Massachusetts Information Technology Jobs

Search for Jobs in Information Technology
MassHire JobQuest Logo

Job Information

KPMG Manager, Cyber Security - Cyber GRC in Boston, Massachusetts

Business Title: Manager, Cyber Security - Cyber GRC

Requisition Number: 87628 - 39

Function: Advisory

Area of Interest:

State: MA

City: Boston


The KPMG Advisory practice is currently our fastest growing practice. We are seeing tremendous client demand, and looking forward we don't anticipate that slowing down. In this ever-changing market environment, our professionals must be adaptable and thrive in a collaborative, team-driven culture. At KPMG, our people are our number one priority. With a wealth of learning and career development opportunities, a world-class training facility and leading market tools, we make sure our people continue to grow both professionally and personally. If you're looking for a firm with a strong team connection where you can be your whole self, have an impact, advance your skills, deepen your experiences, and have the flexibility and access to constantly find new areas of inspiration and expand your capabilities, then consider a career in Advisory.

KPMG is currently seeking a Manager, Cyber Security - Cyber GRC / ServiceNow IRM to join our Cyber Security organization


  • Provide functional and process expertise in building world class programs across the GRC ecosystem such as Policy and Compliance, Risk, Audit, Vendor Risk, Business Continuity, Privacy and Issues Management Experience in Vulnerability Response, Security Incident Response and Security Operations is a plus.

  • Design and configure GRC platforms and services, including: Policy and Compliance, Risk, Business Continuity , Audit, Vendor Risk ,Data Privacy and Vulnerability Response & Security Incident Response (a plus)

  • Possess in-depth domain knowledge and technology implementation experience in one or more eGRC/ITGRC platforms, such as ServiceNow, RSA Archer, OneTrust, MetricStream, or BWise.

  • Specialize in one or more leading GRC products including ServiceNow or OneTrust to lead GRC engagements, deliver process design, technical design, define Agile user stories, work with a diverse development team in multiple geographies.

  • Coordinate with clients to facilitate requirements gathering, sprint sessions, testing, UAT and deployment.

  • Support the practice in growing solution area by supporting in solution design and innovation leveraging GRC products.


  • A minimum of five years of Information Security and configuration experience in one of the market leading platforms such as ServiceNow, RSA Archer and OneTrust.

  • Bachelor's degree from an accredited college/university or equivalent professional experience

  • GRC product certification such as the following: ServiceNow Certified System Administrator; ServiceNow CIS certification in IRM in either: Policy & Compliance, Risk, Vendor Risk Management; ServiceNow CIS certification in SecOps in either; Security Incident Response or Vulnerability Response (a plus) ; OneTrust GRC Professional Certification

  • Competency in security frameworks such as NIST CSF, NIST 800-53, ISO, HIPAA, PCI.

  • Competency in Unified Controls Framework (UCF) and mapping to common controls

  • Applicants must be currently authorized to work in the United States without the need for visa sponsorship now or in the future

  • Demonstrable interpersonal skills to develop trust and guide clients in meeting their goals

  • Ability to travel, collaborate and work in a team environment to solve complex client problems in cybersecurity and GRC

KPMG LLP (the U.S. member firm of KPMG International) offers a comprehensive compensation and benefits package. KPMG is an affirmative action-equal opportunity employer. KPMG complies with all applicable federal, state and local laws regarding recruitment and hiring. All qualified applicants are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, citizenship status, disability, protected veteran status, or any other category protected by applicable federal, state or local laws. The attached link ( contains further information regarding the firm's compliance with federal, state and local recruitment and hiring laws. No phone calls or agencies please.

KPMG does not currently require partners or employees to be fully vaccinated or test negative for COVID-19 in order to go to KPMG offices, client sites or KPMG events, except when mandated by federal, state or local law. In some circumstances, clients also may require proof of vaccination or testing (e.g., to go to the client site).

GL: 4

GF: 15304