Job Summary
Experience:
6.06 - 10.00 Years
Industrial Type:
IT-Software/Software Services
Location:
Bangalore,Gurgaon,Pune
Functional Area:
IT Software - Other
Designation:
Security Tech Assessor (Cloud Security)- AM - BLR/Pune/GGN
Key Skills:
Cloud Security, Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST) , Vulnerability Assessment and Penetration Testing
Educational Level:
Graduate/Bachelors
Job Post Date:
2025-07-10 12:09:58
Stream of Study:
Degree:
BE-Comp/IT, BE-Other, BTech-Comp/IT, BTech-Other, MBA, MCA
Company Description
Our Client in India is one of the leading providers of risk, financial services and business advisory, internal audit, corporate governance, and tax and regulatory services.
Our Client was established in India in September 1993, and has rapidly built a significant competitive presence in the country. The firm operates from its offices in Mumbai, Pune, Delhi, Kolkata, Chennai, Bangalore, Hyderabad , Kochi, Chandigarh and Ahmedabad, and offers its clients a full range of services, including financial and business advisory, tax and regulatory.
Our client has their client base of over 2700 companies. Their global approach to service delivery helps provide value-added services to clients. The firm serves leading information technology companies and has a strong presence in the financial services sector in India while serving a number of market leaders in other industry segments.
Job Description
Role
The role involves supporting the end to end Security Technical Assessment service. The security Technical Assessments service helps defend KPMG and its clients by ensuring Security Technical assessments of KPMG information assets are performed and pro-actively driving findings and remediations in conjunction with Enterprise wide and Technology engineering teams, in alignment with KPMG risk objectives.
The Security Technical Assessment Analyst will:
•Work collaboratively with internal stakeholders and external 3rd parties to
•perform security technical configuration reviews,
•perform security technical assessments,
•support the delivery of security testing across the software development lifecycle on technology solutions & services,
•support the completion of Red Team exercises,
•proactively manage the end to end penetration testing process for technology solutions,
•review any technical security exception requests, providing recommendations and documenting findings and actions and
•provide risk-based pragmatic technical security advice and recommendations;
•Maintain good relationships with internal stakeholders and ensure customer satisfaction, by delivering quality service and escalation of issues as necessary;
•Influence colleagues to drive technical remediation in a collaborative manner in line with KPMG risk appetite;
•Identify and drive security technical assessments service improvements, especially using automation.
•Provide advice to security technical assessments service owner on ways to improve control mechanisms, identify, evaluate, and mitigate risks,
•Attend and support internal and external audits from a security technical assessments service perspective;
•Support investigations and resolutions of security problems to find a root cause and find a balanced outcome;
•Provide analysis on trends and proactively highlight issues and areas of concern;
•Create any required documentation to support the security technical assessment conducted;
•Maintain and update service documentation, such as process guides;
•Assist with reporting to leadership and other service stakeholders on service performance (against KPIs) and risk exposure (against KRIs).
•Input to development of security technical assessments standards and security policies;
•Work towards and achieve or extend professional certifications as part of personal development.
