Senior Consultant Cyber Security IT Advisory

KPMG is a global organization of independent professional services firms providing Audit, Tax and Advisory services. KPMG is the brand under which the member firms of KPMG International Limited (“KPMG International”) operate and provide professional services. “KPMG” is used to refer to individual member firms within the KPMG organization or to one or more member firms collectively.KPMG firms operate in 145 countries and territories with more than 236,000 partners and employees working in member firms around the world. Each KPMG firm is a legally distinct and separate entity and describes itself as such. Each KPMG member firm is responsible for its own obligations and liabilities.KPMG International Limited is a private English company limited by guarantee. KPMG International Limited and its related entities do not provide services to clients.KPMG Kuwait is currently embarking on a period of growth which has created several exceptional opportunities for highly motivated and results-driven individuals willing to play an important role in the ongoing growth and business development efforts.KPMG Kuwait is seeking experienced Senior Consultant to join the Cyber Security team within its IT Advisory practice in Kuwait. Primary Duties & ResponsibilitiesGood understanding of developing security policies, standards, guidelines, processes, IT procedures and minimum-security hardening guidelines for IT Assets.Conduct Vulnerability Assessment and Penetration testing exercise covering Web Application, Mobile Application (IOS, Android), IT Infrastructure Penetration Testing, Wireless Security Assessment.Conduct configurations reviews on network and infrastructure periodically and update the management about risk rating and mitigation plans, along with Collaborating with responsible owners to resolve identified vulnerabilities and weaknesses.Review the internal controls that are in place to monitor the compliance of employees with security policies and report any exceptions/violations, along with reviewing the compliance of standards based on NIST, SANS and ISO security standards.Perform risk assessment and risk treatment activities across departments and service lines on various sectors like Banking, Telecom etc.Preparing reports on the security of technology and operationsActing as a key consultant with stakeholders/Business Owners in ensuring appropriate security measures are implemented in a rapidly changing technical landscape.Be required to stay up to date with of all regulations and legislation related to the banking, Telecom and government sectors (e.g. SANS, Cloud Framework, GDPR etc.)Required SkillsetAs Senior Consultant, the candidate would be expected to have the following academic, technical and behavioral skills:B.S. in Computer Engineer, Telecommunication, Information Security, or Information TechnologyBetween 4-6 years of relevant consulting experiencing reputable consulting firm or big 4 firmKnowledge of network and we related all networking protocolsWorking knowledge of the security assessment tools (Nessus, Nexpose, Accunetix, Burp Suite, IBM App Scan, nmap, metasploit, etc and Frameworks like Kalilinux, Parrot OS.)Desirable to have CEH, CHFI & CISSP certification. Other certificates such as CISM, CISA, ISO 27001 & ISO 23301 or similar certification, will be valuedKnowledge/Experience in technologies IDAM, Active Directory/LDAP, FIM, SOC, EDR, DLP, BYOD, NAC, HoneyPot and other authentication technologiesExperience and Knowledge on developments languages like, ASP, Java and Python is a added advantage.Experienced in performing Vulnerability Assessment and Penetration testing exercise covering Web Application, Mobile Application (IOS, Android), IT Infrastructure Penetration Testing and Wireless Security AssessmentExtensive knowledge on Secure development life cycleExperience with OS systems with main focus on UNIX experienceExcellent analytical and problem solving skills.Excellent communication and presentation skills.Previous experience in working with multicultural teams.Good interpersonal skills and the willingness to accept challenges and responsibility.Sound communication skills in English, both written and spoken. Arabic language is an advantage