Cyber Security, Privacy, Cyber Laws and Data Governance Consultant


  View Salaries, Reviews, and more

Job Summary

Job Type


Years of Experience
Information not provided

Job Description

KPMG Cybersecurity professionals assist clients to address their concerns around Confidentiality, Integrity, Availability and Privacy of their technology, business systems, and information assets. Using a holistic view of how Technology and Business integrate, the Cyber team performs technology-risk focused assessments, technology compliance, IT/operational process reviews, and design of information risk & cyber security solutions.

To join a growing team to assist clients with managing one or more of the following areas:
  • Ethical Hacking – this discipline covers vulnerability assessment, application and network penetration testing, wireless security, mobile security, and system security testing.
  • Cybersecurity Risk & Governance – this discipline covers designing and implementing Cybersecurity frameworks; Cyber maturity assessments; organisational design for Cyber Security; Cloud security; design and rollout of cyber security processes such as Incident Management, Intrusion Detection, and Security Monitoring.
  • Technology Risk and 3rd Party Cyber Risk – this discipline covers IT-Business related consulting over how an organisation manages technology risk and governs its outsourcing. This involves review, re-design and implementation controls over the 3rd party organisation’s IT environment. Topics include system development, project management, business or IT outsourcing, business continuity management, information security, incident management, user access management.
  • Cyber Business Continuity, Disaster Recovery & Crisis Management – this discipline covers building business and technology resilience against cyber-attacks. Creating and testing Cyber Incident Response Plans around typical cyber-attack scenarios. Taking regulatory requirements around BCM and Crisis management and international standards based consulting.
  • Governance Risk and Compliance (GRC) - This discipline covers implementation of IT solutions for use cases such as Access control, Process control, Risk management, Compliance Management, Third party vendor risk management. This discipline also covers the area such as Pre/Post implementation review for large IT projects.

Cyber team members regularly interact with C-Suite clients, such as Chief Executive Officer (CEO), Chief Information Security Officer (CISO), Chief Information Officer (CIO), Chief Operating Officer (COO), Chief Risk Officer (CRO) and their direct reports. Hence, a client centric mind-set, understanding of IT within a Business context, and well-developed communication skills are desirable.

This role involves:
  • Provide consulting advice and conduct compliance assessment, process design, and controls implementation of privacy policies, cyber laws, procedures, and other controls in our client’s organisation.
  • Identify, evaluate, and support the application of better practice in Information Security and Privacy principles by considering the client's business context and in line with the applicable legal mandates and regulatory requirements.
  • Help with research, business development, and writing thought leadership to better inform our clients to understand privacy and compliance trends, identify opportunities for service improvement, and propose new business strategies to grow the KPMG consulting team.

The ideal candidate should possess:
  • Bachelor degree in Law, Business, Economics, Information systems, Computer Science or other related field
  • Experience dealing with legal mandates and regulatory compliance issues in at least one of the following areas: PDPA (Personal Data Protection Act), GDPR (General Data Protection Regulation), Cybersecurity Act, and multi-jurisdictional IT/Privacy regulations and requirements such as cross-border data transfer.
  • Understanding of data privacy and confidentiality from a process and risk perspective would be viewed favourably.
  • Bachelor’s degree from an accredited college/university, such as Law, Business, Economics, Information Systems.
  • Recognised certification in privacy, risk or cybersecurity (e.g., CIPP, CISA) is preferred.

Only shortlisted candidates will be contacted by KPMG Talent Acquisition team, personal data collected will be used for recruitment purposes only.

At KPMG in Singapore we are committed to creating a diverse and inclusive workplace. We believe that diversity of thought, background and experience strengthens relationships and delivers meaningful benefits to our people, our clients and communities. As an equal opportunity employer, all qualified applicants will receive consideration for employment regardless of age, race, gender identity or expression, colour, marital status, religion, sexual orientation, disability, or other non-merit factors. We celebrate the different talents that our people bring and support every staff member in their journey to achieve personal and professional growth. One of the ways we do this is through Take Charge: Flexi-work, our flexible working framework which enables agile and innovative teams to help deliver our business goals


There are no salaries from KPMG that are similar to this job

View more salaries from KPMG

NodeFlair Insights of KPMG