Lead SIEM Engineer

Business Title : Lead SIEM Engineer Requisition Number : 117451 - 1 Function : Business Support Services

Area of Interest : State : AK

City : Anchorage

Description :

Known for being a great place to work and build a career, KPMG provides audit, tax and advisory services for organizations in today’s most important industries. Our growth is driven by delivering real results for our clients. It’s also enabled by our culture, which encourages individual development, embraces an inclusive environment, rewards innovative excellence and supports our communities. With qualities like those, it’s no wonder we’re consistently ranked among the best companies to work for by Fortune Magazine, Consulting Magazine, Seramount, Fair360 and others. If you’re as passionate about your future as we are, join our team.

KPMG is seeking a Cyber Operations Content Development & Engineering professional to join our Enterprise Security Services organization. This is a remote work opportunity.

Responsibilities :

1. Manage and perform day-to-day security monitoring and incident response activities, ensuring 24x7 coverage, and identify opportunities for efficiencies and improvements.
2. Execute response activities including incident response, threat mitigation, threat hunting, forensic analysis, and security configuration assessments.
3. Serve as a service owner or SME for security technologies, stay updated on latest security controls, and facilitate internal skills development.
4. Lead monitoring for threats and vulnerabilities, respond accordingly, and incorporate learnings into security controls; define security configurations including alerts and correlation rules.
5. Implement automation and orchestration to enhance monitoring and response; document processes, develop playbooks, and produce operational metrics.
6. Oversee work products and lead small to medium projects; mentor junior staff and serve as a performance manager.
7. Uphold KPMG’s respectful and professional work environment with integrity and responsibility.

Qualifications :

1. Minimum five years of recent experience in cyber security operations including threat detection, incident response, and vulnerability management.
2. Bachelor's degree preferred; relevant certifications such as CISSP, CCSP, GSEC, GCIH, etc.
3. Experience with security monitoring, incident response, and tools like SIEM, Microsoft Sentinel, and scripting or automation skills.
4. Excellent communication, collaboration, and analytical skills; ability to lead and operate effectively in a matrixed environment.
5. Experience in resource planning and project estimation.

We comply with local regulations regarding salary disclosures. Our benefits include medical, dental, vision, disability, life insurance, 401(k), and well-being programs. We promote diversity and are an equal opportunity employer. Candidates are encouraged to apply promptly as we recruit on a rolling basis. COVID-19 vaccination requirements are based on law and client site policies.