Michigan IT Jobs

Mobile michigan-jobbank Logo

Job Information

KPMG Security Penetration Tester in Grand Rapids, Michigan

Security Penetration Tester

Dallas, Texas

Requisition #: 45128

Practice Area: Business Support Services

Location: Atlanta, GA; Grand Rapids, MI; Dallas, TX

Known for being a great place to work and build a career, KPMG provides audit, tax and advisory services for organizations in today’s most important industries. Our growth is driven by delivering real results for our clients. It’s also enabled by our culture, which encourages individual development, embraces an inclusive environment, rewards innovative excellence and supports our communities. With qualities like those, it’s no wonder we’re consistently ranked among the best companies to work for by Fortune Magazine, Consulting Magazine, Working Mother Magazine, Diversity Inc. and others. If you’re as passionate about your future as we are, join our team.

KPMG is currently seeking a Manager, Application Security to join our Digital Nexus technology organization.


  • Perform hands-on application security penetration testing and help design and improve the security testing artifacts and process; Create security testing plans and test cases

  • Provide guidance to developers on recommended controls and countermeasures

  • Present test findings and interface with stakeholders

  • Develop detailed work plans, schedules, resource plans for recurring penetration tests

  • Liaise with external 3rd party pen testers, as required

  • Establish and report on metrics to gauge pen testing effectiveness, progress and key risk areas identified through audits and monitor remediation activities while maintaining awareness of the current security threat landscape


  • Minimum five years of experience performing IT security risk assessments, Information Security and Third Party Vendors

  • Bachelor’s degree from an accredited college

  • Understanding of security principles, IT security controls and OWASP top 10 Mobile and Web application vulnerabilities

  • Experience in web development and programming languages i.e. Java, XML, Perl and HTML

  • In depth knowledge of any proxying tools such as Paros, Burp, and WebScarab

  • Essential to obtain GIAC Web Application Penetration Tester (GWAPT), GIAC Penetration Tester (GPEN), Certified Ethical Hacker (CEH), Certified Information Security Manager (CISM), Certified Web Application Defender (GWEB), Certified Information System Security Professional (CISSP) or equivalent certification

KPMG LLP (the U.S. member firm of KPMG International) offers a comprehensive compensation and benefits package. KPMG is an affirmative action-equal opportunity employer. KPMG complies with all applicable federal, state and local laws regarding recruitment and hiring. All qualified applicants are considered for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other category protected by applicable federal, state or local laws. Thecontains further information regarding the firm's compliance with federal, state and local recruitment and hiring laws. No phone calls or agencies please.

Our Benefits


KPMG offers a range of medical insurance options to meet your needs as well as prescription drug coverage, health care flexible spending accounts, and dependent day care flexible spending accounts.

Personal Time Off (PTO)

Up to 30 PTO Days per year (depending on job classification/level/years of service).


  • 401(k) and Pension Plans

  • Dependent Care Flexible Spending Account

  • Health Care Flexible Spending Account

  • Mortgage Assistance Program

  • HomeBenefits@Work Program

  • Hyatt Legal Plan

  • Benefits vary by employment status.