KPMG Incident Response and Security Monitoring Analyst in McLean, Virginia
Business Title: Incident Response and Security Monitoring Analyst
Requisition Number: 50581 - 93
Function: Business Support Services
Area of Interest: Information Technology
Known for being a great place to work and build a career, KPMG provides audit, tax and advisory services for organizations in today's most important industries. Our growth is driven by delivering real results for our clients. It's also enabled by our culture, which encourages individual development, embraces an inclusive environment, rewards innovative excellence and supports our communities. With qualities like those, it's no wonder we're consistently ranked among the best companies to work for by Fortune Magazine, Consulting Magazine, Working Mother Magazine, Diversity Inc. and others. If you're as passionate about your future as we are, join our team.
KPMG is currently seeking a Senior Associate, Security Monitoring and Response to join our Digital Nexus technology organization.
Maintain and update forensic acquisition scripts and automation tools and conduct forensics such as: host based disk and memory, as well as network; and analysis
Maintain Splunk Enterprise Security, dashboards, alerts and reporting
Conduct advanced incident response analysis to handle level two escalations including some or all phases of incident response life cycle: analysis, containment, eradication, remediation, recovery
Analyze emerging threats and interpret to improve the firm's monitoring and response capabilities
Maintain and update cloud automation technologies in support of monitoring and response
Develop/maintain incident response process documentation
Minimum three years of Python and PowerShell scripting, Splunk Enterprise Security administration, dashboards, advanced queries and data models experience
Bachelor's degree from an accredited college/university or equivalent experience required
Strong Understanding of forensic acquisition and analysis concepts
Understanding of the threat landscape such as MITRE ATT&CK, threat hunting techniques; able to perform incident response escalations for example; level 2/3
Experience with cloud native security monitoring solutions such as automation accounts/Azure and cloud formation/AWS
KPMG LLP (the U.S. member firm of KPMG International) offers a comprehensive compensation and benefits package. KPMG is an affirmative action-equal opportunity employer. KPMG complies with all applicable federal, state and local laws regarding recruitment and hiring. All qualified applicants are considered for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other category protected by applicable federal, state or local laws. The attached link contains further information regarding the firm's compliance with federal, state and local recruitment and hiring laws. No phone calls or agencies please.