Lead Specialist, Third Party Risk Management

Lead Specialist, Third Party Risk Management

Join to apply for the Lead Specialist, Third Party Risk Management role at KPMG US
. KPMG Advisory practice is currently our fastest growing practice and we are looking for talented individuals to join our Managed Services practice.

• Interact with onshore engagements and clients directly performing vendor or third‑party security assessments, and perform remote assessments independently.
• Independently draft reports based on the discussions during remote reviews, and perform second‑level quality review of the reports written by peers or junior resources.
• Conduct business continuity planning and disaster recovery implementation and review experience.
• Build and maintain strong, collaborative relationships with clients and internal teams, and support the current team with the execution and management of engagements in our current and future client portfolio.
• Lead and manage client engagements with a focus on delivering high‑quality service in a managed‑services context.
• Act with integrity, professionalism, and personal responsibility to uphold KPMG's respectful and courteous work environment.

• Minimum five years of recent information security governance, privacy and compliance and security assessment experience, with a focus on IT and IS risk assessments and program reviews/establishment; prior consulting experience with a Big Four or large client is preferable. Certifications such as CISA, CISSP, CISM, CIPP, ISO 27001 are preferred.
• Master's degree from an accredited college or university in information security, computer science, engineering, technology or a similar field is preferred; a Bachelor's degree is required.
• Familiarity with and demonstrated experience assessing against the BS ISO/IEC/SIG 27002:2005, BS 7799, BS 25999 risk assessment domains, security policy, organization of information security, asset management, HR security, physical and environmental security, communications and operations management, access control, IS acquisition, development and maintenance, incident management, business continuity management, and compliance.
• Strong client interaction skills, both written and verbal, and fluency in English.
• Ability to travel as required.
• Applicants must be authorized to work in the U.S. without the need for employment‑based visa sponsorship now or in the future.

KPMG is an equal‑opportunity employer. All qualified applicants are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, citizenship status, disability, protected veteran status, or any other category protected by applicable federal, state, and local laws.