Careers for graduates: we help our clients better comprehend and manage technology, cyber and information risks.
We help our clients better comprehend and manage technology, cyber and information risks.
In a nutshell, what does your business group/service line do?
Cyber helps our clients better comprehend and manage technology, cyber and information risks. By closely understanding our clients’ issues and strategies, we assist them by managing their technology risks and to align with their business objectives.
We help clients:
- identify, manage and reduce their cyber security and other technology / information risks
- enhance their business resilience/continuity and crisis management
- meet their IT compliance and governance obligations in a way that improves business objectives
- assess their cybersecurity readiness and posture through technical security assessments
What does the average day look like?
The day that lies ahead within the team is unlikely to follow a generic 9 to 5 work pattern. During an engagement, your day may involve coordination with client contacts, typically IT managers, system administrators or business process owners, to understand the controls they look after, obtain evidence to support that controls are operating effectively and documenting these for our internal files. You could also be working on technical engagements such as penetration tests or red team engagements that will simulate cybersecurity attacks on businesses to assess if their systems are equipped to deal with cybersecurity attacks. This usually involves legally probing into a business' network to view potential vulnerabilities in their systems and to assist business with mitigating these vulnerabilities.
What will I learn in the first year?
You’ll learn the fundamentals of the audit process and how IT is used to process data and information. You’ll develop a feel for the processes within specific sectors and in relation to certain IT services. You will see the critical role IT plays in a modern business and how to evaluate IT risk. You will also be given the opportunity to rotate across various offerings within the Cyber practice such as penetration testing, identity access and management, security architecture and security governances – to name a few, which will allow you to gain new skills within the cybersecurity industry. Experiences across various offerings and regular cybersecurity trainings on emerging threats, attacks, security, technologies will put you in good stead to be a well-rounded cybersecurity consultant.
What’s the best part of the role?
The best part about the role is on-the-job training that you will get from working on engagements and be given excellent mentoring that will aid with your professional growth.
Connect with us
- Find office locations kpmg.findOfficeLocations
- Social media @ KPMG kpmg.socialMedia