Cloud Security - Assistant Manager - Bangalore

About KPMG in India

KPMG entities in India are professional services firm(s). These Indian member firms are affiliated with KPMG International Limited. KPMG was established in India in August 1993. Our professionals leverage the global network of firms, and are conversant with local laws, regulations, markets and competition. KPMG has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Jaipur, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, Vadodara and Vijayawada. 

KPMG entities in India offer services to national and international clients in India across sectors. We strive to provide rapid, performance-based, industry-focused and technology-enabled services, which reflect a shared knowledge of global and local industries and our experience of the Indian business environment.

• Design, Implement, and maintain the security of client’s cloud infrastructures and services.
• Actively contribute to innovation activities which are undertaken in the area of cloud security.
• Help end customer in designing cloud security architecture, design cloud security landing zone.
• Develop and document security policies & procedures as per the requirements.
• Perform cloud security assessment, prioritize security findings, and provide recommendations to mitigate the security gaps.
• Develop custom playbooks for threat hunting and auto-remediation.
• Assist with incident response in the event of a security breach.
• Review of client’s cloud security posture and make recommendations for improvement.
• Cloud on-boarding to tools such as Prisma, Dome9, Sysdig etc. Define relevant cloud policies, perform security remediation as per findings.
• Responsible for managing CSPM, CWPP, CNAPP, Code Security, Data Security, Alert Management etc.

• Hands-on experience with at least one major public cloud platform, such as AWS, Azure, or Google Cloud Platform. Any other public cloud platform along with these will be an additional desirable attribute.
• Experience in creating and evaluating cloud security architectures by following industry best practices. 
• Hands-on experience on cloud native security features like Azure Sentinel, Microsoft Defender for cloud, CloudTrail, GuardDuty, Inspector, Security Hub, Command Centre etc.
• In-depth knowledge of managing common cloud security threats and vulnerabilities.
• Experience with security compliance standards such as ISO 27001/27002/27017, NIST, CSA CCM etc.
• Understanding on various government and regulatory compliance requirements w.r.t cloud security
• Knowledge of Identity and Access Management protocols/solutions such as SSO, SAML Federated Identity, RBACs & authorization solutions.
• Experience with Linux & Windows operating systems for patch management, log management, and understanding on OS hardening requirements. 
• Experience in scripting language such as Python, PowerShell etc. Security automation skills/experience will be an additional desirable attribute.
• Experience in third party solutions such as Palo Alto Prisma Cloud, ZScaler, Sysdig, Checkpoint, etc. is desirable.
• Good understanding of containerization technologies/concepts such as Kubernetes, Docker etc. and related security best practices.
• Impeccable communication skills, both written and oral.
• Strong organization and time-management skills, with the ability to swiftly transition between projects and tasks.
• Must have one or more cloud certifications. Desirable certifications include: -
  • AZ-500 (Azure Security Engineer)
  • SC-100 (Cybersecurity Architect Expert)
  • AWS Certified Specialty – Security
  • Google Cloud Professional Cloud Security Engineer 
  • AZ-303 (Microsoft Azure Architect Technologies)
  • Prisma Certified Cloud Security Engineer (PCCSE)

Equal employment opportunity information 

KPMG India has a policy of providing equal opportunity for all applicants and employees regardless of their color, caste, religion, age, sex/gender, national origin, citizenship, sexual orientation, gender identity or expression, disability or other legally protected status. KPMG India values diversity and we request you to submit the details below to support us in our endeavor for diversity. Providing the below information is voluntary and refusal to submit such information will not be prejudicial to you.