EWT Security | Manager - PML Information Security

This role is responsible for ensuring the team performs within set technical guidelines and standard operating procedures associated with the delivery of IT security services.​

75% of the responsibilties

• Responsible for helping drive secure technical outcomes and managing large team of intermediate and junior employees that perform within set technical guidelines and standard operating procedures.
• Focus is blended between execution and tactical planning and participation in strategic planning. Contribute to tactical plans and monitor progress.
• Interact regularly with management within the department and staff across Business Process Group/Functional process.
• Influence client expectations and provide appropriate alternatives / suggestions and recommendations for improvements.
• Prepare metrics and KPIs to help drive process quality and progress towards achieving security objectives.
• Support the team regarding questions or challenges they are experiencing in performing the tasks assigned.
• Collaborate with stakeholders to establish the enterprise continuity of operations program, strategy and mission assurance.                                                                                                                                   Management Responsibilities
• Integrate new team members. Bring team members and their ideas together. Connect team members to the people, resources, and opportunities to help further their career goals and development.
• Conduct necessary due diligence and preparation for formal performance development conversations.
• Regularly engage with counselees and those they work with to help them continuously improve. Work to increase counselees' engagement, job satisfaction, and pride. Be a role model for doing the right things and treating people the right way.
• Take interest in counselee's career interests; act as a coach. Listen, to understand, and support the needs and individual perspectives of counselees.
• Set goals, offer feedback, source developmental opportunities and provide long-term career guidance to counselees and other junior or intermediate staff across the department
• May construct annual plan for deployment of junior / intermediate resources.
• Conduct learning needs assessments and identify requirements.
• Responsible for assigning the right people to the right projects at the right time within budget and timelines.
• Ensure team members have skills and tools to perform their jobs; act as point of escalation to leadership. Responsible for managing budget.
• Responsible for planning for staffing ad hoc needs, such as unanticipated requests or changes to scope of projects.
• Responsible for prioritization and escalation management of issues and resources needs.
• Significant contributor to innovation that has impact and creates a high financial / client value / efficiency impact within projects or department

25% of the responsibilties

• Function as a subject matter expert in several IT security domains (e.g. access control, cryptography, monitoring, response, etc.), overseeing quality and completeness of the work delivered by the team. 
• Continuously improve the security aspects of operating processes.
• Stay abreast of the latest information security regulatory requirements, technologies, controls, practices, techniques and threats. 
• Support internal skills development activities for information security personnel on new technologies or process changes driven by security requirements.  Serve as a coach for team members.
• Oversee quality and provide guidance to employees as necessary to ensure the effectiveness or the IT Policy & Compliance program, Security Awareness & Training and Reporting.
• Ensure effectiveness of collaboration with internal customers and teams to develop and maintain project and/or program artifacts, such as scope, approach, solution, plan, resources, estimates, as well as ensuring effective project execution supervision and scope completion.
• Adhere and follow firm project management standards and processes, including tools and reporting.
• Oversee quality, timeliness, completeness of security awareness artifacts produced to reach the target audience through appropriate channels (digital media, print media, training, events, etc.).

Candidate should possess

• Ability to manage change and effectively pass on the information down the line to concerned teams for smoother execution.
• Ability to delegate and allocate responsibilities efficiently to manage projects end to end.
• Awareness/knowledge of resource management principles and techniques
• Ability to participate in resource planning processes based on defined organizational plans
• Strong verbal/written communication skills, with ability to effectively interact with individuals at all levels of responsibility and authority.  
• Must be able to prioritize, delegate and foster the development of high performance teams to lead/support an environment driven by customer service and team work.  
• Strong trouble-shooting and organizational skills and ability to work on multiple projects simultaneously.  
• Ready to adopt KPMG culture of Heads Up thinking and adapt to, and be an agent for organizational change.
• Experience with leading a team of Security professionals with different functional responsibility (Compliance, Security Awareness & Training, Reporting) a plus; as well as experience with analytic tools such as Power BI and with automation of reports is a plus.
• Preferred certifications: (ISC)2 - Certified Information System Security Professional (CISSP), Certificate of Cloud Security Knowledge (CCSK) or Certified Cloud Security Professional (CCSK), Global Information Assurance Certification (GIAC), GIAC Web Application Penetration Tester (GWAPT), GIAC Penetration Tester (GPEN), Certified Ethical Hacker (CEH), Certified Information Security Manager (CISM), GIAC Certified Web Application Defender (GWEB).