Cloud Monitoring & Compliance Engineer. Job in Manchester Education & Training Jobs

Cloud Monitoring & Compliance Engineer

Location: United Kingdom (fully remote)

About KPMG International

Together with more than 273,000 colleagues in 143 countries throughout our member firms, people at KPMG imagine big ideas and bring solutions to life for clients both big and small. A role with KPMG International will open a world of opportunity in your career.

KPMG International helps set the strategy and protects the reputation of this global organization of independent professional services firms providing Audit, Tax and Advisory services. We deliver value to our member firms and drive positive change in the communities we serve. By joining us you will gain a unique understanding of how a global organization operates and work on projects that impact the whole organization. From setting standards and best practices to developing innovative tech-enabled solutions for clients, you'll be part of a global team changing the way our business operates. We look forward to welcoming you to our team.

About this Global Group

Global Technology & Knowledge provides crucial services to enable KPMG's digital transformation, offer trusted technology services, ensure network security, and accelerate our Collective Strategy. Our principles include customer-centricity, communities of expertise, an optimized delivery model, flexibility, empowerment, and fulfilling careers. We are organized into five domains: Technology Portfolio Delivery, Global Enterprise Technology, Technology Strategy & Blueprint, Global Information Security Group, and Business Operations. We are driving technology excellence as part of Collective Strategy v3.0, with our GT&K colleagues playing a pivotal role.

About this Team

As part of the Global Information Security Group (GISG), the Information Security Services (ISS) team, including the Global Security Operations Center (GSOC) and the Vulnerability Attack Surface Defense (VASD) team, helps defend KPMG and its clients from cyber-attacks through detection, investigation, and remediation of threats.

Role summary

The Cloud Monitoring & Compliance Engineer provides visibility into security and compliance across KPMG's cloud native technology stack, ensuring configuration and guardrails are followed, and data and systems are secure. The role requires in-depth knowledge of securing cloud environments according to industry standards and best practices. Responsibilities include installation, management, maintenance, and support of GSOC tools hosted on Windows, Azure, and O365 platforms. Working with a team of network/security engineers, cybersecurity analysts, and security architects, the successful candidate will support cloud monitoring and compliance across KPMG's multi-cloud environments. Key responsibilities include:

• Analyzing requests related to MDC Product alerts (CWP & CSPM) from internal clients.
• Customizing and enhancing Cloud Security Posture Management and Cloud Workflow Protection (Microsoft Defender for Cloud) to meet KPMG requirements.
• Onboarding additional tenants and cloud providers.
• Planning and executing automated remediation activities.
• Collaborating with vendors to maximize product investments and influence roadmaps.
• Managing, troubleshooting, and maintaining toolsets daily.
• Collaborating with other GISG teams to identify new opportunities.
• Ensuring compliance with internal controls and standards.
• Using DevOps practices to document project tasks.

Key Accountabilities

• Analyzing MDC Product alert requests (CWP & CSPM).
• Customizing CSPM and CWP cloud features for KPMG needs.
• Implementing automated remediation.
• Engaging with vendors to optimize product use and influence future features.
• Onboarding tenants and cloud providers.
• Managing and troubleshooting tools daily.

Experience / Qualifications

• Solid IT experience with major cloud service providers.
• Bachelor's Degree in Computer Science or related field, or equivalent experience.
• Strong knowledge of Cloud Security Posture Management technologies (Microsoft MDC, Twistlock, Redlock).
• Experience securing cloud environments, including compliance and certification.
• Understanding of API security standards.
• Knowledge of exploits, malware, ransomware, detection methods, web app architecture, and system administration.
• Experience building complex queries (RQL, KQL, SQL).
• Proficiency with Microsoft Azure, AWS, or GCP security features.
• Programming skills in Python or PowerShell.

Agile/Flexible Working

KPMG supports work-life balance and offers flexible working arrangements. Please inquire to learn more.

KPMG's commitment to inclusion & diversity

We value diversity and inclusion, aiming to attract, develop, and retain diverse talent, removing barriers and fostering an inclusive environment.

Applying with a disability

We are committed to fair treatment throughout our recruitment process. Please discuss any reasonable adjustments needed with your recruitment contact if successful.