KPMG Vulnerability Management Engineer in Montvale, New Jersey

Business Title: Vulnerability Management Engineer

Requisition Number: 67389

Function: Business Support Services

Area of Interest: Information Technology

State: NJ

City: Montvale


The fastest growing Big Four professional services firm in the U.S., KPMG is known for being a great place to work and build a career. We provide audit, tax and advisory services for organizations in today's most important industries. Our growth is driven by delivering real results for our clients. It's also enabled by our culture, which encourages individual development, embraces an inclusive environment, rewards innovative excellence and supports our communities. With qualities like those, it's no wonder we're consistently ranked among the best companies to work for by Fortune Magazine, Consulting Magazine, Working Mother Magazine, Diversity Inc. and others. If you're as passionate about your future as we are, join our team.

KPMG is currently seeking a Vulnerability Management Engineer, to join our KPMG Technology Organization.


  • Expand the usage of security monitoring tools to improve the security of the environment, including detection, prevention and policy enforcement. Define security configuration for monitoring tools, including alerts, correlation rules, and reporting; leverage a combination of vendor products and services, open source and custom developed utilities

  • Drive automation and orchestration to improve efficiency and effectiveness of security monitoring and response processes

  • Research and develop vulnerability mitigation strategies, in accordance with industry best practices, which can be immediately implemented by the appropriate technical teams

  • Provide ongoing subject matter expert support for all remediation/mitigation processes

  • Identify opportunities for efficiencies, as well as for improvements in security controls and lead the design and implementation of related improvements

  • Manage the product road maps for the security tools. Maintain up to date documentation of designs/configurations; stay abreast of the latest information security controls, practices, techniques and capabilities in the marketplace


  • Minimum five years of progressive vulnerability management and security operations experience; preferably within a professional services firm or similar environment

  • Bachelor's degree from an accredited college or university; CISSP is preferred

  • Strong verbal/written communication, with ability to effectively interact with individuals at all levels of responsibility and authority; must be able to prioritize, delegate and foster the development of high performance teams to lead/support an environment driven by customer service and team work

  • Experience in identification and remediation of system, network, and application vulnerabilities; validating vulnerability scanning results and false positives; performing vulnerability assessments using Qualys or other vulnerability assessment tools

  • Experience in performing manual and/or automated security configuration reviews of network devices, servers, and workstations; experience implementing vulnerability management strategies in cloud, mobile, and virtual infrastructures

  • US Citizenship Required

KPMG LLP (the U.S. member firm of KPMG International) offers a comprehensive compensation and benefits package. KPMG is an equal opportunity employer. All qualified applicants are considered for employment without regard to race, color, creed, religion, age, sex/gender, national origin, ancestry, citizenship status, marital status, sexual orientation, gender identity or expression, disability, physical or mental handicap unrelated to ability, pregnancy, veteran status, unfavorable discharge from military service, genetic information, or other legally protected status. KPMG maintains a drug-free workplace. KPMG will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of applicable local, state or federal law (including San Francisco Ordinance number 131192). No phone calls or agencies please.

GL: 4

GF: 15310