Job Summary

  • Company
    KPMG Chartered Accountants
  • Location
  • Keywords / Skills
    CISA , CISSP, Ethical Hacking, CISCO qualifications
  • Years of Experience
    0 - 2 years
  • Function
    Full Time, Employee
  • Education
  • Role
    • Project Management • System Analyst/Tech Architect • Business Analyst • Security Analyst
  • Industry
    Consulting/Advisory Services
  • facebook
  • twitter
Associate / Senior Associate – Emerging Tech Risk & Cyber (IT Security)
Description :
Technology is a key facilitator of rapid global business growth and advancement. It is also a major source of business risk. Boards and senior executives recognise the importance of technology, but often struggle to understand and manage it effectively. Often, business executives and their IT professionals don't speak the same language.
This communications gap can lead to misunderstandings and misaligned expectations and outcomes.

KPMG’s IT Security Advisory practice helps bridging the communications gap between business executives and IT professionals. Our professional assists clients to focus on fundamental business issues that help increase revenues, control costs, and identify and manage risks, including the risks inherent in the technology systems used to support business objectives. IT Security Advisory Services also provides information to clients to help them meet their strategic and financial goals safely. Our service offerings are closely aligned to our client’s business IT lifecycle to enable focused advisory efforts at all levels of the IT spectrum.
Responsibilities :
Working as part of our security team, you will be required to perform IT control environment reviews and Security infrastructure assessment that includes but not limited to the following:
• Detailed environment security reviews (Wintel, Novell, AS400, Unix)
• Penetration tests (internal, external, web, wireless)
• Firewall and router assessments
• ERP security reviews (SAP, Oracle)
• Database security reviews
• Security framework assessments
• Security management and monitoring assessment
• Security policy development and assessment
• Security training – internal and external
Requirements :
• A Bachelor's Degree in Computer Science,/Information Technology/Engineering/any related field.
• Candidates with CISA , CISSP, Ethical Hacking, CISCO qualifications and/or related certifications would be an advantage.
• For Senior Associate Level – A minimum of 3 years experience in computing with a sound knowledge of IP networks and associated security issues.
• Knowledge of security administration, assessment, policy development, firewall/DMZ design and implementation, network security, and or security architecture development.
Exposure to a range of industries would be ideal, but not essential. Likely industry exposure will include government, health, energy & natural resources, manufacturing and finance.
• A team leader and support with good communication, presentation and interpersonal skills.
• For Associate Level – a good understanding of technology and security concepts and principles plus some working knowledge
• Analytical and detail conscious
• Independent, self-motivated, organized, and results oriented individuals capable of handling multiple tasks and achieving tight deadlines
• Strong analytical and management skills
• Good command of English

About Company

KPMG first established a presence in Malaysia in 1928 and the Malaysian firm has grown to be a part of the global success of KPMG's network of firms. KPMG's operations in Malaysia are carried out in association with KPMG Desa Megat & Co. The Malaysian firm has over 2,000 staff located across 8 offices.

Our single management structure for all our Malaysia offices allows efficient and rapid allocation of experienced professionals wherever the client is located in the country. The flexibility of this single structure allows us to effectively serve companies across Malaysia, and we have many projects where professionals from different offices work together on a work engagement under the supervision of a single nominated client partner, who has operational control of all resources.

We have established industry groups which enable the delivery of targeted, industry-specific experience, expertise and methodologies. The focus on industry and country-specific knowledge helps us deliver exceptional people with an intimate knowledge of our client’s specific business issues, deep industry expertise as well as an overriding commitment towards service excellence.