KPMG (UK) Incident Response & Investigations Team are undergoing transformation to maximise their effectiveness and success in the management of both technical and non- technical Security Incidents affecting the Firm.
KPMG offer an inclusive and flexible working environment. We are looking for an Incident Response Associate to augment the team and help the Investigations Manager define the structure and functions of the team.
Role & Responsibilities
Working as part of KPMG's Incident Response & Investigations team to design, communicate and execute incident response, containment and remediation plans.
Managing a broad range of Cyber Security and Information Security incidents, gathering evidence including the collecting and analysing of logs and digital forensics. Establishing whether the unauthorised access to or data exfiltration has occurred and identifying and reporting on remediation activities.
Extensive proven experience in Cyber Security Incident Response for large scale organisations
Strong IT and network skills - knowledge of common enterprise technologies - Windows and Windows Active Directory, Linux, Cisco, etc.
Advanced experience in industry forensic tools such as X-Ways, EnCase, FTK, Internet Evidence Finder (IEF) / AXIOM, TZWorks, and/or Cellebrite