Cyber Operations, Cyber Threat Analyst
at KPMG
Dallas, Texas, USA -
Start Date | Expiry Date | Salary | Posted On | Experience | Skills | Telecommute | Sponsor Visa |
---|---|---|---|---|---|---|---|
Immediate | 02 Dec, 2024 | Not Specified | 03 Sep, 2024 | 5 year(s) or above | Leading Meetings,Third Party Vendors,Teamwork,Threat Intelligence,Web Intelligence,Process Definition,Customer Service,Project Estimation,Security Operations,Workbooks,Gcih,Incident Response,Risk,Crisis Management | No | No |
Required Visa Status:
Citizen | GC |
US Citizen | Student Visa |
H1B | CPT |
OPT | H4 Spouse of H1B |
GC Green Card |
Employment Type:
Full Time | Part Time |
Permanent | Independent - 1099 |
Contract – W2 | C2H Independent |
C2H W2 | Contract – Corp 2 Corp |
Contract to Hire – Corp 2 Corp |
Description:
Known for being a great place to work and build a career, KPMG provides audit, tax and advisory services for organizations in today’s most important industries. Our growth is driven by delivering real results for our clients. It’s also enabled by our culture, which encourages individual development, embraces an inclusive environment, rewards innovative excellence and supports our communities. With qualities like those, it’s no wonder we’re consistently ranked among the best companies to work for by Fortune Magazine, Consulting Magazine, Seramount, Fair360 and others. If you’re as passionate about your future as we are, join our team.
KPMG is currently seeking a Cyber Operations, Cyber Threat Analyst to join our Enterprise Security Services organization. This is a remote work opportunity.
Responsibilities:
- Take responsibility for the daily creation and distribution of CTI report reports which includes daily CTI news and its relevance to KPMG, to senior leadership and various workstreams; handle alert and conduct investigations using CTI tools; perform comprehensive analysis of both successful and unsuccessful intrusions by targeted threat actors; construct detailed descriptions of campaigns, actors, and organizations
- Seek out, collect, and properly exploit intelligence from various sources; generate intelligence from internal data sources and share it accordingly to further the organization’s objectives; produce operating metrics and key performance indicators
- Assist with IOC sweeps/blocks/investigations of hits and automating this task; help with the assessment of the top threat actors/malware for the firm to prioritize assessments/hunts
- Research and develop risk mitigating approaches and drive response and remediation; document processes and procedures in the form of playbooks and reference guides
- Lead internal skills development activities for information security personnel on the topic of cyber threat intelligence by providing mentoring and conducting knowledge sharing sessions
- Provide input to business cases and presentations to senior IT leadership of proposed security products and studies
Qualifications:
- Minimum five years of recent experience in cyber threat intelligence and/or cyber threat hunting; experience in security monitoring, security operations, and incident response activities, preferably within a professional services firm or a similar environment
- Bachelor’s degree from an accredited college/university preferred; relevant certifications (not required but desirable): GCTI, GCIH, GCFE, GCFA, ATT&CK CTI Cert
- Knowledge and experience in automating tasks, such as creating logic apps and scripting in PowerShell/Python to automate workflows/tasks; knowledge or background in snort rules (either reading and/or writing them); understanding of Microsoft KQL, particularly in writing queries and creating workbooks
- Experience in defining security monitoring rules, monitoring events, assessing risk, responding to incidents, and providing security oversight related to the security features of IT tools supported by the IT operations teams; experience in developing/utilizing SIEM queries for investigating IOCs within the network and in conducting analysis based on Deep Dark Web intelligence
- Strong knowledge of incident response and crisis management with the ability to identify both tactical and strategic solutions; experience with IT process definition and/or improvement; able to coordinate, work with, and gain the trust of business stakeholders, technical resources, and third-party vendors; excellent verbal/written communication skills with the ability to effectively interact with individuals at all levels of responsibility and authority; outstanding collaboration, analytical, and presentation skills
- Experience in leading meetings and operating effectively in a matrixed environment; must be able to prioritize, delegate, and support an environment driven by customer service and teamwork; robust troubleshooting and organizational skills, with the capability to work on multiple projects simultaneously; must be able to participate in resource planning processes based on defined organizational plans; capable of participating in the development of resource plans and project estimation
- US Citizenship is required
KPMG complies with all local/state regulations regarding displaying salary ranges. If required, the ranges displayed below or via the URL below are specifically for those potential hires who will work in the location(s) listed. Any offered salary is determined based on relevant factors such as applicant’s skills, job responsibilities, prior relevant experience, certain degrees and certifications and market considerations. In addition, the firm is proud to offer a comprehensive, competitive benefits package, with options designed to help you make the best decisions for yourself, your family, and your lifestyle. Available benefits are based on eligibility. Our Total Rewards package includes a variety of medical and dental plans, vision coverage, disability and life insurance, 401(k) plans, and a robust suite of personal well-being benefits to support your mental health. Depending on job classification, standard work hours, and years of service, KPMG provides Personal Time Off per fiscal year. Additionally, each year the firm publishes a calendar of holidays to be observed during the year and provides two firmwide breaks each year where employees will not be required to use Personal Time Off; one is at year end and the other is around the July 4th holiday. Additional details about our benefits can be found towards the bottom of our KPMG US Careers site at “Benefits & How We Work”.
Follow this link to obtain salary ranges by city outside of CA:
https://kpmg.com/us/en/how-we-work/pay-transparency.html/?id=4847924
KPMG LLP (the U.S. member firm of KPMG International) offers a comprehensive compensation and benefits package. KPMG is an affirmative action-equal opportunity employer. KPMG complies with all applicable federal, state and local laws regarding recruitment and hiring. All qualified applicants are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, citizenship status, disability, protected veteran status, or any other category protected by applicable federal, state or local laws. The attached link contains further information regarding the firm’s compliance with federal, state and local recruitment and hiring laws. No phone calls or agencies please.
KPMG recruits on a rolling basis. Candidates are considered as they apply, until the opportunity is filled. Candidates are encouraged to apply expeditiously to any role(s) for which they are qualified that is also of interest to them.
KPMG does not currently require partners or employees to be fully vaccinated or test negative for COVID-19 in order to go to KPMG offices, client sites or KPMG events, except when mandated by federal, state or local law. In some circumstances, clients also may require proof of vaccination or testing (e.g., to go to the client site)
Responsibilities:
- Take responsibility for the daily creation and distribution of CTI report reports which includes daily CTI news and its relevance to KPMG, to senior leadership and various workstreams; handle alert and conduct investigations using CTI tools; perform comprehensive analysis of both successful and unsuccessful intrusions by targeted threat actors; construct detailed descriptions of campaigns, actors, and organizations
- Seek out, collect, and properly exploit intelligence from various sources; generate intelligence from internal data sources and share it accordingly to further the organization’s objectives; produce operating metrics and key performance indicators
- Assist with IOC sweeps/blocks/investigations of hits and automating this task; help with the assessment of the top threat actors/malware for the firm to prioritize assessments/hunts
- Research and develop risk mitigating approaches and drive response and remediation; document processes and procedures in the form of playbooks and reference guides
- Lead internal skills development activities for information security personnel on the topic of cyber threat intelligence by providing mentoring and conducting knowledge sharing sessions
- Provide input to business cases and presentations to senior IT leadership of proposed security products and studie
REQUIREMENT SUMMARY
Min:5.0Max:10.0 year(s)
Information Technology/IT
IT Software - Network Administration / Security
Software Engineering
Graduate
Bachelor’s degree from an accredited college/university preferred; relevant certifications (not required but desirable): gcti gcih gcfe gcfa att&ck cti cert
Proficient
1
Dallas, TX, USA