KPMG US
Specialist Director, Governance, Risk, & Compliance
KPMG US, San Francisco, California, United States, 94199
Specialist Director, Governance, Risk, & Compliance
KPMG Advisory practice is currently our fastest growing practice. We are seeing tremendous client demand, and looking forward we do not anticipate that slowing down. In this ever-changing market environment, our professionals must be adaptable and thrive in a collaborative, team-driven culture. At KPMG, our people are our number one priority. If you're looking for a firm with a strong team connection where you can be your whole self, have an impact, advance your skills, deepen your experiences, and have the flexibility and access to constantly find new areas of inspiration and expand your capabilities, then consider a career in Advisory.
Responsibilities
Direct multiple managed services projects systematically, and account for managing managers both onshore and offshore; establish resource allocation, budget management, and client and administrative reporting including how offshore and onshore resources will provide support
Develop KPMG's Managed Services solution development and lead go-to-market initiatives and marketing efforts, and collaborate outside of GRC Managed Services space, including both technical contributions to thought leadership and resource group membership across the firm
Guide and develop team members, provide coaching, and ensure readiness for advanced roles and responsibilities; conduct detailed performance development of staff through coaching, feedback, and preparation for advanced responsibilities
Provide oversight of MS teams, across multiple MS projects, in their support for GRC platforms, ensuring requirements, incident management, enhancement support, and platform maintenance operate efficiently to support the requirements for GRC functional workstreams; oversee continuous controls monitoring programs to validate the ongoing effectiveness of key controls with onshore and offshore resources across multiple MS projects
Give expert input into the development of client risk registers and regular risk assessments, and act as the senior point of contact for risk discussions with clients, translating risks related to new laws, regulations, technology, or merger/acquisition activity into business impact; direct the development and management compliance programs, regulatory compliance calendars, and policy standards across multiple MS projects
Present to client senior/executive leadership quality risk posture reports, dashboards, and governance committee materials that highlight key risks, control deficiencies, and remediation progress, as well as strategic input and insights above baseline program management; build and maintain strong, collaborative relationships with 1st Line operational teams, onshore GRC counterparts, and client leadership
Act with integrity, professionalism, and personal responsibility to uphold KPMG's respectful and courteous work environment
Qualifications
Minimum ten years of recent experience in governance, risk, and compliance, with at least five years in a leadership role
Bachelor's degree in information technology, cybersecurity, business administration, or related field
Professional certifications such as CISSP, CISM, CRISC, or equivalent preferred
Proven experience in creating and expanding GRC offerings within a managed services context
Familiarity with Audit testing, GRC platforms (such as Archer, ServiceNow or MetricStream) and understanding of NIST, ISO, HIPAA, GDPR, and other IT, Privacy and Information Security Frameworks and laws
Strong verbal/written communication, problem solving, analytical and independent judgment skills to support an environment driven by customer service and teamwork; ability to positively influence, mentor and be a credible source of knowledge to less experienced team members
Ability to travel as required
Applicants must be authorized to work in the U.S. without the need for employment-based visa sponsorship now or in the future; KPMG LLP will not sponsor applicants for U.S. work visa status for this opportunity
Note KPMG offers a comprehensive compensation and benefits package. KPMG is an equal opportunity employer. All qualified applicants are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, citizenship status, disability, protected veteran status, or any other category protected by applicable laws.
#J-18808-Ljbffr
Responsibilities
Direct multiple managed services projects systematically, and account for managing managers both onshore and offshore; establish resource allocation, budget management, and client and administrative reporting including how offshore and onshore resources will provide support
Develop KPMG's Managed Services solution development and lead go-to-market initiatives and marketing efforts, and collaborate outside of GRC Managed Services space, including both technical contributions to thought leadership and resource group membership across the firm
Guide and develop team members, provide coaching, and ensure readiness for advanced roles and responsibilities; conduct detailed performance development of staff through coaching, feedback, and preparation for advanced responsibilities
Provide oversight of MS teams, across multiple MS projects, in their support for GRC platforms, ensuring requirements, incident management, enhancement support, and platform maintenance operate efficiently to support the requirements for GRC functional workstreams; oversee continuous controls monitoring programs to validate the ongoing effectiveness of key controls with onshore and offshore resources across multiple MS projects
Give expert input into the development of client risk registers and regular risk assessments, and act as the senior point of contact for risk discussions with clients, translating risks related to new laws, regulations, technology, or merger/acquisition activity into business impact; direct the development and management compliance programs, regulatory compliance calendars, and policy standards across multiple MS projects
Present to client senior/executive leadership quality risk posture reports, dashboards, and governance committee materials that highlight key risks, control deficiencies, and remediation progress, as well as strategic input and insights above baseline program management; build and maintain strong, collaborative relationships with 1st Line operational teams, onshore GRC counterparts, and client leadership
Act with integrity, professionalism, and personal responsibility to uphold KPMG's respectful and courteous work environment
Qualifications
Minimum ten years of recent experience in governance, risk, and compliance, with at least five years in a leadership role
Bachelor's degree in information technology, cybersecurity, business administration, or related field
Professional certifications such as CISSP, CISM, CRISC, or equivalent preferred
Proven experience in creating and expanding GRC offerings within a managed services context
Familiarity with Audit testing, GRC platforms (such as Archer, ServiceNow or MetricStream) and understanding of NIST, ISO, HIPAA, GDPR, and other IT, Privacy and Information Security Frameworks and laws
Strong verbal/written communication, problem solving, analytical and independent judgment skills to support an environment driven by customer service and teamwork; ability to positively influence, mentor and be a credible source of knowledge to less experienced team members
Ability to travel as required
Applicants must be authorized to work in the U.S. without the need for employment-based visa sponsorship now or in the future; KPMG LLP will not sponsor applicants for U.S. work visa status for this opportunity
Note KPMG offers a comprehensive compensation and benefits package. KPMG is an equal opportunity employer. All qualified applicants are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, citizenship status, disability, protected veteran status, or any other category protected by applicable laws.
#J-18808-Ljbffr