**Business Title:** Sr. Associate, Cyber Security - NIST / CMMC


**Requisition Number:** 81909 - 66


**Function:** Advisory


**Area of Interest:** Cyber


**State:** NY


**City:** New York


**Description:**

Known for being a great place to work and build a career, KPMG provides audit, tax and advisory services for organizations in today's most important industries. Our growth is driven by delivering real results for our clients. It's also enabled by our culture, which encourages individual development, embraces an inclusive environment, rewards innovative excellence and supports our communities. With qualities like those, it's no wonder we're consistently ranked among the best companies to work for by Fortune Magazine, Consulting Magazine, Working Mother Magazine, Diversity Inc. and others. If you're as passionate about your future as we are, join our team.


KPMG is currently seeking a Senior Associate in Technology Enablement for our https://advisory.kpmg.us/ practice


Responsibilities:


+ Lead and perform assessments of clients' cybersecurity program against the NIST Cybersecurity Framework (CSF), CMMC or other cybersecurity frameworks, identify gaps in design and execution, and communicate issues and recommendations to engagement leads and client senior management

+ Work with client senior management to develop a cybersecurity improvement strategy and roadmap to improve maturity and reduce risk.

+ Work with client senior management to assess, design, and implement new cybersecurity controls, sustainable solutions (including applying knowledge of governance, risk and compliance tools), operating processes, and people models to address key and evolving risks.

+ Work with senior leadership on cybersecurity topics.

+ Develop cybersecurity strategy and roadmap documents


Qualifications:


+ A minimum of three years of experience in the field of Cyber Security and Information Risk Management

+ Bachelor's degree in an appropriate field from an accredited college/university

+ Cybersecurity related certification (e.g., CISSP, CISM, CISA)

+ Working knowledge of NIST CSF or CMMC

+ Preferred but not required: familiarity with other compliance frameworks such as ISO 27001, HIPAA, HITRUST

+ Ability and willingness to travel when needed


KPMG LLP (the U.S. member firm of KPMG International) offers a comprehensive compensation and benefits package. KPMG is an affirmative action-equal opportunity employer. KPMG complies with all applicable federal, state and local laws regarding recruitment and hiring. All qualified applicants are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other category protected by applicable federal, state or local laws. The attached link (https://assets.kpmg.com/content/dam/kpmg/us/pdf/2018/09/eeo.pdf) contains further information regarding the firm's compliance with federal, state and local recruitment and hiring laws. No phone calls or agencies please.


KPMG does not currently require partners or employees to be fully vaccinated or test negative for COVID-19 in order to go to KPMG offices, client sites or KPMG events, except when mandated by federal, state or local law. In some circumstances, clients also may require proof of vaccination or testing (e.g., to go to the client site).


**GL:** 5


**GF:** 15304