Senior Associate, Security Governance, Risk and ...

Known for being a great place to work and build a career, KPMG provides audit, tax and advisory services for organizations in today's most important industries. Our growth is driven by delivering real results for our clients. It's also enabled by our culture, which encourages individual development, embraces an inclusive environment, rewards innovative excellence and supports our communities. With qualities like those, it's no wonder we're consistently ranked among the best companies to work for by Fortune Magazine, Consulting Magazine, Seramount, Fair360 and others. If you're as passionate about your future as we are, join our team.KPMG is currently seeking a Sr. Associate, Security Governance, Risk and Compliance (SoQC) to join our Enterprise Security Services organization. This is a remote work opportunity.Responsibilities:Apply a fundamental understanding of IT controls, how they are described, and their ownershipLiaise with IT control owners and other representatives on an ongoing basis; validate their ownership, and control description using a comprehensive excel listTransfer those documented controls, their owners and their control descriptions into ServiceNowTrigger the certifications in ServiceNow. Monitor their compliance responses; follow up if neededTask with the timely collection of control evidence, evaluation, acceptance or rejection and feedback thereofResponsible for the retention and indexing and periodic refreshing of required artifacts in restricted SharePoint folders; attend process, and control walkthrough meetings, including the prepopulating of the SoQC controls questionnaireAct with integrity, professionalism, and personal responsibility to uphold KPMG's respectful, and courteous work environmentQualifications:Minimum five years of recent experience in risk or security experience within a large professional services environment is preferredBachelor's degree from an accredited college or university is preferred; relevant industry certifications, such as CPA, CISA, CISM, CISSP is preferred; minimum of a high school diploma or GED requiredAn understanding of IT security principles, IT security controls, acceptable security control evidence and related technologies and productsFamiliarity with the Public Company Accounting Oversight Board (PCAOB), SOC 1/2/3, AICPA, ISO, COBIT, CSA, ITIL and other relative IT and Information Security FrameworksStrong verbal/written communication, collaboration, analytical and presentation skills to lead an environment driven by customer service and teamworkApplicants must be authorized to work in the U.S. without the need for employment-based visa sponsorship now or in the future; KPMG LLP will not sponsor applicants for U.S. work visa status for this opportunity (no sponsorship is available for H-1B, L-1, TN, O-1, E-3, H-1B1, F-1, J-1, OPT, CPT or any other employment-based visa)KPMG LLP and its affiliates and subsidiaries (

Created: 2026-04-04