KPMG US
Lead Engineer I, Operational Continuity & Compliance
KPMG US, Washington, District of Columbia, us, 20022
Lead Engineer I, Operational Continuity & Compliance
Join KPMG US as a Lead Engineer I in our Digital Nexus Technology team, responsible for implementing and improving access management and security controls on the Azure Data Lake platform to support operational continuity and regulatory compliance across a global Data Engineering & Analytics organization. This is a Manager-level position that blends technical leadership with governance and audit responsibilities.
Responsibilities
Lead the implementation and continuous improvement of processes to strengthen access management and security controls on the Azure Data Lake platform.
Design, introduce, and maintain robust internal controls, overseeing user access provisioning, running recertification processes, and leading compliance audits to support operational continuity, regulatory compliance, and risk management across the Data Engineering & Analytics organization.
Own and govern the end‑to‑end user access lifecycle for the Azure Data Lake platform, implementing rigorous controls, segregation of duties, privileged access management, and periodic recertification to ensure a secure, compliant environment.
Spearhead all compliance audits (e.g., SOX, ISO 27001, NIST, GDPR) by managing evidence gathering, evaluating control effectiveness, and driving remediation, ensuring readiness for emerging technology risks such as AI agents.
Lead initiatives to implement and optimize ITIL‑based controls, analyzing end‑to‑end processes to identify and implement improvements through automation, RPA, and Agentic AI to enhance efficiency and quality.
Manage the issue lifecycle from identification to resolution and translate complex risk data into executive‑ready reports and dashboards, acting as a liaison between operational teams, GRC, and leadership.
Qualifications
Minimum 5 years recent experience leading medium‑to‑large, enterprise‑scope business process improvement projects in Risk & Compliance, with program or project management responsibilities preferred.
Bachelor’s degree in information technology, cybersecurity, business administration, or a related field; professional certifications such as CISSP, CISM, CRISC, or equivalent are preferred.
Hands‑on experience with Databricks and the Azure Data Lake platform, including user access provisioning, recertification, and compliance audit processes.
Strong analytical skills and experience with process metrics, performance management, problem‑solving, and interpersonal communication.
Familiarity with audit testing, control evidence evaluation, control deficiency identification, and remediation facilitation, with experience in NIST, ISO, HIPAA, GDPR, and other IT, privacy, and information security frameworks and laws.
Excellent collaboration, influencing, and team‑building skills with cross‑functional business and IT leads.
Action with integrity, professionalism, and personal responsibility to uphold KPMG’s respectful and courteous work environment.
Authorized to work in the U.S. without the need for employment‑based visa sponsorship; KPMG LLP will not sponsor visa status for this opportunity.
Benefits & Compensation We offer a comprehensive, competitive benefits package including medical, dental, vision, disability and life insurance, 401(k) plans, and personal well‑being benefits. Salary ranges are determined by market, experience, and qualifications.
Equal Employment Opportunity KPMG is an equal‑opportunity employer. We comply with all applicable federal, state, and local laws regarding recruitment and hiring. All qualified applicants are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, citizenship status, disability, protected veteran status, or any other category protected by applicable law.
#J-18808-Ljbffr
Responsibilities
Lead the implementation and continuous improvement of processes to strengthen access management and security controls on the Azure Data Lake platform.
Design, introduce, and maintain robust internal controls, overseeing user access provisioning, running recertification processes, and leading compliance audits to support operational continuity, regulatory compliance, and risk management across the Data Engineering & Analytics organization.
Own and govern the end‑to‑end user access lifecycle for the Azure Data Lake platform, implementing rigorous controls, segregation of duties, privileged access management, and periodic recertification to ensure a secure, compliant environment.
Spearhead all compliance audits (e.g., SOX, ISO 27001, NIST, GDPR) by managing evidence gathering, evaluating control effectiveness, and driving remediation, ensuring readiness for emerging technology risks such as AI agents.
Lead initiatives to implement and optimize ITIL‑based controls, analyzing end‑to‑end processes to identify and implement improvements through automation, RPA, and Agentic AI to enhance efficiency and quality.
Manage the issue lifecycle from identification to resolution and translate complex risk data into executive‑ready reports and dashboards, acting as a liaison between operational teams, GRC, and leadership.
Qualifications
Minimum 5 years recent experience leading medium‑to‑large, enterprise‑scope business process improvement projects in Risk & Compliance, with program or project management responsibilities preferred.
Bachelor’s degree in information technology, cybersecurity, business administration, or a related field; professional certifications such as CISSP, CISM, CRISC, or equivalent are preferred.
Hands‑on experience with Databricks and the Azure Data Lake platform, including user access provisioning, recertification, and compliance audit processes.
Strong analytical skills and experience with process metrics, performance management, problem‑solving, and interpersonal communication.
Familiarity with audit testing, control evidence evaluation, control deficiency identification, and remediation facilitation, with experience in NIST, ISO, HIPAA, GDPR, and other IT, privacy, and information security frameworks and laws.
Excellent collaboration, influencing, and team‑building skills with cross‑functional business and IT leads.
Action with integrity, professionalism, and personal responsibility to uphold KPMG’s respectful and courteous work environment.
Authorized to work in the U.S. without the need for employment‑based visa sponsorship; KPMG LLP will not sponsor visa status for this opportunity.
Benefits & Compensation We offer a comprehensive, competitive benefits package including medical, dental, vision, disability and life insurance, 401(k) plans, and personal well‑being benefits. Salary ranges are determined by market, experience, and qualifications.
Equal Employment Opportunity KPMG is an equal‑opportunity employer. We comply with all applicable federal, state, and local laws regarding recruitment and hiring. All qualified applicants are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, citizenship status, disability, protected veteran status, or any other category protected by applicable law.
#J-18808-Ljbffr