Cyber Cloud Specialist, Senior Associate/ Assistant Manager

Job Description

At KPMG, your long-term future is every bit as important to us as it is to you. That’s why our aim is to give you experiences that will stay with you for a lifetime. Whether it’s great training and development, working across functional sectors, mobility opportunities or corporate responsibility volunteering activities – you’ll gain a wealth of experiences on which to build a rewarding career. We’re proud of our culture – it’s one that recognises hard work, encourages new ways of thinking and embraces diversity and inclusion. We have an innovative spirit which inspires what we do and how we do it – striving to be better lies at the heart of who we are. 
 
KPMG Cybersecurity professionals assist clients to address their concerns around Confidentiality, Integrity, and Availability of their technology, business systems, and information assets. Using a holistic view of how Technology and Business integrate, the Cyber team performs technology-risk focused assessments, technology compliance, IT/operational process reviews, and design of information risk & cyber security solutions. 
 
Cyber team members regularly interact with C-Suite clients, such as Chief Executive Officer (CEO), Chief Information Security Officer (CISO), Chief Information Officer (CIO), Chief Operating Officer (COO), Chief Risk Officer (CRO) and their direct reports. Hence, a client centric mind-set, understanding of IT within a Business context, and well-developed communication skills are essential. 
 
The role involves:
•    Design and deploy secure cloud infrastructure solutions on platforms such as AWS, Azure, or Google Cloud.
•    Implement security controls and measures to protect data, applications, and systems in the cloud environment.
•    Conduct security assessments and audits to identify vulnerabilities and recommend remediation strategies.
•    Develop and enforce security policies, standards, and procedures in accordance with industry best practices and regulatory requirements.
•    Collaborate with cross-functional teams to integrate security features into cloud-based applications and services.
•    Assist incident response team in investigating cloud security incidents and recovering cloud services from failures.
•    Evaluate the CI/CD pipeline and offer suggestions for improving security within the DevOps workflow.

⠀

The ideal candidate should possess: 
•    Bachelor’s degree in Computer Science, Computer/Electrical Engineering, Information Technology or equivalent.
•    A highly motivated individual in Cloud security and excellent communicator with strong analytical and good problem-solving skills.
•    Minimum 3-5 years of experience in cloud technology with a focus on Cloud security. 
•    Hands-on experience with cloud platforms such as AWS, Azure, or GCP.
•    Familiarity with compliance frameworks and regulations related to cloud security (e.g., MAS TRM, GDPR, HIPAA, SOC 2).
•    Proven experience in designing, implementing, and managing cloud security solutions.
•    Proficiency in cloud security concepts and best practices.
•    Intermediate and/or advance certifications relating to Microsoft Azure, AWS and GCP.
•    Knowledge of container security (e.g., Docker, Kubernetes) and serverless architecture security.
•    Experience with DevOps practices and tools such as CI/CD pipelines, version control systems (e.g., Git), and configuration management tools (e.g., Ansible).
•    Proficiency in infrastructure as code (IaC) principles and hands-on experience with Terraform/ARM/CloudFormation for provisioning cloud resources.
•    Excellent written and verbal communication skills with the ability to convey complex technical concepts to non-technical stakeholders.