Cyber Strategy & Governance, Associate Director
KPMG in Singapore is part of a global organization of independent professional services firms providing Audit, Tax and Advisory services. We operate in 143 countries and territories with more than 273,000 partners and employees working in member firms around the world. Each KPMG firm is a legally distinct and separate entity and describes itself as such. KPMG International Limited is a private English company limited by guarantee. KPMG International Limited and its related entities do not provide services to clients.
Job Description
Cyber Strategy & Governance is one of the pillars in KPMG’s cyber security business, the others being Cyber Transformation, Defence and Response. The Cyber Strategy & Governance team primarily assists clients to assess their cybersecurity risks and to develop and implement roadmaps and initiatives to manage the risks.
The CISO Advisory role involves:
- Advising CISOs across the financial and other sectors
- Developing thought leadership for CISOs and cyber security function
- Developing solutions to meet the CISO agenda
- Briefing boards and other execs on cyber security
- Leading major proposals and pitches
- Running large, complex or innovative projects, being hands-on
- Coaching and managing colleagues
- Working with our strategic alliance partners
- Working on strategic accounts
⠀
What are we looking for:
- A cyber security leader with experience across multiple cyber domains. Ideally, with operational experience in a CISO, or BISO function, and capable of designing and delivering CISO/CIO/CTO level solutions.
- Minimum 10 years of professional experience, at least 5 years should be spent advising at CISO/CIO/CTO or similar level.
- Ability to lead CISO advisory projects, such as:
- CISO / CISO as a service
- Target operating models and lines of defence
- Policy and standards development
- Metrics and dashboard development
- Board / exec presentation and training
- Threat and risk assessments, including risk quantification
- Information and cyber security assessments (NIST, ISO 27001 etc)
- Remediation programmes and portfolio optimisation
- Security by design in transformation programmes
- Relevant certifications, e.g. CRISC, CISSP.
Interpersonal/other skills:
- Executive presence. You should be able to present to senior executives and make an impact.
- Leading others. You should be able to supervise, motivate and engage your team members. Ability to write in plain English. Most projects end with a report presented to the client; you will be expected to write sections of the report on the areas you have worked on in plain (business) English.
- Time management. It is common to work on several projects at the same time. You should be able to understand priorities and manage expectations when deadlines are these are not achievable.
- Leading self. You should be able to work by yourself towards your mid-term and long-term career goals. Your senior peers will provide coaching and mentoring.
Only shortlisted candidates will be contacted by KPMG Talent Acquisition team, personal data collected will be used for recruitment purposes only.
At KPMG in Singapore we are committed to creating a diverse and inclusive workplace. We believe that diversity of thought, background and experience strengthens relationships and delivers meaningful benefits to our people, our clients and communities. As an equal opportunity employer, all qualified applicants will receive consideration for employment regardless of age, race, gender identity or expression, colour, marital status, religion, sexual orientation, disability, or other non-merit factors. We celebrate the different talents that our people bring and support every staff member in their journey to achieve personal and professional growth. One of the ways we do this is through Take Charge: Flexi-work, our flexible working framework which enables agile and innovative teams to help deliver our business goals.