**Business Title:** Senior Specialist, Threat Hunter


**Requisition Number:** 91841 - 66


**Function:** Advisory


**Area of Interest:**


**State:** NY


**City:** New York


**Description:**

Known for being a great place to work and build a career, KPMG provides audit, tax and advisory services for organizations in today's most important industries. Our growth is driven by delivering real results for our clients. It's also enabled by our culture, which encourages individual development, embraces an inclusive environment, rewards innovative excellence and supports our communities. With qualities like those, it's no wonder we're consistently ranked among the best companies to work for by Fortune Magazine, Consulting Magazine, Working Mother Magazine, Diversity Inc. and others. If you're as passionate about your future as we are, join our team.


KPMG is currently seeking a Senior Specialist to join our KPMG Spectrum (https://www.kpmgspectrum.com/content/spectrum/en/homespectrum.html?location=us) practice.


Responsibilities:


+ Conduct real-time monitoring of attack surfaces and deep and dark web forums to gather threat information relevant to KPMG clients

+ Performing threat hunting using various toolsets and based on intelligence gathered and conduct threat modeling exercises to improve threat detection and mitigation abilities; provide situational awareness and understanding of threats related to KPMG or its customer to enhance the decision-making process at the organization level

+ Develop attack detection and response playbooks and counter-measure definition and strategies to mitigate emerging threats; prepare and report risk analysis and threat findings to appropriate stakeholders

+ Utilize Threat Intelligence and Threat Models to create threat hypotheses and plan and scope threat hunting exercises to verify threat hypotheses

+ Proactively and iteratively search through systems and networks to detect advanced threats; analyze host, network and application logs in addition to malware and code

+ Create, recommend and assist with development of new security content as the result of hunt missions to include signatures, alerts, workflows and automation; assist with containment of threats and remediation of environment during or after an incident


Qualifications:


+ Minimum five years of experience in IT Security activities, incident response, or related experience and a minimum three years of operating experience in industry-leading User and Entity Behavior Analytics (UEBA) and Security Orchestration, Automation and Response (SOAR), threat intelligence platforms and tools; C|EH or Threat Intelligence related certifications required

+ Bachelor's degree in Computer Science, Engineering, Information Technology, Cybersecurity, or related field

+ Certification in any SIEM or Threat Intelligence tools would be an added advantage

+ Experience with SIEM tools (QRadar, Splunk, LogRhythm, Solarwinds), Azure Sentinel and experience in Threat Hunting

+ Familiarity with incident response process and activities; solid scripting skills (Perl or Python, or Shell); solid understanding of information security domains and information technology; familiarity with ticketing tool / ITSM tool

+ One or more technical certifications: (Security+, C|EH, Network+, Certified Information Systems Security Professional (CISSP), GIAC Certified Intrusion Analyst, GIAC Certified Incident Handler, or GIAC Reverse Engineering Malware)

+ Travel as necessary

+ Applicants must be currently authorized to work in the United States without the need for visa sponsorship now or in the future


KPMG LLP (the U.S. member firm of KPMG International) offers a comprehensive compensation and benefits package. KPMG is an affirmative action-equal opportunity employer. KPMG complies with all applicable federal, state and local laws regarding recruitment and hiring. All qualified applicants are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other category protected by applicable federal, state or local laws. The attached link ( https://assets.kpmg.com/content/dam/kpmg/us/pdf/2018/09/eeo.pdf) contains further information regarding the firm's compliance with federal, state and local recruitment and hiring laws. No phone calls or agencies please.


KPMG does not currently require partners or employees to be fully vaccinated or test negative for COVID-19 in order to go to KPMG offices, client sites or KPMG events, except when mandated by federal, state or local law. In some circumstances, clients also may require proof of vaccination or testing (e.g., to go to the client site).


**GL:** 5


**GF:** 15292