Job Description
16 days ago
We are seeking Cyber simulated attack managers to join our Cyber Defence team. Our team delivers both strategy and implementation. We have a strong focus on serving our clients' needs and our industries. We strive to become a responsible corporate citizen that has a positive impact on our environment and community.
Cyber Security Benefits
• Cyber security as a business enabler, not just an IT issue
Key Responsibilities
• Lead various cyber-attack simulation projects using red team / blue team / purple team exercises
• Conduct social engineering and email phishing attacks to simulate the theft of passwords, infiltrate systems, and download malware / ransomware
• Lead advanced security assessment and infrastructure penetration tests on different complex platforms and emerging technologies
• Report testing results to senior stakeholders, Board and Audit Committee
• Develop proposal, project scoping, and the review of deliverables
• Drive continuously improvement in security assessment methodologies
• Develop marketing and training materials to help develop staff awareness within the company and communicate KPMG's capabilities to clients
Requirements
• Bachelor's degree in computer science, Information Technology, or related field
• At least one professionally qualification required: CREST Certified Simulated Attack Manager, GXPN, OSCE3, OSEE or other relevant qualifications
• Minimum of 5 years of experience working in Red Teaming, Purple Teaming, simulation attack, iCAST, Web/Mobile/Network/OT/IoT/other Penetration Tests, Vulnerability Assessment, Source Code Review, Appliance/System/Cloud Configuration Review, Malware development, Social Engineering
• Strong knowledge in threat intelligence, reverse engineering, security products, incident response, SOC operation or other related areas
• Delivered projects in accordance with industry recognised testing standards and experience in common red teaming tools
• Strong knowledge base in enterprise technologies and operations, enterprise networking, internet application security, database security evaluation and architecture, with self-motivated learning ability
• Be able to lead a team
• Have strong analytical, problem solving and inter -personal skills
• Commands excellent written and oral communication skills with the ability to present ideas and results to technical and non-technical audiences
• Excellent written and verbal communication skills in English and Chinese (Mandarin or Cantonese)
Cyber Security Benefits
• Cyber security as a business enabler, not just an IT issue
Key Responsibilities
• Lead various cyber-attack simulation projects using red team / blue team / purple team exercises
• Conduct social engineering and email phishing attacks to simulate the theft of passwords, infiltrate systems, and download malware / ransomware
• Lead advanced security assessment and infrastructure penetration tests on different complex platforms and emerging technologies
• Report testing results to senior stakeholders, Board and Audit Committee
• Develop proposal, project scoping, and the review of deliverables
• Drive continuously improvement in security assessment methodologies
• Develop marketing and training materials to help develop staff awareness within the company and communicate KPMG's capabilities to clients
Requirements
• Bachelor's degree in computer science, Information Technology, or related field
• At least one professionally qualification required: CREST Certified Simulated Attack Manager, GXPN, OSCE3, OSEE or other relevant qualifications
• Minimum of 5 years of experience working in Red Teaming, Purple Teaming, simulation attack, iCAST, Web/Mobile/Network/OT/IoT/other Penetration Tests, Vulnerability Assessment, Source Code Review, Appliance/System/Cloud Configuration Review, Malware development, Social Engineering
• Strong knowledge in threat intelligence, reverse engineering, security products, incident response, SOC operation or other related areas
• Delivered projects in accordance with industry recognised testing standards and experience in common red teaming tools
• Strong knowledge base in enterprise technologies and operations, enterprise networking, internet application security, database security evaluation and architecture, with self-motivated learning ability
• Be able to lead a team
• Have strong analytical, problem solving and inter -personal skills
• Commands excellent written and oral communication skills with the ability to present ideas and results to technical and non-technical audiences
• Excellent written and verbal communication skills in English and Chinese (Mandarin or Cantonese)
More jobs from KPMG China
Software Engineer
Central and Western, Hong Kong
7 days ago
Full Time
Onsite
Technology, Information and Media
Software Engineer
Central and Western, Hong Kong
7 days ago
Full Time
Onsite
Technology, Information and Media
Cybersecurity
Central and Western, Hong Kong
7 days ago
Full Time
Onsite
Technology, Information and Media
Sales & Account Management
Central and Western, Hong Kong
7 days ago
Full Time
Onsite
Technology, Information and Media
Cybersecurity
Central and Western, Hong Kong
7 days ago
Full Time
Onsite
Technology, Information and Media
Fund Accountant (for client)
KPMG China
Cybersecurity
Central and Western, Hong Kong
7 days ago
Full Time
Onsite
Technology, Information and Media
More jobs like this
Associate Director / Manager, Cyber Security (Simulated Attack) (MJ003359)
KPMG China
Central and Western, Hong Kong
Consultant/Senior Consultant, Cyber Security (Penetration Testing/ Red Teaming), Technology Consulting (MJ005350)
KPMG China
Central and Western, Hong Kong
Manager, Cybersecurity
Haitong International Management Services Company Limited
Central and Western, Hong Kong
🎉 Got an interview?
