Senior Consultant - Risk Consulting and Advisory (Cyber)

Your Opportunity 

Forming part of the Cyber team this position will play a key role in: 

• The delivery of cyber security reviews, cyber health checks, control assessments and cyber maturity assessments across multiple industries, to KPMG clients. 

• Performing gap and maturity assessments between the security processes and operations of our clients against recognized global and domestic standards and regulations (e.g. ISO 27001, NIST CSF, E8, APRA CPS 234, VPDSF, AESCSF, PSPF, etc.). 

• Working with our clients to develop information security and cyber strategies, manage security uplift programmes and provide advice to enhance existing cyber security arrangements. 

• Staying up to date with developments in the cyber space to ensure that KPMG’s approach remains fresh and at the forefront of industry thinking. 

• Providing guidance, leadership and support for more junior team members and managing staff to finalise the engagements they are working on together. 

How are you extraordinary? 

• You are love being part of a collaborative and multidisciplinary team and building strong relationships both internally and externally. 

• You are a teambuilder who does your best to work with a diverse and multidisciplinary team around you to collaborate, share ideas, and learn together. 

• You are able to digest, distil, and communicate complex concepts in both written and verbal forms.

• You are self motivated and show initiative for excellence, are able to work collaboratively within a team, but also confident to lead and work independently when required.   

Your Experience 

At KPMG, we believe diversity of thought, background and experience strengthens relationships and delivers meaningful benefits to our people, our clients, and communities. To be considered for this opportunity, your qualifications, skills & experience could include: 

• A strong understanding of cyber security frameworks and maturity assessment methodology, having worked with numerous recognised global and domestic standards and regulations (e.g. ISO27001, NIST, E8, ISM, PSPF, APRA CPS 234). 

• Moderate technical experience and familiarity with cloud security, identify and access management, network security, endpoint protection, SIEM and vulnerability management tools.  

• Impeccable written and very strong verbal communication skills. 

• Demonstrated ability to lead cybersecurity projects across strategy, governance, risk, and technology domains. 

• Experience with cyber resilience programs and integrating business continuity and disaster recovery practices.  

• Skills for business development including support proposal development, client presentations and the identification of opportunities for cross-selling cyber services. 

• The ability to prepare high-quality client-ready deliverables and present to the senior leadership team for review 

• High level of organisation and ability to manage conflicting deadlines, priorities and wide variety of work engagements. 

• Previous experience in cyber security consulting preferable.