Senior Bilingual Security Analyst

Overview
At KPMG, you'll join a team of diverse and dedicated problem solvers, connected by a common cause: turning insight into opportunity for clients and communities around the world.

Digital Security Group at KPMG in Canada is entrusted with protecting the Firm's and our clients' digital assets. DSG is not just about technology; it's about our relationship with the business and partnering with it to help achieve its goals. What makes us strong is how we work together to support our colleagues in solving their business challenges.

The Bilingual Sr. Security Analyst is primarily responsible for managing, maintaining and optimizing security compliance for core systems. The Sr. Security Analyst will be required to perform other Information Security related tasks as well.

The role requires an In-depth understanding of Information Security practices as well as a good understanding of Microsoft products (such as Windows, Outlook/Exchange), Vulnerability Management, Anti-Virus, Identity & Access management the network (proxy servers, firewalls), databases, cloud services (AWS, Azure) and exposure to a DLP products (such as Symantec, McAfee or RSA).
The Sr. Analyst will be a member of the Information Security team at KPMG and work under the supervision of the Associate Director, Digital Security.

What you will do
The Sr. Security Analyst will be responsible for monitoring systems, both Host and Network-based, and help improve the implementation of those systems. The activity of monitoring includes daily review of the product consoles, analyzing the events, and determining which events are actionable. The Sr. IT Security Analyst will need to interact with all KPMG business functions, bridging the gap between technical data and business objectives.

Responsibilities include but not limited to:

• Investigate, respond, and resolve security incidents and vulnerabilities reported by the Global SOC & Local SecOps Teams.
• Create and distribute daily/weekly status and compliance reports.
• Ensure operational health and compliance of all security controls (EDR, DLP, AV, etc.)
• Engage with business contacts and IT to identify sensitive data and monitor for unauthorized disclosures.
• Resolve and document complex security incidents.
• Prepare formal incident reports.
• Be a secondary responder for cyber-security incidents.
• Proactively audit the network security environment and provide actionable information pertaining to risk discovery and remediation technologies, techniques, and processes.
• Consult, advise, and collaborate with department staff and personnel within ITS to coordinate data security related activities.
• Assist with execution and enhancements of the Information Security Program.
• Assist with application/software security reviews.
• Perform regular PC/MacOS security audits to ensure compliance with standards and policies.
• Update skills as necessary to support KPMG Security and remain knowledgeable of industry standards and advancements.
• Performs other security duties, when required.

Position may require on-call and after-hours work, as needed to support KPMG business needs.

What you bring to the role

• Associate degree in a related technical field or equivalent experience.
• Information Security Certifications/Accreditations preferred but not required
• Azure and/or AWS Certifications considered an asset
• Microsoft MCSE/MCSA and/or Cisco considered an asset
• Minimum of 2 years of progressive experience in information security services, including one year in systems security with certification, maintenance and use of security products in a distributed enterprise environment.
• Experience with:
  • Azure Active Directory
  • Microsoft Defender for Endpoints
  • Microsoft Threat and Vulnerability Management
  • Intune & Compliance policies
  • Cloud security principles
  • iOS, MacOS & Windows Operating Systems
• Fluent in French and English, both in oral and written communications
• Ability to communicate effectively orally and in writing
• Ability to analyze and understand technical information
• Ability to successfully interact with non-technical business contacts
• Strong familiarity with data classification concepts and processes
• Proactive approach and results oriented
• Self-motivated and resourceful
• Understanding of data loss and data protection processes
• Experienced in a wide variety of technical solutions focused on data protection and cyber security
• Experience with Azure Sentinel, Defender ATP/EDR, or Defender AV is an asset
• Knowledge or experience in cloud security (Azure or AWS) is an asset
• Proficiency in PowerBI is an asset
• A programming background, ideally in PowerShell is an asset

This position requires written and oral fluency in English. The successful candidate will be required to support KPMG employees nationally and will be required to communicate with English-speaking colleagues. This individual will be required to create documentation and share guidance to those in English-speaking provinces.

Providing you with the support you need to be at your best
Our Values, The KPMG Way
Integrity, we do what is right | Excellence, we never stop learning and improving | Courage, we think and act boldly | Together, we respect each other and draw strength from our differences | For Better, we do what matters

KPMG in Canada is a proud equal opportunities employer and we are committed to creating a respectful, inclusive and barrier-free workplace that allows all of our people to reach their full potential. A diverse workforce is key to our success and we believe in bringing your whole self to work. We welcome all qualified candidates to apply and hope you will choose KPMG in Canada as your employer of choice.

Adjustments and accommodations throughout the recruitment process
At KPMG, we are committed to fostering an inclusive recruitment process where all candidates can be themselves and excel. We aim to provide a positive experience and are prepared to offer adjustments or accommodations to help you perform at your best. Adjustments (informal requests), such as extra preparation time or the option for micro breaks during interviews, and accommodations (formal requests), such as accessible communication supports or technology aids, are tailored to individual needs and role requirements. You will have the opportunity to request an adjustment or accommodation at any point throughout the recruitment process. You will have an opportunity to request an adjustment or accommodation at any point throughout the recruitment process. If you require support, please contact KPMG's Employee Relations Service team by calling 1-888-466-4778.