KPMG's Cyber Security Service Offering | KPMG | ZA

Our service offering

KPMG's Cyber Security Service Offering

KPMG’s Cyber Security Framework illustrates both the organisational components and the iterative process

KPMG's Cyber Security Service Offering

The Prepare phase aims to help clients understand their vulnerabilities and improve their preparedness against cyber attack. KPMG’s service offerings in this phase include:

  • Cyber Maturity Assessment (CMA) – a rapid diagnostic which enables clients to understand areas of cyber vulnerability - from people, process and technology viewpoints - and to identify and prioritize areas for remediation
  • Cyber security strategy – the design and implementation of cyber security strategies. Support through the lifecycle from defining the vision, through to establishing the control framework and training your employees
  • Cyber gaming – scenario based experiential learning to both develop cyber response capability and improve employee and board awareness of cyber risks.
  • Cyber threat modelling – Understanding who the key threat actress are and what information they are after

The Protect phase helps clients design and implement their cyber defense infrastructure. KPMG’s service offerings in this phase include:

  • Cyber defense operating model design
  • Design and implementation of the overall defense infrastructure
  • Identity and access governance
  • Data loss prevention
  • Vulnerability management
  • Privileged access management 
  • Security and technology assessments
  • Security incident and event management
  • External, internal and wireless vulnerability testing and improvement

The Integrate phase aims to embed cyber security in the culture and decision making of client organizations. KPMG’s service offerings in this phase include:

  • Cyber security programme implementation and change management
  • Cyber security awareness and training 

The Detect and respond phase helps clients respond to and investigate cyber attacks. KPMG’s service offerings in this phase include:

  • Cyber attack detection through network monitoring and sophisticated data analytics
  • Design develop and train rapid response teams to contain, manage and recover from current cyber attacks, including rapid preservation of data for evidential purposes
  • Advanced digital forensics capability to gather, preserve and interpret large data sets, deleted or ephemeral data in order to prove a chain of events
  • Investigation into and reporting on cyber attacks for evidential or insurance purposes
  • Expert witness services
  • Advanced training and cyber response capability development 

The Threat intelligence aims to help clients implement the building blocks of intelligence and use intelligence as a springboard for delivering effective cyber security in each phase. KPMG’s service offerings in this phase include:

  • Designing and implementing threat intelligence capabilities
  • Integrating threat intelligence into design and operation of the cyber security programme

Transformation helps our clients design and deliver a wholesale program of change to improve their cyber security capability by incorporating the full cycle of the approach. KPMG’s service offering included the full iterative process to define an implement a transformed cyber programme.

Connect with us


Request for proposal



Key contact