Service Line Overview KPMG Forensic leverages our vast industry experience and leading technologies to help clients handle fraud and misconduct investigations, address complex regulatory compliance issues, and provide dispute advisory support in financial disputes that are likely to lead to litigation, arbitration, expert determination or mediation.
Our team have qualifications and experience in forensic accounting, big data analytics, technology, anti-money laundering/Sanctions compliance, law enforcement and research. We have dedicated Forensic Technology labs in Shanghai and Hong Kong and are equipped with capability and experience to analyze and host terabytes of data in local jurisdictions. We have leading hardware equipment and are keeping learning and strengthening our technique capacity to address rising market needs on big data analytics, computer forensics and cyber incident responses.
We have worked with industry professionals in Asia Pacific, and worldwide through the KPMG International Forensic network of over 3,000 professionals to provide one-stop solution for complex projects across numerous jurisdictions.
Key Responsibilities - Lead a core group of Cyber incident response professionals, reporting to the Forensic Hong Kong partnership team
- Manage a portfolio of clients e.g. banking sector, logistics, critical infrastructure providers and consumer retails in Hong Kong, Mainland China and ASPAC, and closely monitor the scope, timelines, budget and resources of the project, to support our existing teams with specific analytic skills to identify market intelligence, potential threats and insights across the service areas
- Provide thought leadership and constant innovation to develop cyber incident response services in line with our KPMG global brand to cater to our existing clients and to develop opportunities and referrals in adjacent non-competing market spaces
- Direct end-to-end investigations of major incidents for KPMG's clients, ensuring minimal operational impact and full documentation of findings.
- Lead advanced analysis of complex cybersecurity events and incidents, delivering
- Assist with the day-to-day operations on projects, oversea engagements (client deliverables, timelines), provide mentorship and guidance to the cyber response team members
Experience & Background - A passion for cyber security, computer systems and networks;
- Direct end-to-end investigations of major incidents, ensuring minimal operational impact and full documentation of findings
- In depth understanding of how operating systems work, computer networks and appliances like - firewalls, web proxy, system event logs, web applications, web servers etc. with hands on experience for analysis of forensic artifacts
- A bachelor's degree holder or above in Computer Science, Information Security, Information Management or equivalent or related disciplines.
- 5+ years of relevant working experience, computer forensic or incident response/incident management/ crisis management / Security Operations Center (SOC)/ digital forensics related experience
- Good understanding of SIEM, SOAR, UEBA, EDR/XDR tools, and their use in monitoring and incident handling
- Knowledge of MITRE ATT&CK, Cyber Kill Chain, and other adversary behaviour models for detection engineering
- Overseas work or education background is a plus.
- Quick learner, ability to work under pressure and deliver high quality work
- You will be leading the team to perform cyber investigations, assist in developing proposals/ responding to RFP's, lead engagements related to building cyber readiness for clients (involving cyber crisis exercises, IR policy reviews and playbooks, conducting trainings, blue team exercises ), collaborate on engagements with other service teams of KPMG etc.
- Good communication skills in English and team player
- Willingness to travel within China and the Asia Pacific region
- Proficiency in spoken/written Chinese and English
- Candidates with one or more of following certificates will be given added preference - EC Council Certified Ethical hacker, EC-Council Certified Hacking Forensics Investigator, SANS GCFA, SANS GCFE, CREST, EC-Council Certified Incident Handler, OSCP, LPT, SANS GCTI, CTIA - EC-Council Certified Threat Intelligence Analyst, CISSP - Certified Information Systems Security Professional etc.
About KPMG At KPMG China, we are committed to being an equal opportunity employer, with zero tolerance for any form of discrimination against any persons. It is important for us to create an inclusive, diverse and agile workplace for our people to develop and thrive at both a personal and professional level.
We strive to make ESG (environmental, social and governance) a watermark running through our organisation; from empowering our people to become agents of positive change, to providing better solutions and services to our clients to help them achieve their ESG goals. View Our Impact Plan to learn more about our ESG commitments and progress across four key pillars - Governance, People, Planet and Prosperity - and how we make a positive impact on our people, environment and society.
We encourage you to come as you are, and we welcome all qualified candidates to apply, and hope you unlock opportunities with us. Visit KPMG China website for more company information.
You acknowledge and agree that all personal information hereby provided regarding yourself will be used by KPMG China for its candidate selection purposed only. KPMG China collects, uses, processes, and retains your personal information in accordance with KPMG China's Online Privacy Statement and/or KPMG China Privacy Statement (collectively "
Privacy Statement"). During the recruitment process, KPMG China may need to store personal information of candidates in a designated third-party application tracking platform.
If you have any questions regarding the information you provided in the form or your job application in general, please contact KPMG China's HR personnel in the location where your application is submitted [ see here ].