The fastest growing Big Four professional services firm in the U.S., KPMG is known for being a great place to work and build a career. We provide audit, tax and advisory services for organizations in today’s most important industries. Our growth is driven by delivering real results for our clients. It’s also enabled by our culture, which encourages individual development, embraces an inclusive environment, rewards innovative excellence and supports our communities. With qualities like those, it’s no wonder we’re consistently ranked among the best companies to work for by Fortune Magazine, Consulting Magazine, Working Mother Magazine, Diversity Inc. and others. If you’re as passionate about your future as we are, join our team.

KPMG is currently seeking an Associate Director, IT Security Compliance to join KPMG Technology Organization.

Responsibilities:

• Oversee and lead implementation of strategic initiatives to improve and streamline Firm mission critical processes within the IT Compliance domain, including third party oversight and continuous monitoring of security operations; collaborate and support audit facilitation, remediation tracking, Client Security Inquiry, and other IT GRC processes
• Collaborate with various groups across the firm to assure compliance with firm approved policies and controls to safeguard KPMG and client information
• Manage an experienced team of IT Security professionals, quality of deliverables, resource planning, skills development, and fostering a high performance culture
• Lead the management, development and improvement of innovative solutions leading to standardized and consistent responses to clients and third parties regarding the firm's information security practices
• Aid in establishing and managing of the firm's third party validation program throughout its life-cycle from identification to tracking of unresolved access issues in KPMG systems and applications
• Lead self-assessments (Privacy, NIST, Global Key Controls) and other reviews of KTech practices

Qualifications:

• Minimum of 8 years of progressive experience in leading security and compliance management programs; interaction with and support of clients; risk management and other GRC responsibilities within a large IT organization, preferably within a professional services firm or similar environment
• Bachelor’s degree from an accredited college/university; Master’s degree from an accredited college/university preferred
• Demonstrated experience with managing information security functions, including governance, frameworks, processes, tools, scorecards and dashboards under aggressive deadlines and with competing priorities
• Demonstrated knowledge of industry authoritative sources such as COBIT, NIST, and ISO standards
• Certifications requirements: CISSP, CISM, CISA, ISO 27001 Auditor, LSS Green Belt, CRISC, CIPP, CGEIT or ITIL; working knowledge of RSA's Archer GRC Solutions and Archer
• US citizenship required

KPMG offers a comprehensive compensation and benefits package. KPMG, an equal opportunity employer/disability/veteran. KPMG maintains a drug-free workplace. KPMG will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of applicable local, state or federal law (including San Francisco Ordinance number 131192). No phone calls or agencies please.