Manager in Cyber Forensic and Response

Introduction to KPMG

Recognized as a great place to work and build a successful career, KPMG provides Audit, Tax, and Advisory services to organizations across today’s leading industries. Our growth is driven by delivering impactful results for clients, supported by a culture that nurtures individual development, promotes inclusivity, rewards innovation, and contributes to communities.

If you’re passionate about your future, join our team. Our diverse teams of subject matter experts help clients make informed decisions that confidently drive value and deliver exceptional results. With deep sector expertise and global experience, we provide comprehensive solutions in deal-making, tax, regulatory, and advisory services.

Our Values are the foundation of everything we do and every action that we take. We are a people business. Our people define what we can achieve, and our refreshed Values offer a strong foundation that is fit for the future. These Values define the expectations we have of each other, and most importantly, ourselves. Ultimately, they are core to who we are as a firm, what it means to work at KPMG, and help us achieve our Purpose.

Together we continue our journey to be the most trusted and trustworthy professional services firm, staying committed to our purpose and values as we navigate the future in a rapidly evolving world.

We are currently looking for a Manager in Cyber Forensic and Response within our Forensic Business unit in Johannesburg

Job Purpose

Manage and maintain the cloud-based forensic and investigation infrastructure hosted on Microsoft Azure, ensuring secure, reliable, and efficient operation of digital forensics, data analytics, and evidence management platforms.

Responsibilities

· Administer and maintain all forensic and investigation systems hosted on Azure — including case management, data storage, analytics environments, and automation pipelines.

· Design and manage Azure-based forensic environments, such as isolated investigation VMs, Azure Sentinel workspaces, and secure evidence vaults.

· Support forensic and incident response teams with data ingestion, extraction, and queries from diverse sources (Azure logs, O365, endpoints, and third-party integrations).

· Automate data collection, enrichment, and correlation across Azure services using Logic Apps, PowerShell, and Azure Functions.

· Implement and enforce role-based access control (RBAC) and ensure compliance with evidence handling, retention, and privacy standards.

· Knowledge of configurations relating to RAG, Agentic AI and document analyser, Azure AI etc

· Monitor and optimize Azure resource performance, cost, and security posture for forensic workloads.

· Coordinate with internal IT and security teams to maintain connectivity, patching, and resilience of forensic systems.

· Evaluate and integrate new forensic and data management tools within the Azure ecosystem to enhance investigative capabilities.

· Manage the Azure environment used by front end investigation teams

Qualifications

• Education:

B.Sc. or M.Sc. in Information Technology, Computer Science, Cybersecurity, or related field.

• Certifications:

Preferred:

Microsoft Certified: Azure Administrator Associate (AZ-104)

Microsoft Certified: Azure Security Engineer Associate (AZ-500)

Azure Solutions Architect Expert (AZ-305)

GIAC Certified Forensic Examiner (GCFE) or CHFI

Splunk / Kusto Query Language (KQL) proficiency

Experience

4–8 years in IT or security operations, with 3+ years managing Azure environments for security, data analytics, or forensic purposes.

Skills

• Expert in Azure services such as Sentinel, Log Analytics, Defender for Cloud, Blob Storage, Key Vault, Logic Apps, RAG, Document Analyser and Azure Automation.

• Knowledge of Proficiency in KQL, PowerShell, and Python for data extraction and automation.

• Understanding of forensic workflows, evidence integrity, and digital investigation processes.

• Knowledge of data retention, encryption, and compliance frameworks

Explore a career in an environment where learning lasts a lifetime, where you’ll have the opportunity to work on rewarding projects that will give you invaluable experience and drive your professional growth. You’ll also have access to market-leading learning and development programs and opportunities. Come thrive with us, where the best of the best converges to showcase subject matter expertise, world class innovators, and superior client service