• Experience in guiding clients and developing their Cyber GRC vision, strategy, and implementation roadmap.
• Experience demonstrating out of the box capabilities within ServiceNow IRM/GRC, ServiceNow SecOps, and/or OneTrust and aligning those capabilities against client’s objectives.
• Experience designing, architecting and implementing Cybersecurity, Cyber Risk, SecOps and GRC/IRM programs and technology platforms in one or more of the following areas: Policy and Compliance, Risk, Vendor Risk, Business Continuity, Data Privacy, Issues Management, Vulnerability Response and Security Incident Response.
• Oversee implementation of one or more applications in ServiceNow IRM/GRC, ServiceNow SecOps, or OneTrust GRC supporting Cybersecurity and Cyber GRC programs.
• Experience with agile and scrum methodology, creating process designs and technical designs, defining user stories, working with a diverse development teams in multiple geographies, leading user acceptance testing (UAT), and providing the necessary end-user training to deliver the proposed solution to the highest caliber.
• Facilitate requirements gathering, scrum, sprints, testing, and deployment by working directly with clients.
• Actively participate in practice development such as innovate solutions to complex problems, knowledge management and work towards building a strong Cyber GRC community.
• Support the Cyber Security practice in innovation and developing solution capabilities utilizing ServiceNow GRC/IRM and SecOps.

#Advisory

#Technology

#DigitalRiskManagement

#Cyber

#CyberStrategy

#DigitalRisk

• You have a minimum of five years off experience in the field of Cybersecurity, Cyber Risk and GRC with a strong working knowledge of ServiceNow and/or OneTrust GRC.
• You have a master degree or equivalent by experience.
• You have certifications in any of the following: ServiceNow Certified System Administrator (required for candidates with ServiceNow experience);ServiceNow CIS certification in IRM in either: Risk and Compliance, Vendor Risk Management OneTrust GRC Professional Certification ServiceNow CIS certification in SecOps in either; Security Incident Response or Vulnerability Response (is a plus).
• You have solid competencies in processes related to Cyber GRC domain including Security Policy Management, Security Compliance Management, Cyber Risk, Vendor Security Risk, Business Continuity, Data Privacy Vulnerability Management, Security Incident Response Management and / or Issues Management.
• You are competent in security frameworks including NIST CSF, NIST 800-53, ISO 27001, SOC1/2, PCI, SOX.
• You have experience in Unified Controls Framework (UCF) and mapping to common controls.
• Having experience with security tools such as Nessus, Rapid 7, Tanium, Qualys, Splunk, QRadar, LogRhythm, etc. is a plus.
• You have good interpersonal, facilitation and presentation skills to help clients navigate through complex cybersecurity and GRC challenges.

As a certified Top Employer we offer: 

• An international corporate culture in which personal growth, mutual trust and lifelong learning are being fostered.
• A competitive and attractive compensation package and a great number of extra-legal advantages (Company car + fuel card, IPhone/IPad, group & hospitalization insurance, Allowances,…) which are customizable with our Reflex@KPMG plan. 
• Career and business development opportunities combined with trainings based on your personal needs and ambitions.
• Learning and growth opportunities designed for leaders through our Management development Track.
• Flexible, hybrid work arrangements to enable working from wherever you are. 
• A team of passionate colleagues to reach higher goals and support each other.
• A buddy and performance manager to support and assist you through your first months at KPMG. 
• Great teambuilding, sport & wellbeing initiatives through our Together@KPMG program. 
• An inclusive workspace that encourages diversity and pursues mutual respect for each other’s beliefs and backgrounds.