Job Description
Introduction to KPMG
Recognized as a great place to work and build a successful career, KPMG provides Audit, Tax, and Advisory services to organizations across today’s leading industries. Our growth is driven by delivering impactful results for clients, supported by a culture that nurtures individual development, promotes inclusivity, rewards innovation, and contributes to communities.
If you’re passionate about your future, join our team. Our diverse teams of subject matter experts help clients make informed decisions that confidently drive value and deliver exceptional results. With deep sector expertise and global experience, we provide comprehensive solutions in deal-making, tax, regulatory, and advisory services.
Our Values are the foundation of everything we do and every action that we take. We are a people business. Our people define what we can achieve, and our refreshed Values offer a strong foundation that is fit for the future. These Values define the expectations we have of each other, and most importantly, ourselves. Ultimately, they are core to who we are as a firm, what it means to work at KPMG, and help us achieve our Purpose.
Together we continue our journey to be the most trusted and trustworthy professional services firm, staying committed to our purpose and values as we navigate the future in a rapidly evolving world.
We are currently looking for a Manager - CyFR Administrator and Compliance within the Forensic Technology Business unit in our Johannesburg office
Role Overview
The Cyber Forensic and Response (CyFR) Administrator & Compliance Officer – Forensic GenAI will be responsible for the operational administration, governance, compliance oversight, and risk management of Generative AI solutions deployed within the CyFR function.
This role ensures secure configuration, regulatory compliance, evidentiary integrity, and responsible AI governance for forensic GenAI platforms hosted in Microsoft Azure.
The successful candidate will act as the control owner for AI-enabled forensic systems, ensuring alignment with legal admissibility standards, cybersecurity regulations, and corporate governance frameworks.
Key Responsibilities
1. Platform Administration (Forensic GenAI in Azure)
• Administer and maintain secure GenAI forensic environments in Microsoft Azure.
• Manage role-based access control (RBAC), identity governance, and privileged access.
• Configure logging, monitoring, and audit trails for AI-enabled forensic systems.
• Maintain environment segregation (development, testing, production).
• Coordinate patching, updates, and change management processes.
2. Compliance and Governance Oversight
• Act as Compliance Officer for AI-driven forensic solutions.
• Ensure adherence to:
• ISO 27001
• NIST Cybersecurity Framework
• Digital evidence handling standards
• Data protection regulations (e.g., GDPR where applicable)
• Develop and maintain AI governance documentation, policies, and procedures.
• Conduct periodic compliance reviews and internal control assessments.
• Maintain evidentiary chain-of-custody documentation for AI-processed data.
• Ensure responsible AI use, explainability, and auditability.
3. Risk Management and Assurance
• Perform AI risk assessments and control validation.
• Monitor for model misuse, hallucination risks, bias, and data leakage.
• Ensure forensic outputs meet legal admissibility standards.
• Conduct vendor risk management for AI-related service providers.
• Support internal and external audits.
• Maintain risk register(s) for GenAI forensic systems.
4. Security and Data Protection
• Oversee data classification and secure handling of forensic artifacts.
• Ensure encryption at rest and in transit across Azure services.
• Implement Zero Trust principles for AI forensic environments.
• Coordinate with CyFR and Forensic investigation teams during engagements involving AI platforms.
5. Documentation & Reporting
• Maintain system documentation, standard operating procedures (SOPs), and control mappings.
• Provide compliance dashboards and reports to investigation teams as required.
• Track KPIs related to AI governance and forensic platform security.
• Prepare regulatory documentation as required.
Technical Skills
• Azure Administration
• Deep working knowledge of Microsoft Azure and Microsoft Azure OpenAI Service
• Identity and access management (Entra ID)
• Policy enforcement (Azure Policy)
• Logging and monitoring configuration
• Compliance and Governance
• Regulatory control mapping
• Audit preparation and evidence collection
• Risk and control frameworks (ISO, NIST, CIS)
• AI governance and responsible AI frameworks
• Cyber Forensics Knowledge
• Chain-of-custody principles
• Evidence preservation standards
• Incident response lifecycle
• Log retention and forensic integrity controls
Preferred Certifications
• Microsoft Certified: Azure Administrator Associate
• Microsoft Certified: Azure Security Engineer Associate
• Certified Information Systems Auditor (CISA)
• Certified Information Systems Security Professional (CISSP)
• GIAC Certified Incident Handler (GCIH)
• Certified Data Protection Officer (where applicable)
Key Competencies
• Strong governance and control mindset
• High attention to evidentiary detail
• Risk-aware and compliance-focused
• Strong documentation and reporting skills
• Ability to balance innovation with regulatory discipline
• Integrity and confidentiality
Required Qualifications
• Bachelor’s degree in Cyber Security, Information Systems, Digital Forensics, Law, or related field.
• 5+ years in cybersecurity, IT governance, compliance, or CyFR administration.
• 3+ years hands-on experience administering Microsoft Azure or on-prem IT environments.
• Experience working in regulated or legally sensitive environments would be beneficial and advantageous.
Explore a career in an environment where learning lasts a lifetime, where you’ll have the opportunity to work on rewarding projects that will give you invaluable experience and drive your professional growth. You’ll also have access to market-leading learning and development programs and opportunities. Come thrive with us, where the best of the best converges to showcase subject matter expertise, world class innovators, and superior client service
If you have not been contacted in the next 3 months, consider your application as being unsuccessful and we wish you all the best in your career path