Associate Director, Security Architecture (Emergent Technologies) - Remote

Known for being a great place to work and build a career, KPMG provides audit, tax and advisory services for organizations in today's most important industries. Our growth is driven by delivering real results for our clients. It's also enabled by our culture, which encourages individual development, embraces an inclusive environment, rewards innovative excellence and supports our communities. With qualities like those, it's no wonder we're consistently ranked among the best companies to work for by Fortune Magazine, Consulting Magazine, Working Mother Magazine, Diversity Inc. and others. If you're as passionate about your future as we are, join our team.

KPMG is currently seeking an Associate Director, Security Architecture to join our Enterprise Security Services organization. This is a remote work opportunity.

Responsibilities:

• Act as the cyber security subject matter expert on emergent technologies, such as Generative AI, Metaverse, and Blockchain, to protect KPMG data on the various uses of emergent tech within the KPMG landscape
• Define and implement information security standards and baselines as it relates to emergent technologies
• Design secure cloud-native applications, platforms, core services, and security controls across multiple public and private cloud environments including Azure, AWS, GCP, and OpenShift; drive implementation efforts in a highly matrixed environment
• Serve as an internal senior trusted advisor providing security consulting services across multiple technical domains to project teams, the firm's partners, and other senior members to provide advice on security and assist with compensating control alternatives where security requirements cannot be met; provide insights on multiple alternatives to solve challenges and explain trade-offs and risks
• Promote and foster collaboration and standardization across multiple internal federated technology groups based on common technology interests and priorities
• Create and maintain effective working relationships with multiple public and private cloud vendors to advocate for product enhancements to meet the firm's needs and inform internal stakeholders of forthcoming features of interest; develop and maintain effective working relationships with multiple internal federated technology groups at both a technical and leadership level to maintain alignment on technical strategies

Qualifications:

• Minimum eight years of recent experience leading across multiple technical domains including application development, cloud computing, security, identity and access management, and IT infrastructure
• Bachelor's degree from an accredited college or university or equivalent experience; certifications requirements: CISSP and either CCSP or CCSK, or equivalent industry experience; other certifications of importance: Microsoft Azure Security Technologies (AZ-500)
• Experience in both designing and securing solutions in a complex and regulated enterprise environment to offer solutions in an "as-a-service" model; demonstrated ability to not only define security requirements but help teams implement them through collaborative architecture and engineering; proven ability to design creative alternatives to work around gaps in vendor offerings to meet technical and security requirements
• Working knowledge of cloud computing architecture, technical design, and implementations, including Infrastructure as a Service (IaaS), Platform as a Service (PaaS), Software as Service (SaaS), and containerized delivery models across multiple different cloud vendors
• Prior experience with modern delivery methodologies including Agile and DevSecOps; ability to work in a highly matrixed environment and influence teams through gathering consensus; experience with security related regulatory requirements, such as NIST, PCI, ISO 27001, HIPAA compliance
• US Citizenship is required

KPMG complies with all local/state regulations regarding displaying salary ranges. If required, the salary range(s) are displayed via the URL below. The range is specifically for those potential hires who will work in the location(s) listed. Any offered salary is determined based on relevant factors such as applicant's skills, performance, job responsibilities, prior relevant experience, certain degrees and certifications and market considerations. In addition, the firm is proud to offer a comprehensive, competitive benefits package, with options designed to help you make the best decisions for yourself, your family, and your lifestyle. Our Total Rewards package includes a variety of medical and dental plans, vision coverage, disability and life insurance, 401(k) plans, and a robust suite of personal well-being benefits to support your emotion and mental health. KPMG provides personal days off per fiscal year depending on job classification, standard work hours and years of service. Additionally, each year the firm publishes a calendar of holidays to be observed during the year. Available benefits are based on eligibility.

Follow this link to obtain salary ranges by city:

KPMG LLP (the U.S. member firm of KPMG International) offers a comprehensive compensation and benefits package. KPMG is an affirmative action-equal opportunity employer. KPMG complies with all applicable federal, state and local laws regarding recruitment and hiring. All qualified applicants are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, citizenship status, disability, protected veteran status, or any other category protected by applicable federal, state or local laws. The contains further information regarding the firm's compliance with federal, state and local recruitment and hiring laws. No phone calls or agencies please.

KPMG does not currently require partners or employees to be fully vaccinated or test negative for COVID-19 in order to go to KPMG offices, client sites or KPMG events, except when mandated by federal, state or local law. In some circumstances, clients also may require proof of vaccination or testing (e.g., to go to the client site).