Address: 15 Canada Square
Canary Wharf
E14 5GL
Telephone: +44 (0)20 7311 1000
Email: [email protected]
Contact: Mathew Ettelaie (Penetration Testing)
+44 (0)20 7694 4356

Konrads Smelkovs (Incident Response)
+44 (0)20 7694 4419
[email protected]

KPMG’s Cyber Defence Services team is comprised of experienced, highly technical security consultants, incident responders and ethical hackers.  The team is proficient in identifying and exploiting weaknesses in client IT systems and infrastructure, articulating security risks and providing mitigation advice in business-oriented terms.


Penetration Testing

Contact: Mathew Ettelaie
[email protected]

We’re experts in both cyber security and your market, providing cutting edge insight and proven solutions to act with confidence. KPMG offer a full range of tailored and issue-led penetration testing services from vulnerability assessments through to advanced red-teaming.  As a global consultancy, we are also uniquely placed to provide post-assessment advice and implementation services with a large team of cyber subject matter experts covering areas such as Security Architecture & Design, ISO27001 compliance, SDLC and IAM.

CREST Qualified Consultants:
Practitioner Security Analysts:  Yes
Registered Penetration Testers:  Yes
Certified Web Application Testers:  No
Certified Infrastructure Testers:  Yes
Certified Wireless Testers:  No

Simulated Target Attack & Response (STAR) Penetration Testing

Contact: Mathew Ettelaie
+44 (0)20 7694 4356
[email protected]
KPMG have over 10 years’ experience delivering scenario-based penetration tests and simulated attack exercises for the most demanding of global clients across all sectors. Our assessments focus on demonstrating the impact of realistic threat scenarios; shaped by our collaboration with threat intelligence providers, incident responders and SOC teams. Our goal is to provide you with a truly realistic assessment of your security posture. Post-assessment, we have a global specialist team that can be leveraged to help analyse results, assist in defining a tailored roadmap to improvement, implement new security architectures and deliver first class training workshops.

CREST Qualified Consultants:
Certified Simulated Attack Managers:  Yes
Certified Simulated Attack Specialists:  Yes

Cyber Security Incident Response

Contact: Konrads  Smelkovs
[email protected]

KPMG provide a full range of cyber security incident response services with a sound, forensic wrapper.  We handle insider threats, cloud incidents, hacking, ransomware, denial of service and bespoke scenarios.  KPMG can help with detection, response and advise on recovery and remediation to restore your environment to a secure state.

CREST Qualified Consultants:
Registered Intrusion Analysts:  No
Certified Network Intrusion Analysts:  Yes
Certified Host Intrusion Analysts:  No
Certified Malware Reverse Engineers:  No
Certified Incident Managers:  No

Security Architecture

CREST Qualified Consultants:
Registered Technical Security Architects:  Yes

Cyber Essentials

To find out more about our Cyber Essentials service, please click here.