KPMG
KPMG
Key Info
Summary
Incident ExercisingIncident Response
Penetration TestingVulnerability Assessment
STAR-FS Threat Led Penetration TestingThreat Led Penetration Testing (Formerly STAR ILPT)About
KPMG’s Global Cyber Defence and Response team is comprised of experienced, highly technical security consultants, incident responders and ethical hackers.
Our defence team is proficient in identifying and exploiting weaknesses in client IT systems and infrastructure, articulating security risks and providing mitigation advice in business-oriented terms. Our response team specialise in security operations, proactive security advice, and assisting clients in recovery from cyber incidents.
Both defence and response teams are complimented by access to a wide network of specialists across the KPMG network such as security architects, cloud consultants, software developers, DevOps engineers, IAM/PAM implementers, ISO27001 auditors and cyber risk modellers.
We operate a network of ISO17025/ISO27001/CE+ accredited testing laboratories and are CREST accredited under the Penetration Testing, Cyber Security Incident Response, Simulated Targeted Attack & Response and CBEST/GBEST/TBEST programmes; as well as offering NCSC CHECK, CTAS, CPA and CIR (UK), iCAST (HK) and TIBER (EU) services.
With offices in 144 countries our global team can support with local expertise wherever our clients require. Please visit this link to find your local office: https://home.kpmg/xx/en/home/about/offices.html
Read lessCybersecurity Focus
Accreditations
KPMG offer a full end to end vulnerability assessment and management service. From small bespoke environments to large multi-national corporate networks, we are experienced in delivering asset discovery, vulnerability identification, issue triage and tailored remediation plans.
KPMG offer a full range of tailored and issue-led penetration testing services from vulnerability assessments through to advanced red-teaming. Utilising our skilled CREST qualified consultants and our accredited laboratory facilities we deliver penetration tests across the full spectrum of disciplines incl. application, infrastructure, cloud, mobile and products.
As a global consultancy, we are also uniquely placed to provide post-assessment advice and implementation services with a large team of cyber subject matter experts covering areas such as Security Architecture & Design, ISO27001 compliance, SDLC and IAM.
Partner Assured Services
KPMG offer a full range of tailored and issue-led penetration testing services from vulnerability assessments through to advanced red-teaming. Utilising our skilled CREST qualified consultants and our accredited laboratory facilities we deliver penetration tests across the full spectrum of disciplines incl. application, infrastructure, cloud, mobile and products.
As a global consultancy, we are also uniquely placed to provide post-assessment advice and implementation services with a large team of cyber subject matter experts covering areas such as Security Architecture & Design, ISO27001 compliance, SDLC and IAM.
Other 3rd Party Assured Services
KPMG LLP is an NCSC approved CHECK company offering penetration testing of IT systems to identify potential vulnerabilities and recommend effective security countermeasures.
With many years of CHECK experience we focus on delivering high-end CHECK engagements to Central Government, Defence and National Security clients.
Our CHECK team is experienced in testing systems operating at the very highest of classifications in the most sensitive locations and has access to appropriate facilities and systems to seamlessly and easily deliver testing results direct to our clients in these environments.
Other 3rd Party Assured Services
Specialisms
KPMG have over 15 years’ experience delivering scenario-based penetration tests and simulated attack exercises for the most demanding of global clients across all sectors. Our assessments focus on demonstrating the impact of realistic threat scenarios; shaped by our collaboration with external and in-house threat intelligence providers, incident responders and SOC teams.
Our goal is to provide you with a truly realistic assessment of your security posture. Post-assessment, we have a global specialist team that can be leveraged to help analyse results, assist in defining a tailored roadmap to improvement, implement new security architectures and deliver first class training workshops.
KPMG have over 15 years’ experience delivering scenario-based simulated attack exercises for global financial services clients. Our assessments focus on demonstrating the impact of realistic threat scenarios; shaped by our collaboration with threat intelligence providers, incident responders and SOC teams. Our goal is to provide you with a truly realistic assessment of your security posture. Post-assessment, we have a global team that can be leveraged to analyse results, define improvements, and advise on regulatory matters.
Partner Assured Services
Other 3rd Party Aligned Services
KPMG are an experienced GBEST provider, delivering simulated attack exercises across key central government departments. Our assessments focus on demonstrating the impact of realistic threat scenarios; shaped by our collaboration with in-house and external threat intelligence providers, incident responders and SOC teams.
Our goal is to provide you with a truly realistic assessment of your security posture. Post-assessment, we have a global specialist team that can be leveraged to help analyse results, assist in defining a tailored roadmap to improvement, implement new security architectures and deliver first class training workshops.
Accreditations
KPMG provide a full range of CREST & NCSC accredited cyber security incident response services all within a sound, forensic wrapper. We handle insider threats, cloud incidents, hacking, ransomware, denial of service and bespoke scenarios. KPMG can help with detection and response as well as provide advise on recovery and remediation to restore your environment to a secure state.
Partner Assured Services
Other 3rd Party Assured Services
KPMG have over 15 years’ experience delivering scenario-based simulated attack exercises for global financial services clients. Our assessments focus on demonstrating the impact of realistic threat scenarios; shaped by our collaboration with in-house and external threat intelligence providers, incident responders and SOC teams.
Our goal is to provide you with a truly realistic assessment of your security posture. Post-assessment, we have a global team that can be leveraged to analyse results, define improvements and advise on in-country regulatory matters.