Associate Director, Cortex​/XSOAR Operations

Associate Director, Cortex/XSOAR Operations

1 快三大发 day ago Be among the first 25 applicants

KPMG provides audit, tax, and advisory services for organizations in today’s most important industries. We are known for our culture that encourages individual development, embraces an inclusive environment, rewards innovative excellence, and supports our communities. We are consistently ranked among the best companies to work for by Fortune Magazine, Consulting Magazine, Seramount, Fair
360, and others.

KPMG is currently seeking an Associate Director, Cyber Operations to join our Enterprise Security Services organization. This is a remote work opportunity within the United States.

• Own the Cortex extended security orchestration and automation platform (XSOAR), defining its strategic vision, automation roadmap, and reporting on key performance metrics to champion the value of security automation to leadership.
• Govern the entire CI/CD pipeline for security automation, from code authoring and source control through automated testing and production deployment, ensuring all security automations are released with speed, quality, and security.
• Execute 24 × 7 × 365 security monitoring and incident response by developing and implementing automated playbooks in Cortex XSOAR to streamline event processing, triage, remediation, threat hunting, vulnerability management, and reporting.
• Spearhead the technical integration of disparate security platforms into Cortex XSOAR, centralizing operations for comprehensive orchestration and automated response, enabling AI‑enabled security operations.
• Lead small‑to‑medium projects by managing deadlines and team deliverables, and act as a formal performance manager responsible for supervising, coaching, and mentoring junior staff.
• Drive strategic alignment across federated technology groups, fostering collaboration and serving as the key security‑automation subject‑matter professional, guiding business‑case development and reporting KPIs to executive leadership.
• Act with integrity, professionalism, and personal responsibility to uphold KPMG’s respectful and courteous workplace.

• Minimum eight years of recent combined project and operational experience in cybersecurity operations and incident response, with demonstrable expertise with Cortex SOAR platforms, preferably within a highly regulated industry such as financial or professional services.
• Bachelor’s degree from an accredited college or university is preferred.
• Valuable certifications include CISSP, CCSP, CCSK, GSEC, GCIH, GCFE, GCFA, SC‑200, CEH, and AZ‑900.
• Experience coding and implementing processes, defining security monitoring rules, and managing security tooling.
• Demonstrated ability to lead and collaborate effectively in a complex, matrixed environment with excellent communication skills and hands‑on technical expertise across enterprise systems such as Linux, Windows, Active Directory, and modern SIEM platforms like Microsoft Sentinel.
• Skilled in developing resource plans and project estimation.
• Experience with Palo Alto Cortex product or other SOAR platforms preferred.
• Must be authorized to work in the U.S. without the need for employment‑based visa sponsorship now or in the future.

KPMG offers a comprehensive, competitive benefits package designed to help you make the best decisions for yourself, your family, and your lifestyle. The Total Rewards package includes medical and dental plans, vision coverage, disability and life insurance, 401(k) plans, and a robust suite of personal well‑being benefits. Standard work hours, personal time off, holiday schedule, and additional compensations are governed by job classification, standard work hours, and years of service.

Salary Range (California): $124,000 – $259,000. For additional salary information by city, visit

• Seniority Level: Mid‑Senior level
• Employment Type:
  
  Full‑time
• Job Function:
  General Business

KPMG is an equal opportunity employer. We comply with all applicable federal, state, and local laws regarding recruitment and hiring. All qualified applicants are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, citizenship status, disability, or protected veteran status.

No phone calls or agencies please. Candidates are considered as they apply until the opportunity is filled. Candidates are encouraged to apply expeditiously.

Los Angeles County applicants: spol includes material job duties listed above. Criminal history may have a direct, adverse, and negative relationship with some of those duties. Pursuant to the California Fair Chance Act, we will consider qualified applicants with arrest and conviction records.