Cyber Resilience - Manager

This job is brought to you by Jobs/Redefined, the UK's leading over-50s age inclusive jobs board.

Job description

KPMG has been acknowledged by Forrester as a leader in the provision of cyber security consultancy. We are investing to building out our Cyber Resilience consulting team to meet a growing demand and provide a comprehensive range of services to many of the largest companies in the world.

We help our clients to protect, detect and respond to high end business risks and threats; helping them understand the business threat landscape, make sensible decisions on investment priorities, and build out the specialist capabilities they need to counter both business and technical risks and threats.

We believe that cyber resilience is about helping our clients to prepare for, respond to, and quickly recover from events that impact operations, while harnessing business opportunities, safe and secure in the knowledge that they have mitigated and can respond to any cyber related risks. For us, cyber resilience engages the whole organisation and focusses on a holistic approach to understanding and mitigating the risk of disruption and loss of technology or data.

Our team works closely with KPMG's broader advisory practice to link cyber resilience to operational resilience, risk management, IT transformation and business resilience and we are in the need of a Manager who has the technical expertise and also the wider business and risk understanding to support activities when working together with our internal teams to deliver the best service to our clients.

The Role

End-to-end management and delivery of small engagements (<£100k) engagements to ensure successful delivery, high quality and added value to our clients by:

• Understanding their business challenges and the threats they face and helping them navigate the increasingly complex business and technology regulatory environment across all sectors and specifically for IGH
• Advising on cyber resilience governance, frameworks and operating models and how to optimise their approach to cyber resilience controls and risk management, while getting the balance right between protection, detection, reaction and response to resilience issues
• Linking resilience to other consultancy offerings, such as risk management and IT transformation to provide holistic support to our clients

• Leading small engagements as a trusted Engagement Manager (<£100k)
• Leading the development of small proposals (<£100k)
• Proactively leading parts of service development and be known as the SME for the developed service
• Coaching and developing of junior team members through sharing of experience and knowledge, as well as managing the performance and development of engagement team members and appraisee(s)
• Supporting the management of the Cyber Resilience capability by leading one focus area to support the team

Leadership & Management:

As a Manager in the Cyber Resilience team, you will be working closely with the capability lead and the Senior Managers to support the management of the Cyber Resilience team and to deliver engagements. You will have a team of about 10 Assistant Managers and Analyst reporting into you and seeing you as a role model. You will manage multiple, small engagements and will be accountable for engagement management activities, unless you are providing SME guidance only in an engagement.

Stakeholder Interaction & challenges:

As a Manager in the Cyber Resilience team, you will be helping both grow our business and also ensure our teams are able to deliver high quality advice to clients. You should expect to be involved in a wide range of small to medium engagements, ranging from executive level exercises and threat reviews, through optimisation of client resilience controls and large resilience programmes, to providing specialist support in areas such as business continuity, technology and cyber resilience and GDPR.

Our clients are under regulatory scrutiny, but are also continually battling to match a rapidly changing global business threat landscape while harnessing the opportunities offered by digital services. As a Manager in our team, we expect you to understand the business world across different industries, and to be able to translate complex risk and resilience issues into straightforward, credible, jargon free advice to our clients; while making sure we can deliver the support they require.

Impact, Risk, Accountability & Governance:

As a Manager in the Cyber Resilience team, you will be part of the Cyber Resilience capability as part of the wider Cyber team, specialising in Sectors clients but also supporting FS and IGH clients.

You will be an Engagement Manager and will be trusted to deliver small engagements successfully to budget.

The Person:

Skills and Experience

• Track record within the business community showing understanding of the business, threat and regulatory issues faced by clients
• Track record within the corporates community showing an understanding of the business, threat and regulatory issues faced by clients
• Proven experience in one or more core disciplines: Business Resilience, Technology Resilience, Cyber Resilience Crisis Management:
  • Business Resilience - Ability to identify and assess complex business risks and controls, and articulate mitigating actions to various levels of a business
  • Technology Resilience - Have delivered large complex technology resilience programmes understanding technical complexity, strategy and change
  • Cyber Resilience - Understands and delivers cyber risk key controls & compliance for large organisations and is able to articulate resilience solutions to these risks
  • Crisis Management - Participated in strategic C-level crisis management exercises that simulate major disruption to our client base
• Proven experience of successfully managing projects in a commercial environment, ensuring the delivery of high quality work on time and to budget
• Proven ability to lead work at sustained levels of high intensity, and inspire drive and resilience in others
• Proven ability to analyse problems, identify core issues and recommend appropriate solutions
• Proven ability in taking appropriate action after monitoring/reviewing the progress and performance of others
• Degree level qualified, MSc in Business Continuity, Information Security, IT or relevant subject (preferred)
• Recognised risk and resilience qualifications (e.g. CBCI, CISSP, CISM, etc.)
• Excellent communication skills (both written and oral), negotiation and project management skills
• Prince 2 Project Management or ITIL Qualifications (desirable)
• Understanding of a wide range of information security and IT methodologies, principles, technologies and techniques
• Experience in and an understanding of the business risks faced by clients within a specific industry and the impact to their business
• Good networking skills
• Ability to interact with clients at mid-management levels