Transformation, Privacy and Risk Teams to ensure that all requirements are included in the risk program; will coordinate with supporting teams to ensure that documentation and comms is coordinated
• GDR Privacy:  will assist in the coordination between the IPCR, Transformation, Privacy and Risk Teams to ensure that all requirements are included in the risk program; will coordinate with supporting teams to ensure that documentation and comms is coordinated

Experience /Knowledge / Qualifications

• Experience of information security or any of its disciplines such as risk, compliance, governance or technology security, information protection, data security, digital risk management; or knowledge of standards such as ISO 27001 or NIST is required.
• Bachelor’s degree from an accredited college or university
• Information Security or Data Protection professional qualifications from either (ISC)2, ISACA, Microsoft, NIST, SANS, CSA, CompTIA, or BCS such as Cyber Security, SSCP, Security+, SC-900, GISF, FISMP, IAPP, CISSP, CISM or CRISC would be an advantage.
• Knowledge, involvement of and experience in security operations would be in useful.
• Experience in analysis of emerging technology, threats or risks would be useful.
• Strong analytical skills with the ability to collect, organise, analyse, and disseminate significant amounts of information as well as report writing and presenting findings
• Ability to see the “big picture” (ability to prioritise and see what is most important)
• Excellent spoken and written English skills

Agile/Flexible Working

At KPMG International, we are supportive of helping you to achieve a balance between your home and work demands. We are happy to discuss individual requirements and our range of flexible working arrangements could be of interest. Please ask to find out more.

KPMG International's commitment to inclusion & diversity

At KPMG International, we recognise that we need inclusion and diversity to be successful. We want to attract, retain and develop diverse talent at all levels. This means recruiting from the widest pool of talent across our network and beyond, removing barriers that can prevent our people from reaching their full potential, and fostering a fully inclusive environment which empowers everyone to bring their whole selves to work.

Applying with a disability

KPMG International is proud to be an inclusive place to work and we are committed to ensuring that you are treated fairly throughout our recruitment process. Should you be successful after the initial application stage, please discuss any reasonable adjustments that you may require with your recruitment contact.

 #LI-CB1