Join to apply for the Manager, Cyber Penetration Testing role at KPMG US

Learn more about the general tasks related to this opportunity below, as well as required skills. Known for being a great place to work and build a career, KPMG provides audit, tax and advisory services for organizations in today's most important industries. Our growth is driven by delivering real results for our clients. It's also enabled by our culture, which encourages individual development, embraces an inclusive environment, rewards innovative excellence and supports our communities. With qualities like those, it's no wonder we're consistently ranked among the best companies to work for by Fortune Magazine, Consulting Magazine, Seramount, Fair360 and others. If you're passionate about your future as we are, join our team.

KPMG is currently seeking a Manager, Cyber Penetration Tester to join our Enterprise Security Services organization. This is a remote work opportunity.

Responsibilities:

Conduct detailed network, and web application penetration tests

Perform red teaming exercises to assess the detection capabilities of our security operations

Engage in Artificial Intelligence (AI) Red Teaming to improve the robustness and security of AI systems

Facilitate security assessments, and manage the resolution of identified vulnerabilities

Stay current with the latest security trends, and techniques

Provide guidance and mentoring to junior team members

Qualifications:

Minimum five years of recent practical experience in cybersecurity, focusing on network and web application penetration testing, red teaming, AI red teaming, cloud penetration testing, and security assessments

Bachelor's degree from an accredited college or university is preferred; relevant certifications such as GIAC Penetration Tester (GPEN), Offensive Security Certified Professional (OSCP), Offensive Security Certified Expert (OSCE), Certified Information Systems Security Professional (CISSP), or similar are highly preferred; Certifications in Azure is preferred

Experience with common and emerging security threats, scanning tools, and assessment methodologies and demonstrated experience and understanding of security principles, IT security controls and related technologies and products; solid foundation in network and cloud security concepts, with practical experience in cloud penetration testing, and strong understanding of network penetration testing MITRE Adversarial Threat Landscape for Artificial-Intelligence Systems (MITRE ATLAS), Open Worldwide Application Security Project (OWASP), Penetration Testing Execution Standard (PTES), and National Institute of Standards and Technology (NIST)

Proficiency in scripting and automation with experience in Python, Bash, or PowerShell; background with adversarial machine learning techniques, as well as familiarity with common ML frameworks and tools such as prompt injection, data poisoning, and model evasion

Strong verbal/written communication, problem solving, analytical and independent judgment skills to support an environment driven by customer service and teamwork

Must be authorized to work in the U.S. without the need for employment-based visa sponsorship now or in the future. KPMG LLP will not sponsor applicants for U.S. work visa status for this opportunity (no sponsorship is available for H-1B, L-1, TN, O-1, E-3, H-1B1, F-1, J-1, OPT, CPT or any other employment-based visa)

KPMG complies with all local/state regulations regarding displaying salary ranges. The salary ranges vary by location and are based on relevant factors including skills, experience, and market conditions. The total rewards package includes a comprehensive benefits plan, with medical, dental, vision, disability, life insurance, 401(k), and well-being benefits. Additional details are available on our Careers site.

Follow this link for salary ranges outside of CA: https://kpmg.com/us/en/how-we-work/pay-transparency.html/?id=7463_9_25

California Salary Range: $115,600 - $246,900

KPMG is an equal opportunity employer and complies with all applicable laws regarding recruitment and hiring. No phone calls or agencies please.

We consider qualified applicants with arrest and conviction records, consistent with applicable laws.

Additional Information: Seniority level: Mid-Senior level

Employment type: Full-time

Job function: General Business

#J-18808-Ljbffr