Our Client in India is one of the leading providers of risk, financial services and business advisory, internal audit, corporate governance, and tax and regulatory services.

Our Client was established in India in September 1993, and has rapidly built a significant competitive presence in the country. The firm operates from its offices in Mumbai, Pune, Delhi, Kolkata, Chennai, Bangalore, Hyderabad , Kochi, Chandigarh and Ahmedabad, and offers its clients a full range of services, including financial and business advisory, tax and regulatory.

Our client has their client base of over 2700 companies. Their global approach to service delivery helps provide value-added services to clients. The firm serves leading information technology companies and has a strong presence in the financial services sector in India while serving a number of market leaders in other industry segments.

Roles & responsibilities
The Security Technical Assessment Analyst will:
• Work collaboratively with internal stakeholders and external 3rd parties to
• Perform security technical configuration reviews,
• Perform security technical assessments,
• Support the delivery of security testing across the software development lifecycle on technology solutions & services,
• Proactively manage the end-to-end penetration testing process for technology solutions,
• Provide risk-based pragmatic technical security advice and recommendations. Maintain good relationships with internal stakeholders and ensure customer satisfaction, by delivering quality service and escalation of issues as necessary;
• Lead on internal red team exercises to
• Coordinate Red Team Operations: Oversee the planning, execution, and reporting of red team exercises to identify vulnerabilities and improve the organization’s security posture. Ensure alignment with industry standards and best practices.
• Develop and Implement Strategies: Create and maintain comprehensive red team strategies, including threat modelling, attack simulations, and penetration testing. Collaborate with other security teams to integrate findings into the overall security framework.
• Foster a culture of continuous improvement and innovation within the team to stay ahead of emerging threats.
• Maintain good relationships with internal stakeholders and ensure customer satisfaction, by delivering quality service and escalation of issues as necessary.
• Influence colleagues to drive technical remediation in a collaborative manner in line with KPMG risk appetite.
• Identify and drive security technical assessments service improvements, especially using automation.

Mandatory technical & functional skills
• Very good and relevant experience in a similar security technical assessment analysis and red team testing role.
• Understanding of tooling associated with security technical assessments such as AWS Config, Azure Policy, Static Application Security Testing and Dynamic Application Security Testing.
• Experience and knowledge in security technical assessments of applications and infrastructure within the Cloud, such as AWS and Azure.
• Experience working with external penetration testing vendors.
• Experience of successfully working in a fast paced, customer service environment, delivering high quality information security services.
• It would be advantageous if you can demonstrate some, or all:
• Experience and knowledge of container or serverless platforms.
• PowerShell scripting
• Any security or vulnerability management product certification.