Contract Spy Garston, Liverpool L19, UK
Feb 13, 2020Duration not stated
The Information Assurance Analyst (Internal & Supplier) reports to the Senior Manager - Information Assurance and sits within the Internal & Supplier Assurance team, Information Assurance. The Internal & Supplier Assurance team are responsible for ensuring KPMG Compliance with ISO27001, CE+, as well as the firm wide controls and standards stipulated by KPMG Global and the UK firm; these are designed to meet Client and Regulatory requirements. The role requires close co-operation with all KPMG teams and their suppliers (where access is provided to KPMG data), some of which are located overseas. Responsibilities: Ensure security compliance of KPMG and managed service suppliers to ISO27001, CE+, Key Controls and KPMGs Information Security Management Policies by conducting audits and identifying risks and areas for improvement. Manage non-conformances, ensuring that they are logged, tracked to completion and reported on as required. Identify and record potential risks identified during internal and supplier audits. Technical Background: Knowledge of IT and Information Security controls. Knowledge of information security standards (e.g. Cyber Essentials, ISF Standard of Good Practice for Information Security, ISO 27001, NIST Cybersecurity Framework, CIS Top 20 Controls). ITIL foundation certificate desirable.