Description:
Whatever your reason is for wanting to look for a new job, joining KPMG may be the best next step for your career in IT.
We are currently seeking to hire an Information Security Engineer who will join our internal IT department on a permanent basis, based in Dublin. The role will support building and managing a comprehensive security program that reduces the risk to information assets and supports compliance with legal and business requirementsz
- Knowledge of application, network and operating system security.
- Experience working in a professional services or financial firm would be advantageous.
- Good understanding of Windows, both server and client.
- Knowledge of vulnerability scoring systems (CVSS/CMSS), OWASP Top 10, SANS top 25 and Mitre Att&ck.
- Experience of vulnerability scanning tools and application security tools.
- Coding/scripting experience
- Assessment of vulnerabilities identified by infrastructure scan, intelligence, and other tools.
- Assessing and verifying code vulnerabilities reported by our SAST/DAST systems.
- Assist in co-ordination and completion of remediation tasks for network, operating system, client and application vulnerabilities.
- Interaction with local and global teams (security engineering, patching, penetration testing, application development, risk management, etc).
- Maintain a knowledge of the threat landscape.
- Provide security reports for management.
- Development of new processes/scripts to improve the Security 'Hygiene' of the KPMG Ireland estate and identify anomalies.
- Support business and development teams in ensuring application security processes and procedures are embedded across the firm performing application development.
- Investigate and resolve issues escalated to the IT Security team from system generated events, IT teams and SOC.
- Ongoing liaison with the Information Security, other IT teams, and peers across the global KPMG organisation.
- Ad-hoc collaboration with management on other security related matters/projects.