KPMG is a global organization of independent professional services firms providing Audit, Tax and Advisory services. KPMG is the brand under which the member firms of KPMG International Limited (“KPMG International”) operate and provide professional services. “KPMG” is used to refer to individual member firms within the KPMG organization or to one or more member firms collectively.

KPMG firms operate in 145 countries and territories with more than 236,000 partners and employees working in member firms around the world. Each KPMG firm is a legally distinct and separate entity and describes itself as such. Each KPMG member firm is responsible for its own obligations and liabilities. KPMG International Limited is a private English company limited by guarantee. KPMG International Limited and its related entities do not provide services to clients.

KPMG Kuwait is currently embarking on a period of growth which has created several exceptional opportunities for highly motivated and results-driven individuals willing to play an important role in the ongoing growth and business development efforts.

KPMG Kuwait is seeking experienced Consultant to join the Cyber Security team within its IT Advisory practice in Kuwait.

Primary Duties & Responsibilities:

• Assist clients in developing cyber security strategies and multi-year implementation and remediation programs based on business priorities and risks.
• Advise clients in defining security governance and target operating model positioning within the organization.
• Help clients to address the underlying security challenges raised by the digital transformation journey (Mobile technologies, Cloud computing, IoT, Digital trust, etc.);
• Advise clients in understanding the overall business case and effective use of security technologies by identifying constraints, risks and integration points.
• Assist clients in selecting and designing specific security architectures and technologies.
• Assist clients in implementing specific security technologies including data leakage prevention, identity, and access management.
• Developing constructive client relationships.
• Be required to stay up to date with of all regulations and legislation related to the banking, Telecom and government sectors (e.g. SANS, Cloud Framework, GDPR etc.)

Required Skillset:

As Consultant, the candidate would be expected to have the following academic, technical and behavioral skills:

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field. Advanced degrees or certifications are a plus.
• Minimum of 2-3 years in cybersecurity consulting, IT advisory, or a related field.
• Experience with cybersecurity tools and frameworks (e.g., SIEM, IAM, EDR, Firewalls).
• Certification (CompTIA Security+, CISA, CEH) or equivalent would be an advantage.
• Experience with cyber frameworks, such as ISO 27001 or NIST;
• Strong verbal and written communication skills, with the ability to present complex concepts to technical and non-technical audiences.
• Knowledge of cloud security (AWS, Azure, GCP) is an advantage.
• Demonstrate ability to understand cyber security from both a technical and business perspective.
• Strong understanding of cybersecurity principles, IT governance, and risk management.
• Demonstrate knowledge in one or more of the following Cyber security domains, including: Security Governance, Policies and Procedures, Identity & Access Management, Cyber Threat Management, Security Architectures, Network and Infrastructure Security, Application Security, Incident Response, Security Monitoring, etc.
• Advanced written and verbal communication and presentation skills, teamwork, and client service skills.
• High accountability and self-motivation.
• Good project and team management skills.
• Fluency in English.