KPMG's Advisory practice is our fastest-growing segment, responding to substantial client demand. We are committed to a collaborative and adaptive team culture, where our people are the top priority. With abundant learning and career advancement opportunities, cutting-edge training facilities, and market-leading tools, we ensure our professionals grow both personally and professionally. If you are looking for a workplace where you can be authentic, have a meaningful impact, enhance your skills, broaden your experiences, and enjoy flexibility, consider a career with us.
KPMG is seeking an Application Penetration Testing Manager to join our Managed Services practice.
Responsibilities:
• Provide strategic leadership for application penetration testing teams, driving service growth and managing client engagements while showcasing outstanding technical prowess in manual application penetration testing.
• Lead client engagements, delivering technical guidance and support to team members on application penetration testing projects.
• Foster thought leadership and promote continuous learning within the team.
• Communicate effectively with both technical and non-technical audiences about testing processes and results; advise technical teams on remediation strategies and help them evaluate these options.
• Collaborate with Cyber teams to innovate testing techniques, automate testing processes, and develop marketing materials that support practice growth; mentor onshore and offshore personnel in testing tools and methodologies.
• Uphold KPMG's values by acting with integrity, professionalism, and responsibility to maintain a respectful and courteous work environment.
Qualifications:
• A minimum of five years of recent experience using application penetration testing tools such as AppScan, Netsparker, Acunetix, ZAP, Veracode, BurpSuite or equivalent; five years of experience leading application security testing teams in consulting; and experience engaging with technical and non-technical audiences in reporting and remediation conversations.
• Bachelor's degree from an accredited college/university or equivalent industry experience.
• Preferred: One or more major ethical hacking certifications (CISSP, GWAPT, CREST, OSWE, OSWA).
• Experience in mobile application testing, code development, manual code analysis, or static analysis using tools like Veracode, Fortify, SonarQube, Checkmarx, Contrast or equivalent is preferred.
• Willingness to travel as needed.
• Must be authorized to work in the U.S. without requiring employment-based visa sponsorship now or in the future.
KPMG provides a comprehensive and competitive benefits package. We are an equal opportunity employer, adhering to all applicable recruitment and hiring laws. All qualified applicants are considered, regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, citizenship status, disability, protected veteran status, or any other protected category.
KPMG recruits on a rolling basis. Candidates are encouraged to apply expeditiously for roles they are qualified for and interested in.
Los Angeles County applicants: Material job duties for this position are listed above. Criminal history may directly affect job duties and responsibilities. In accordance with various Fair Chance Acts, we consider qualified applicants with arrest and conviction records.
