Information Security Compliance Officer

The role is expected to support the NITSO/PL and the Chief Information Officer in ensuring the effectiveness of the program for protecting information systems assets and personally identifiable data through compliance with global and local Information Security and Data Privacy policies.

KPMG is a global network of professional services firms providing Audit, Tax and Advisory services. We operate in 145 countries and territories with close to 236,000 partners and employees working in member firms around the world.  KPMG in Caricom invites suitable candidates for the role of Information Security Compliance Officer.

The Information Security Compliance Officer (ISCO) will monitor the organization's IT system to look for information security vulnerabilities, work with our internal partners to establish protocols for identifying and remediating threats, work alongside the National Information Technology Security Officer and Privacy Liaison (NITSO/PL) to monitor compliance with the KPMG information security policies and any relevant local laws.  The ISCO will monitor for security breaches, (example: including attacks by cyber-criminals, phishing and virus attacks, access attempts by unauthorized parties) review system logs and escalate as necessary based on established procedures.

The role is expected to support the NITSO/PL and the Chief Information Officer in ensuring the effectiveness of the program for protecting information systems assets and personally identifiable data through compliance with global and local Information Security and Data Privacy policies.

Roles and Responsibilities:

The ISCO will work with the NITSO/PL to:

— Monitor and support compliance with Global, regional and local Information Security Policies

— Evaluate the effectiveness of existing tools and processes

— Support documentation of all relevant processes

— Review the inventory of critical technology assets

— Deliver Information security training

— Implement and maintain a comprehensive awareness campaign

— Ensure that the information regarding the firm's annual confirmation/affidavit process is maintained

— Assess and document information security risks, including new systems acceptance and emerging risks

— Follow established local, regional and global processes for responding to security incidents

— Performing Third Party Supplier Assurance and Risk Assessments

Qualifications

— Bachelor of Science in Information Technology, Computer Science or a related discipline

— CompTIA Security + or equivalent

— 3 years’ working experience in Information Technology and/or information security

— CISA designation or the willingness to pursue same

Skills

— Knowledge of project management principles and practices

— Strong interpersonal and written communication skills with the ability to present to both technical and non-technical

audiences

— Strong organisational, report-writing and analytical skills

— Demonstrated ability to effectively interact and build relationships with a diverse group of colleagues

— Highly motivated, committed self-starter who can prioritize work, multi-task and cope with changing priorities

CLICK HERE TO APPLY!

*Special Working Conditions - Occasionally work long hours to meet project implementation deadlines*

Compensation and benefits are very competitive and will be commensurate with experience.

We thank all interested applicants however only shortlisted candidates will be contacted.

Follow us on Social Media

© 2022 KPMG, a Jamaican partnership and a member firm of the KPMG global organization of independent member firms affiliated with KPMG International Limited, a private English company limited by guarantee.  All rights reserved.  Printed in Jamaica. The KPMG name and logo are registered trademarks or trademarks of KPMG International.