Managing Director, Global Cyber Security Incident Response Team

At KPMG, you'll join a team of diverse and dedicated problem solvers, connected by a common cause: turning insight into opportunity for clients and communities around the world.

The Director – Global Cyber Security Incident Response Team (CSIRT) Lead, holds a pivotal strategic role within KPMG's Global Information Security Services (ISS) function.   This role will set the strategic direction for CSIRT, within Global, embedding AI into the core capabilities and leveraging its findings to drive enterprise-wide transformations across firms.  This role must navigate complex regulatory requirements, managing high risk and high pressure decisions, supporting but not limited to providing recommendations to implement isolation of member firm from the network, inline with the crisis protocols

• Digital Forensics & Incident Response Oversight & Information Handling Incident oversight which includes coordination of the development and execution of information security incident response capabilities across the global network, which include Information incidents as well
• Strategic Leadership & Stakeholder Engagement - Define and drive the strategic direction of the Global CSIRT function, including ownership of the Global Security Incident Response Framework (GSIRF)
• Cross-Functional Integration & Alignment to include collaborating with global teams and Member Firms to ensure cohesive incident response strategies, and act as a feedback loop to services and member firms with regards to lessons learned from incidents
• Support the evolution of services by identifying emerging technologies, Security Monitoring & Response (SMR) control gaps and process improvements using automation and AI
• Lead and mentor a high-performing global team of incident responders and forensic analysts
• Develop and execute training and simulation programs to enhance team readiness

• 5-10 years' experience leading and managing incident response teams, ideally within highly regulated industries such as professional services, finance, healthcare, or energy
• Bachelor's, Master's, or PhD in Computing, Information Security, or a related field (or equivalent professional experience)
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Ethical Hacker (CEH) are highly desirable
• Demonstrated success in building and operating information security response services or other managed security services
• Strong knowledge of enterprise security tools and platforms (e.g. Security Information and Event Management (SIEM), Security orchestration, automation, and response (SOAR), Endpoint Detection and Response (EDR), vulnerability scanners)
• Strong analytical skills with the ability to assess and mitigate risks and influence decision-making at senior levels

#LI-Hybrid

Providing you with the support you need to be at your best

Integrity, we do what is right | Excellence, we never stop learning and improving | Courage, we think and act boldly | Together, we respect each other and draw strength from our differences | For Better, we do what matters

KPMG in Canada is a proud equal opportunities employer and we are committed to creating a respectful, inclusive and barrier-free workplace that allows all of our people to reach their full potential. A diverse workforce is key to our success and we believe in bringing your whole self to work. We welcome all qualified candidates to apply and hope you will choose KPMG in Canada as your employer of choice.

Adjustments and accommodations throughout the recruitment process

At KPMG, we are committed to fostering an inclusive recruitment process where all candidates can be themselves and excel. We aim to provide a positive experience and are prepared to offer adjustments or accommodations to help you perform at your best. Adjustments (informal requests), such as extra preparation time or the option for micro breaks during interviews, and accommodations (formal requests), such as accessible communication supports or technology aids, are tailored to individual needs and role requirements. You will have an opportunity to request an adjustment or accommodation at any point throughout the recruitment process. If you require support, please contact KPMG's Employee Relations Service team by calling