Associate – Cybersecurity at KPMG

Job Description

Position Summary

We are currently looking for an Associate in our Information Technology Advisory Unit (ITA) to support us in executing client engagements to ensure high-quality service, identifying business development opportunities, and contributing to team and personal development through collaboration, knowledge sharing, and skill enhancement.

Key roles and responsibilities

Assist in managing engagement performance through attending kick off and debrief meetings on every engagement and creating Engagement Review Forms.
Ensure good relationship with clients is maintained in the process of performing client work.
Build an understanding of client business. Know and share valuable client info like: Change of key personnel e.g. new C-level joined; Events at client e.g. new product launch, closure of office, etc. while striving to achieve positive feedback from each client through formal and informal mechanisms.
Identify, escalate and pursue opportunities for further work while on an engagement while participating in research and in writing proposals.
Build industry knowledge through involvement in events, writing articles and thought leadership.
Risk management – Ensure full compliance with KPMG’s quality, risk and management requirements.
Any other tasks that will be assigned to you.

Academic/Professional qualifications and Experience:

Bachelor’s degree in business, engineering, economics, IT or related relevant degree course.
A minimum of one to three years of relevant work experience in cybersecurity.
Professional qualification in OSCP, GIAC, CompTIA Security+, CISA, CISM, or CEH certification.
Networking Fundamentals – Understanding of TCP/IP, UDP, DNS, ARP, and other networking protocols, and knowledge of subnetting, firewalls, and network security concepts.
Familiarity with Windows and Linux, including command-line tools and system configurations.
Knowledge of common vulnerabilities and exposure standards (e.g., OWASP Top 10, CVE) and ability to use vulnerability scanning tools like Nessus, OpenVAS etc.
Hands-on experience with tools like Metasploit, Burp Suite, Wireshark, Nmap, and Kali Linux with understanding of password-cracking tools (e.g., John the Ripper, Hashcat)
Web Application Security Assessment – Familiarity with common web vulnerabilities such as SQL injection, cross-site scripting (XSS), and file inclusion vulnerabilities.
Ability to document findings clearly and concisely, including technical details and remediation recommendations.

Personal attributes:

Good communication (written and verbal), numeracy, presentation and analytical skills.
IT proficiency, especially Microsoft Office
An eye for detail
Team player with leadership capability
Excellent coordination and planning skills
Multicultural skills to operate across diverse African jurisdictions.
Resilience, tenacity, and the ability to handle difficult client conversations.
Comfort with multitasking, flexibility, open-mindedness, and the ability to make quick decisions.
Unquestionable integrity.

We offer:

An exciting opportunity to work with a Big 4 firm on cutting edge clients across Africa.
Continuous learning and development.
Exposure to multi-disciplinary client service teams.
Unrivalled space to grow and be innovative.
Opportunity for international travel.