Job Description

About KPMG in India KPMG entities in India are professional services firm(s). These Indian member firms are affiliated with KPMG International Limited. KPMG was established in India in August 1993. Our professionals leverage the global network of firms, and are conversant with local laws, regulations, markets and competition. KPMG has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Jaipur, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, Vadodara and Vijayawada. KPMG entities in India offer services to national and international clients in India across sectors. We strive to provide rapid, performance-based, industry-focused and technology-enabled services, which reflect a shared knowledge of global and local industries and our experience of the Indian business environment. As businesses leverage digitalization opportunities, their cyber-attack surface structurally increases, which can lead to business disruptions, data breaches and brand damage. High profile industry incidents show that these risks are real, and this has turned cyber resilience into a topic for Boards. Cyber-attacks can have adverse effects such as brand reputation, destruction of assets and loss of information. As part of the Cyber Transformation function, the CyberDefence capability has specific focus on identifying cyber threats, discovery of IT vulnerabilities, monitoring for cyber intrusions and response to security incidents and test our defenses. As part of the CyberDefence capability the Threat and Analytics team in CyberDefence has three main areas of focus: . Understand the internal and external threat landscape of the organization . Find unknown active cyber security threats and weaknesses in security controls by applying data analysis techniques to large, diverse sets of internal and external data. . Test security controls provide the ability to protect, detect and respond to real cyber-attacks. For this team we\'re looking for a Assistant Manager. Responsibilities . As a threat hunter you are responsible for: . Track TTPs and perform attribution for the most relevant threats . Analyze new threats, techniques or malware and translate them into preventive or detective capabilities. . Develop hypothesis on the unknown threat and proof them out during your analysis. . Find correlations in event data to automate classification and triage of events for further investigation. . Develop security \'use cases\' and threat scenarios. . Report out significant finds to relevant parties for awareness and after action. . Co-develop analytical algorithms or scripts to automate tasks. . Lead improvement projects in the Threat & Analytics team. . Work across multiple organizations, cultures and service providers to pull together actionable information and management information and deliver clear data products. The ideal candidate has: . Bachelor of Engineering or Equivalant . Minimum of 07 years IT security experience with deep knowledge and experience of advance analysis (e.g. malware analysis, forensic investigations, packet level analysis, indication of compromise, etc) . Understanding of attack activities - scans, man in the middle, sniffing, (D)DoS, phishing, and abnormal activities such as worms, Trojans, viruses, privilege escalations, etc. . Experience working in a complex global environment with common security device functions and countering a variety of attack vectors. . Knowledge of common operating systems and network device functions as well as a good understanding of cloud knowledge . Creative mind-set and proven ability to think as a hacker and to translate this into threat scenario\'s and use cases (evidence based analytical ability and attention to detail) . Broad experience in technical IT security topics and hold certifications like but are not required: GIAC Certified Forensic Analyst (GCFA), GIAC Certified Reverse Engineering Malware (GREM), GIAC Certified Forensic Examiner (GCFE), GIAC Certified Intrusion Analyst (GCIA), CEH . . Excellent verbal and written communication skills and the ability to interact professionally with a diverse group: executives, managers, and subject matter experts . Effective and persuasive in both written and oral communication in English strong interpersonal skills, with the ability to network across boundaries Equal employment opportunity information KPMG India has a policy of providing equal opportunity for all applicants and employees regardless of their color, caste, religion, age, sex/gender, national origin, citizenship, sexual orientation, gender identity or expression, disability or other legally protected status. KPMG India values diversity and we request you to submit the details below to support us in our endeavor for diversity. Providing the below information is voluntary and refusal to submit such information will not be prejudicial to you.

foundit