Cyber Security Specialist

Position Title: Cyber Security Specialist

Duration: 36+ Months Contract

Work Location: Downtown Dallas (at least 2 to 3 days a week - Tue, Wed, and Thu)

Education: Bachelor’s degree

Job Description:

Responsibilities:

• Monitor security alerts, events, and incidents in real-time using Security Information and Event Management (SIEM) and other security tools.
• Perform initial triage of security alerts, assessing their severity, relevance, and urgency to determine the appropriate response.
• Investigate security incidents, identify potential root causes, perform remediation actions, and assist in developing mitigation strategies.
• Analyze network traffic, system logs, and other data sources to identify patterns and anomalies indicative of security threats.
• Review and report on the efficacy of security monitoring tools, ensuring their optimal performance and effectiveness.
• Create detailed incident reports and maintain accurate records of security incidents and their resolutions.
• Collaborate with cross-functional teams, including incident responders and system administrators, to contain and remediate security incidents.
• Stay informed of emerging cybersecurity threats, vulnerabilities, and industry best practices through threat intelligence sources and research.
• Assist in the development and implementation of security procedures, and best practices.
• Participate in ongoing security awareness and technical security training.
• Communicate effectively with clients and stakeholders, provide timely updates on incident status, and remediation progress.
• Assist in preparing reports on security incidents, trends, and operational metrics ensuring transparency and actionable insights.
• Follow playbooks and reference guides during case triage and incident investigations.

Qualifications:

• Bachelor’s degree in computer science, Information Technology, Cybersecurity, Management Information Systems, or a related field.
• 0-3 years of prior work experience in a relevant field, with a strong interest in cybersecurity.
• Basic understanding of cybersecurity principles, technologies, and network defense concepts.
• Familiarity with IT Security frameworks (e.g., MITRE, Cyber Kill Chain) is a plus.
• Strong analytical and critical thinking skills with keen attention to detail.
• Excellent verbal and written communication skills, with the ability to articulate technical information clearly.
• Ability to work effectively in a global team environment and drive results in a matrixed organization.
• Keen sense of ownership and accountability, with an eagerness to learn.
• Ability to quickly learn security products, tools, and processes to maintain the team’s proficiency.
• Act with integrity, professionalism, and personal responsibility to uphold KPMG's respectful and courteous work environment

Preferred Qualifications:

• Experience with Security Information and Event Management (SIEM) tools (e.g., Microsoft Sentinel, IBM QRadar, LogRhythm).
• Basic knowledge of data analysis/visualization tools (e.g., Excel, Tableau, Power BI, SQL).
• Relevant certifications such as CompTIA Security+, CySA+, or equivalent.
• Understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth, and common security elements.
• Experience reviewing logs, network data, and attack artifacts for incident investigations.
• Experience addressing Phishing incidents.

Familiar with Python or any scripting language