Service Delivery Security Manager – 106879
Base Location: Hybrid/UK based (core office in London) plus network of 20 offices nationally.
The KPMG EWT function is a cornerstone of our business. We do work that matters to our local business and communities – supporting technical innovation and adoption of cutting-edge solutions across the UK. Working on complex engagements in enterprise technology, this team is responsible for the delivery of cutting-edge technical solutions and is trusted to get it right the first time.
KPMG is one of the world's largest and most respected consultancy businesses. We've proudly stood beside the institutions and businesses which make the UK what it is.
Why join KPMG EWT as a Service Delivery Security Manager?
The Service Delivery Security Manager role is in the KPMG UK Information Security function and reports directly to the Security Production Assurance & Compliance Lead. This role is critical in the provision and delivery of secure, innovative, technology-enabled services and solutions for KPMG and our clients.
What will you be doing?
The primary purpose of the role is to enable harmonious delivery of Security Services, by ensuring strong collaboration with the external Service Providers and entire range of KPMG business functions. There are 3 main areas of focus:
1. Manage the security services relationship to protect the delivery of the end-to-end services that involve all KPMG UK Technology services or third-party suppliers.
2. Provide governance for infrastructure security services.
3. Provide an overview of the complete set of services provided by all KPMG UK Technology services or third-party suppliers and troubleshoot any issues and escalate as appropriate.
Key responsibilities are:
1. Work closely with the Service Owners who are accountable for the end-to-end services, understand their roadmap for the service and the day-to-day operational requirements.
2. Maintain and lead the process to manage the Governance of these services.
3. Ensure firm standards and guidelines are followed, and contractual or operational commitments are delivered.
4. Review and govern the Service Provider Quality, Improvement Plans, Issues and Operational Risks, engaging the Security Production Assurance & Compliance Lead as required.
5. Raise and build consensus around issues or escalations and enable timely resolution.
6. Govern Service Provider Knowledge Management, Knowledge Transfer, Reporting, Documentation and other engagement practices to ensure ongoing operational excellence.
7. Review Service Provider capacity plan to ensure it has enough capacity to meet the required demand and is in line with the Service Owner’s roadmaps.
8. Consolidate and provide reports on the delivery of Security services and initiatives across the relevant KPMG capabilities.
9. Ensure any planned changes across Technology or Service Provider are co-ordinated to ensure there is minimum disruption to Information Security services.
10. Communicate major changes or enhancements in Information Security to Service Provider/ Business function and vice-versa.
11. Act as a single point of contact for general queries or issues flowing to and from the Security Function to the delivery teams.
12. Work closely with the Service Delivery Managers and Service Owners to ensure everyone has a clear view of the remediations and expectations.
13. Work closely with the Security Production Assurance & Compliance Lead to implement the operational security activities, processes and standards as determined by them.
14. Build long-term stakeholder relationships including negotiating service levels, and defining project scope.
15. Monitor, review and drive compliance to security policies, guidelines and standards (as defined by KPMG) using compliance reports supplied by the Supplier and internal teams.
16. Use your experience to propose changes to existing policies and procedures based on feedback from Internal and Supplier Service Operations teams to Security Production Assurance & Compliance Lead to drive operating efficiency and compliance.
17. You will support incident and problem management teams in prioritization of security issues and serve as an active participant in the security governance processes.
18. Manage and develop the compliance for relevant technical security domains using automation, digitization, security by design and a customer-focused approach as appropriate, and formulate a service strategy and roadmap for these.
What will you need to do it?
1. Ability to create and maintain insightful dashboards (ideally via PowerBI), by unifying reports and metrics from various sources (e.g. spreadsheets and SaaS platforms).
2. Excellent and relevant experience in a similar infrastructure or technology management leadership role.
3. Proven understanding of change management processes in a fully change managed environment (ITIL).
4. Excellent interpersonal skills, ability to negotiate and influence wide range of stakeholders at all levels of the firm; UK and Global.
5. Experience in managing delivery teams and the delivery of Managed IT services.
6. Experience in managing relationships with key stakeholders and 3rd party suppliers.
7. Able to deliver transformation plans to support operational objectives.
8. Literate and numerate, with good financial and commercial skills.
9. Must have excellent presentation skills.
10. Sets challenging objectives that reflect key strategic medium and longer-term priorities.
11. Works on CPD to maintain professional status/accreditation.
12. Strong understanding of tooling associated with infrastructure services management such as Endpoint Protection, IT Service Management (ITSM) platforms, and a range of security tools.
13. Experience and knowledge of managing applications and infrastructure within the Cloud.
14. Be able to demonstrate the ability to adapt communication style to explain technical concepts to different people within an organisation whether advising stakeholders, directing teams or sharing experience.
15. Experience of successfully working in a fast-paced, customer service environment, delivering high quality information security services.
Skills we’d love to see/Amazing Extras:
1. CISM
2. CISSP
3. Cloud-related Certifications
Our Locations:
With 20 sites across the UK, we can potentially facilitate office work, working from home, flexible hours, and part-time options. If you have a need for flexibility, please register and discuss this with our team.
#J-18808-Ljbffr