Together, we re working to welcome millions more passengers, while ensuring aviation can continue to be a force for good by leading global efforts in sustainability. At Heathrow, you can be part of this providing solutions that make every journey better for millions each year. That means ensuring we meet the changing needs of the passengers, colleagues and partners who use our airport to work, travel, trade, shop, eat, explore and connect. Our Solutions team covers project management, process improvement, business change, technology, cyber defence, masterplanning, infrastructure and procurement. It brings together people with the skills to deliver prestigious and often large-scale projects, from transforming terminals to making big reductions in our carbon emissions. Every day will test your skills and give you the opportunity to make your mark. You might be working with the technology and data that power our city within a city, driving vital commercial agreements with everyone from retailers to airlines, or improving the unique infrastructure that includes everything from 200 buildings to 250 HV substations. It s a collaborative environment, where you can rely on the support of the experts around you as you take on projects you ll both take pride in and feel passionate about. Job Description The Cyber Security Analyst specialising in Cloud Security will be responsible for safeguarding our cloud infrastructure, applications and services. They will work as part of the Cyber Security Solutions Team ensuring security is integrated into the design, deployment, and operations of cloud-based systems. This role will involve identifying and mitigating cloud-related security risks, ensuring compliance with industry standards, and driving continuous improvement in cloud security practices. They will help to ensure that the organisation's cloud environments are designed, managed, and configured according to the highest Cyber Security principles and that Cloud environments are configured to comply with industry good practice, standards and regulatory requirements. The individual will work closely with cloud specialists across the organisation to provide technical expertise, validate cloud security configurations, and support the overall Cyber Security posture. Your role will involve Cloud Security Strategy and Design: Help develop and implement cloud security frameworks, ensuring that security best practices are integrated into all aspects of cloud infrastructure and services. Cloud Security Operations: Ensure appropriate monitoring, detection, and response to security threats and vulnerabilities within cloud environments is embedded from the outset. Conduct risk assessments and security audits to identify areas of improvement and ensure compliance with regulatory requirements. Incident Response & Forensics: Support incident response efforts in cloud environments, including identifying and investigating security incidents and breaches. Provide technical input and support to root cause analysis and recommend corrective actions. Automation & Optimisation: Automate security controls, monitoring, and response processes to improve operational efficiency and reduce risk in cloud environments. Collaboration & Communication: Work closely with development teams, DevOps, and other stakeholders to implement security controls in cloud infrastructure. Provide clear and concise communication to both technical and non-technical stakeholders regarding security risks, incidents, and resolutions. Compliance & Governance: Ensure adherence to regulatory requirements and industry standards within cloud environments. Assist with audits and ensure security governance is in place. Continuous Improvement: Stay up-to-date with emerging cloud security trends and vulnerabilities. Continuously evaluate and enhance security practices to keep up with evolving cloud technologies and threats. These skills are essential Strong experience of hands-on technical experience in Cloud security engineering, with a proven track record of securing cloud environments. Solid experience with cloud architecture, security protocols, and secure cloud configurations. Proven track record of providing Cyber Security guidance on cloud application design, implementation, and ongoing management. Experience in ensuring compliance with industry standards and regulations related to cloud security (e.g., NIST, ISO 27001, PCI-DSS, GDPR). Experience working with cross-functional teams and collaborating with development engineers, Cyber Security specialists, and other internal stakeholders to ensure cloud security. Deep knowledge of cloud platforms and services (Azure, Google Cloud). Experience of security Cloud platforms including Salesforce. Expertise in cloud security tools and technologies (e.g., Shield, Azure Security, SCCP, Wiz, Guard). Strong understanding of web application and cloud firewalls, encryption, identity and API security. Experience with automation tools (e.g., Terraform, Ansible, CloudFormation) for securing cloud infrastructure. Ideally, you ll have: Experience with network security in cloud environments (e.g., AWS, Azure) and hybrid network configurations. Experience with DevSecOps practices, secure coding, and cloud-native application security. Familiarity with containerisation technologies (e.g., Docker, Kubernetes) and their security implications. About us There s something so special about working at the world s most iconic airport. Its sights. Its sounds. Its constant air of excitement. Heathrow is an amazing backdrop to a career filled with unique opportunities. Every day, you ll discover a world full of fresh possibilities and end the day buzzing with stories to tell, as you encounter people from all cultures, nationalities and experiences. A world full of pride for what we do and no end of exciting career prospects to explore. It brings out the best in all of us. And inspires everyone to deliver on our ambitious plans. Together, we re working to welcome millions more passengers while ensuring aviation can continue to be a force for good by leading global efforts in sustainability. Join us on that journey and we'll help you achieve your ambitions too. Supporting you to learn, encouraging you to be yourself, backing you to achieve more than you might ever have imagined. Because there s no place like Heathrow. Our rewards We offer competitive salaries and excellent benefits that will support you now and in the future. As well as performance-based annual bonuses and our longer-term Share in Success Bonus plans, we also offer generous annual leave allowances and market-leading pensions. With family friendly policies, access to private health insurance and a wide range of wellbeing tools, we ll support you to be at your best inside and outside work. And of course, we ll provide varied learning and development opportunities too. Here you ll find everything you need for a fulfilling career journey that can take you in exciting directions. Working Location Our Hybrid working approach offers the opportunity for colleagues in some roles to work from home for an average of two days a week, providing the flexibility to work in an agile way whilst ensuring we deliver for the operational needs of Heathrow. Working arrangements vary from team to team and will be confirmed during the recruitment process. You ll need to be based in the UK and within a commutable distance to Heathrow. Sustainable Travel to work Heathrow s Sustainable Travel Guide sets out easy and sustainable travel options that everyone can access. Equal Opportunities As an equal opportunities employer, we encourage applications from all. We believe that diverse talent makes us stronger not least because we welcome passengers from all corners of the globe, every single day. Heathrow is an accessible place to work. With five diversity networks, we champion inclusivity and celebrate individuality.
Dec 18, 2025
Full time
Together, we re working to welcome millions more passengers, while ensuring aviation can continue to be a force for good by leading global efforts in sustainability. At Heathrow, you can be part of this providing solutions that make every journey better for millions each year. That means ensuring we meet the changing needs of the passengers, colleagues and partners who use our airport to work, travel, trade, shop, eat, explore and connect. Our Solutions team covers project management, process improvement, business change, technology, cyber defence, masterplanning, infrastructure and procurement. It brings together people with the skills to deliver prestigious and often large-scale projects, from transforming terminals to making big reductions in our carbon emissions. Every day will test your skills and give you the opportunity to make your mark. You might be working with the technology and data that power our city within a city, driving vital commercial agreements with everyone from retailers to airlines, or improving the unique infrastructure that includes everything from 200 buildings to 250 HV substations. It s a collaborative environment, where you can rely on the support of the experts around you as you take on projects you ll both take pride in and feel passionate about. Job Description The Cyber Security Analyst specialising in Cloud Security will be responsible for safeguarding our cloud infrastructure, applications and services. They will work as part of the Cyber Security Solutions Team ensuring security is integrated into the design, deployment, and operations of cloud-based systems. This role will involve identifying and mitigating cloud-related security risks, ensuring compliance with industry standards, and driving continuous improvement in cloud security practices. They will help to ensure that the organisation's cloud environments are designed, managed, and configured according to the highest Cyber Security principles and that Cloud environments are configured to comply with industry good practice, standards and regulatory requirements. The individual will work closely with cloud specialists across the organisation to provide technical expertise, validate cloud security configurations, and support the overall Cyber Security posture. Your role will involve Cloud Security Strategy and Design: Help develop and implement cloud security frameworks, ensuring that security best practices are integrated into all aspects of cloud infrastructure and services. Cloud Security Operations: Ensure appropriate monitoring, detection, and response to security threats and vulnerabilities within cloud environments is embedded from the outset. Conduct risk assessments and security audits to identify areas of improvement and ensure compliance with regulatory requirements. Incident Response & Forensics: Support incident response efforts in cloud environments, including identifying and investigating security incidents and breaches. Provide technical input and support to root cause analysis and recommend corrective actions. Automation & Optimisation: Automate security controls, monitoring, and response processes to improve operational efficiency and reduce risk in cloud environments. Collaboration & Communication: Work closely with development teams, DevOps, and other stakeholders to implement security controls in cloud infrastructure. Provide clear and concise communication to both technical and non-technical stakeholders regarding security risks, incidents, and resolutions. Compliance & Governance: Ensure adherence to regulatory requirements and industry standards within cloud environments. Assist with audits and ensure security governance is in place. Continuous Improvement: Stay up-to-date with emerging cloud security trends and vulnerabilities. Continuously evaluate and enhance security practices to keep up with evolving cloud technologies and threats. These skills are essential Strong experience of hands-on technical experience in Cloud security engineering, with a proven track record of securing cloud environments. Solid experience with cloud architecture, security protocols, and secure cloud configurations. Proven track record of providing Cyber Security guidance on cloud application design, implementation, and ongoing management. Experience in ensuring compliance with industry standards and regulations related to cloud security (e.g., NIST, ISO 27001, PCI-DSS, GDPR). Experience working with cross-functional teams and collaborating with development engineers, Cyber Security specialists, and other internal stakeholders to ensure cloud security. Deep knowledge of cloud platforms and services (Azure, Google Cloud). Experience of security Cloud platforms including Salesforce. Expertise in cloud security tools and technologies (e.g., Shield, Azure Security, SCCP, Wiz, Guard). Strong understanding of web application and cloud firewalls, encryption, identity and API security. Experience with automation tools (e.g., Terraform, Ansible, CloudFormation) for securing cloud infrastructure. Ideally, you ll have: Experience with network security in cloud environments (e.g., AWS, Azure) and hybrid network configurations. Experience with DevSecOps practices, secure coding, and cloud-native application security. Familiarity with containerisation technologies (e.g., Docker, Kubernetes) and their security implications. About us There s something so special about working at the world s most iconic airport. Its sights. Its sounds. Its constant air of excitement. Heathrow is an amazing backdrop to a career filled with unique opportunities. Every day, you ll discover a world full of fresh possibilities and end the day buzzing with stories to tell, as you encounter people from all cultures, nationalities and experiences. A world full of pride for what we do and no end of exciting career prospects to explore. It brings out the best in all of us. And inspires everyone to deliver on our ambitious plans. Together, we re working to welcome millions more passengers while ensuring aviation can continue to be a force for good by leading global efforts in sustainability. Join us on that journey and we'll help you achieve your ambitions too. Supporting you to learn, encouraging you to be yourself, backing you to achieve more than you might ever have imagined. Because there s no place like Heathrow. Our rewards We offer competitive salaries and excellent benefits that will support you now and in the future. As well as performance-based annual bonuses and our longer-term Share in Success Bonus plans, we also offer generous annual leave allowances and market-leading pensions. With family friendly policies, access to private health insurance and a wide range of wellbeing tools, we ll support you to be at your best inside and outside work. And of course, we ll provide varied learning and development opportunities too. Here you ll find everything you need for a fulfilling career journey that can take you in exciting directions. Working Location Our Hybrid working approach offers the opportunity for colleagues in some roles to work from home for an average of two days a week, providing the flexibility to work in an agile way whilst ensuring we deliver for the operational needs of Heathrow. Working arrangements vary from team to team and will be confirmed during the recruitment process. You ll need to be based in the UK and within a commutable distance to Heathrow. Sustainable Travel to work Heathrow s Sustainable Travel Guide sets out easy and sustainable travel options that everyone can access. Equal Opportunities As an equal opportunities employer, we encourage applications from all. We believe that diverse talent makes us stronger not least because we welcome passengers from all corners of the globe, every single day. Heathrow is an accessible place to work. With five diversity networks, we champion inclusivity and celebrate individuality.
Title - Senior Information Security Engineer Location - Leicestershire Note for Recruitment Agencies: We prefer to hire directly and we will be in touch with our PSL Agencies if this role is eligible for release. We do not accept speculative CVs from agencies. If speculative CVs are sent, no fee will be applicable - please direct all queries to the relevant Resourcing Partner. We are seeking a highly skilled and experienced Senior Information Security Engineer to join our cyber security team. The role will provide hands on leadership and technical expertise in the management of information security operations, ensuring the organisation's security posture is maintained and aligned with strategic objectives. This role bridges the gap between junior security staff and the Head of Information Security, driving the operational execution of the security programme while mentoring others and managing third party providers. This role is pivotal in safeguarding our organisation's digital assets, infrastructure, and sensitive data against evolving cyber threats. You will assist technical security initiatives, support compliance efforts, and collaborate across departments to embed security into our operations and development lifecycle. The role reports to the Head of Information Security and Compliance. What you will be doing: Oversee daily security operations with SOC/SIEM provider, monitoring networks, systems, and applications for threats. Detect, analyze, and respond to potential compromises swiftly. Conduct risk assessments, vulnerability scans, and advise on mitigation for emerging threats. Lead or support incident investigations, coordinate containment and remediation, and produce post incident reports. Develop and implement security policies, standards, and ensure compliance with organisational and regulatory requirements. Deliver security awareness campaigns, training programmes, and phishing simulations. Administer and optimise security tools (Microsoft Azure, Entra ID, M365, Defender, AV/EDR), manage configurations, and monitor identity / access management. Support compliance with Cyber Essentials, ISO 27001, UK GDPR, and NIST; assist audits and respond to security questionnaires. Stay updated on threats, recommend security enhancements, and maintain professional development. Handle BAU tasks such as quarantined emails, escalated tickets, mentoring, and project support. Additional Responsibilities: Strong understanding of Microsoft 365, Azure, and cloud security controls (AWS/GCP exposure advantageous). Experience planning/coordinating penetration tests and managing remediation. Knowledge of UK data protection regulations (UK GDPR, DPA 2018). Familiarity with secure coding practices and DevSecOps principles. Excellent documentation, communication, and stakeholder engagement skills. Experience with Oracle Fusion/cloud platforms is an advantage. Strong grasp of enterprise IT architectures and security integration. Adaptable, proactive, and able to manage changing priorities in a fast paced environment. Collaborative team player with high ethical standards and a continuous learning mindset. About You: Industry certifications such as CISSP, CISM, CEH, GIAC. Minimum 5 years' experience in information security or related technical roles. Proven track record managing or collaborating with outsourced SOC and SIEM providers. Hands on experience with incident response, vulnerability management, and risk assessment. Skilled in maintaining and supporting an ISMS aligned to ISO 27001 and Cyber Essentials. Experience in construction or regulated industries (finance, healthcare, government) beneficial. ISO/IEC 27001 auditing experience (highly desirable). CompTIA Security+ or CySA+ certifications. Ability to obtain BPSS and SC Clearance as a condition of employment. What We Can Offer in Return: With an impressive order book of over £4.1 billion we are one of the industry's leading principal contractors, affording you the opportunity to work on some of the UK's most exciting projects offering you stability as well as the chance to stretch your capabilities and realise long held career goals. You will be joining diverse teams working at a high professional level with exceptional levels of commitment. With an ambitious strategy, we're poised for further growth and success, so if you're committed, talented and enthusiastic, Galliford Try is the right place for you. We are committed to maintaining the physical and mental wellbeing of all our people, through our 'Be Well' programme which offers discounts on certain products, advice and support for a range of issues. We invest in high quality training for employees of all levels, from our leadership development framework to our apprenticeship programmes. Through our Career Paths initiative, individuals receive tailored training and support to fulfil their potential. Our industry is all about creating talented teams that excel in their areas of expertise. As an employer, we know you are most motivated to give your best when you feel valued and engaged. Our Agile Working programme empowers you with flexibility in when, where and how you work. Where appropriate, site and office based employees can take advantage of a wide variety of working practices, offering different amounts of structure, regularity and flexibility to suit your needs as well as those of your wider team. Our benefits: We put our people first and our benefits package reflects that by offering a comprehensive range of attractive options to help support your career on top of a competitive salary. Generous holiday entitlement, increasing with years of service, plus the opportunity to purchase further holidays A wide range of corporate discounts Cycle to Work schemes Comprehensive pension plan Competitive family leave policy Regular Save as You Earn share purchase scheme Private medical scheme options are available for all salaried employees, and our employee assistance programme also provides free 24/7 support to those who need it Paid for yearly membership to one recognised professional association relevant to your role About us: Our purpose is to improve people's lives through building the facilities and infrastructure that communities need, providing opportunities for our people to learn, grow and progress, working with our supply chain to promote the very best working practice and caring for the environment in which we work. We do this by holding true to our values, delivering excellence for our clients and the community, being passionate about our role in providing vital services, putting integrity at the heart of our business by doing the right thing, and collaborating with our clients, supply chain and stakeholders to deliver lasting change and long term value. Galliford Try is a leading UK Construction group. The business is split into four distinct divisions, Infrastructure, Building, Environment and Specialist Services, covering a range of specialist work in water, highways, telecoms, security, commercial, custodial, education, health, interiors, and leisure, across both public and private sectors. Listed on the London Stock Exchange and a member of the FTSE 250. Our vision is to be leaders in the construction of a sustainable future. For more information on this role or to enquire about other positions available within our business please contact Skyemarie Bree - Additional Information: Galliford Try welcomes applications from candidates who would like to work full time, reduced hours or flexibly and this will be discussed in more detail as part of the recruitment process. We encourage, and would be grateful if, you could confirm any requirements we can reasonably fulfil to make this application a positive experience for you. Don't meet every requirement of the role? Studies have shown that some people are less likely to apply for jobs unless they meet every single qualification. At Galliford Try, we are committed to building a diverse, inclusive and authentic workplace, so if you're excited about this role but your past experience doesn't align perfectly with every requirement of the role, we encourage you to apply anyway. You may be just the right candidate for this or other roles. As a Disability Confident employer, we have committed to offer an interview to any candidate with a long term health condition or disability that meet the essential criteria for the advertised position. Please contact the Resourcing Partner listed within the job advert if you believe this applies to you. We will also take the opportunity to discuss any adjustments required for your interview. A full job description for this role is available upon request.
Dec 18, 2025
Full time
Title - Senior Information Security Engineer Location - Leicestershire Note for Recruitment Agencies: We prefer to hire directly and we will be in touch with our PSL Agencies if this role is eligible for release. We do not accept speculative CVs from agencies. If speculative CVs are sent, no fee will be applicable - please direct all queries to the relevant Resourcing Partner. We are seeking a highly skilled and experienced Senior Information Security Engineer to join our cyber security team. The role will provide hands on leadership and technical expertise in the management of information security operations, ensuring the organisation's security posture is maintained and aligned with strategic objectives. This role bridges the gap between junior security staff and the Head of Information Security, driving the operational execution of the security programme while mentoring others and managing third party providers. This role is pivotal in safeguarding our organisation's digital assets, infrastructure, and sensitive data against evolving cyber threats. You will assist technical security initiatives, support compliance efforts, and collaborate across departments to embed security into our operations and development lifecycle. The role reports to the Head of Information Security and Compliance. What you will be doing: Oversee daily security operations with SOC/SIEM provider, monitoring networks, systems, and applications for threats. Detect, analyze, and respond to potential compromises swiftly. Conduct risk assessments, vulnerability scans, and advise on mitigation for emerging threats. Lead or support incident investigations, coordinate containment and remediation, and produce post incident reports. Develop and implement security policies, standards, and ensure compliance with organisational and regulatory requirements. Deliver security awareness campaigns, training programmes, and phishing simulations. Administer and optimise security tools (Microsoft Azure, Entra ID, M365, Defender, AV/EDR), manage configurations, and monitor identity / access management. Support compliance with Cyber Essentials, ISO 27001, UK GDPR, and NIST; assist audits and respond to security questionnaires. Stay updated on threats, recommend security enhancements, and maintain professional development. Handle BAU tasks such as quarantined emails, escalated tickets, mentoring, and project support. Additional Responsibilities: Strong understanding of Microsoft 365, Azure, and cloud security controls (AWS/GCP exposure advantageous). Experience planning/coordinating penetration tests and managing remediation. Knowledge of UK data protection regulations (UK GDPR, DPA 2018). Familiarity with secure coding practices and DevSecOps principles. Excellent documentation, communication, and stakeholder engagement skills. Experience with Oracle Fusion/cloud platforms is an advantage. Strong grasp of enterprise IT architectures and security integration. Adaptable, proactive, and able to manage changing priorities in a fast paced environment. Collaborative team player with high ethical standards and a continuous learning mindset. About You: Industry certifications such as CISSP, CISM, CEH, GIAC. Minimum 5 years' experience in information security or related technical roles. Proven track record managing or collaborating with outsourced SOC and SIEM providers. Hands on experience with incident response, vulnerability management, and risk assessment. Skilled in maintaining and supporting an ISMS aligned to ISO 27001 and Cyber Essentials. Experience in construction or regulated industries (finance, healthcare, government) beneficial. ISO/IEC 27001 auditing experience (highly desirable). CompTIA Security+ or CySA+ certifications. Ability to obtain BPSS and SC Clearance as a condition of employment. What We Can Offer in Return: With an impressive order book of over £4.1 billion we are one of the industry's leading principal contractors, affording you the opportunity to work on some of the UK's most exciting projects offering you stability as well as the chance to stretch your capabilities and realise long held career goals. You will be joining diverse teams working at a high professional level with exceptional levels of commitment. With an ambitious strategy, we're poised for further growth and success, so if you're committed, talented and enthusiastic, Galliford Try is the right place for you. We are committed to maintaining the physical and mental wellbeing of all our people, through our 'Be Well' programme which offers discounts on certain products, advice and support for a range of issues. We invest in high quality training for employees of all levels, from our leadership development framework to our apprenticeship programmes. Through our Career Paths initiative, individuals receive tailored training and support to fulfil their potential. Our industry is all about creating talented teams that excel in their areas of expertise. As an employer, we know you are most motivated to give your best when you feel valued and engaged. Our Agile Working programme empowers you with flexibility in when, where and how you work. Where appropriate, site and office based employees can take advantage of a wide variety of working practices, offering different amounts of structure, regularity and flexibility to suit your needs as well as those of your wider team. Our benefits: We put our people first and our benefits package reflects that by offering a comprehensive range of attractive options to help support your career on top of a competitive salary. Generous holiday entitlement, increasing with years of service, plus the opportunity to purchase further holidays A wide range of corporate discounts Cycle to Work schemes Comprehensive pension plan Competitive family leave policy Regular Save as You Earn share purchase scheme Private medical scheme options are available for all salaried employees, and our employee assistance programme also provides free 24/7 support to those who need it Paid for yearly membership to one recognised professional association relevant to your role About us: Our purpose is to improve people's lives through building the facilities and infrastructure that communities need, providing opportunities for our people to learn, grow and progress, working with our supply chain to promote the very best working practice and caring for the environment in which we work. We do this by holding true to our values, delivering excellence for our clients and the community, being passionate about our role in providing vital services, putting integrity at the heart of our business by doing the right thing, and collaborating with our clients, supply chain and stakeholders to deliver lasting change and long term value. Galliford Try is a leading UK Construction group. The business is split into four distinct divisions, Infrastructure, Building, Environment and Specialist Services, covering a range of specialist work in water, highways, telecoms, security, commercial, custodial, education, health, interiors, and leisure, across both public and private sectors. Listed on the London Stock Exchange and a member of the FTSE 250. Our vision is to be leaders in the construction of a sustainable future. For more information on this role or to enquire about other positions available within our business please contact Skyemarie Bree - Additional Information: Galliford Try welcomes applications from candidates who would like to work full time, reduced hours or flexibly and this will be discussed in more detail as part of the recruitment process. We encourage, and would be grateful if, you could confirm any requirements we can reasonably fulfil to make this application a positive experience for you. Don't meet every requirement of the role? Studies have shown that some people are less likely to apply for jobs unless they meet every single qualification. At Galliford Try, we are committed to building a diverse, inclusive and authentic workplace, so if you're excited about this role but your past experience doesn't align perfectly with every requirement of the role, we encourage you to apply anyway. You may be just the right candidate for this or other roles. As a Disability Confident employer, we have committed to offer an interview to any candidate with a long term health condition or disability that meet the essential criteria for the advertised position. Please contact the Resourcing Partner listed within the job advert if you believe this applies to you. We will also take the opportunity to discuss any adjustments required for your interview. A full job description for this role is available upon request.
Locations : Boston Atlanta London Who We Are Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact. To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures-and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do The Global Platform Team Lead and Senior Director - IT Security is responsible for leading the design, delivery, and continuous evolution of BCG's security platforms across identity, device, and data protection domains. This role ensures end-to-end security engineering across all technology environments, including cloud, on-prem, and hybrid systems. The leader will drive strategic planning, execution, and operations of scalable, automated, and resilient security controls that protect BCG's global operations and users, while enabling innovation and agility across BCG Core, BCG X, and CT worldwide. This role is also accountable for embedding security within DevSecOps practices, enforcing automation at scale, and applying Site Reliability Engineering (SRE) principles across all security services. The role requires strong partnership with ISRM, with a focus on balancing and prioritizing security requirements, automation opportunities, user experience needs, and broader business outcomes. Key Responsibilities: Strategic Leadership & Transformation: Define and execute a unified security engineering strategy that addresses identity, endpoint, and data protection across all environments. Lead the design and implementation of scalable, automated security solutions that integrate seamlessly into enterprise platforms and user experiences. Establish a global security architecture and engineering roadmap focused on prevention, detection, and rapid response. Drive continuous improvement of security posture while aligning with business needs, regulatory requirements, and user experience expectations. Champion DevSecOps practices to embed security early into development and delivery workflows. Security Platform Engineering: Lead end-to-end engineering for identity and access management (IAM), including authentication, authorization, and privileged access controls. Oversee endpoint security architecture and enforcement, ensuring comprehensive coverage for threat detection, malware prevention, and device compliance. Build and operate scalable data protection solutions, including data loss prevention (DLP), secrets management, encryption, and classification. Integrate security controls into CI/CD pipelines, cloud-native services, and on-prem platforms to enforce security-by-design principles. Deliver security capabilities that support modern work scenarios, remote access, zero-trust networking, and AI/ML workloads. Leverage automation frameworks and IaC to improve scalability and reduce manual intervention. Operational Security, SRE & Assurance: Ensure security platforms are resilient, continuously monitored, and designed for 24x7 support and incident response readiness. Embed security telemetry and observability to enable proactive threat detection and automated response. Apply SRE principles to improve reliability, performance, and maintainability of security services. Lead platform health, patching automation, and vulnerability remediation workflows. Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. Operationalize policy enforcement through automated controls and continuous compliance checks. Lead risk mitigation efforts with technical solutions that scale across diverse user and system profiles. Financial & Vendor Management: Manage security platform budgets and investments with a focus on cost optimization and long-term value. Evaluate and manage third-party vendors and partners, ensuring they meet technical, contractual, and security expectations. Lead procurement and renewal cycles in alignment with operational and architectural strategies. Leadership & Talent Development: Build and mentor a global team of security engineers, fostering a high-performance, collaborative, and forward-thinking culture. Drive internal knowledge sharing and upskilling programs across security architecture, automation, and secure software engineering. Collaborate cross-functionally with platform, product, and enterprise architecture teams to embed security early and often. What You'll Bring Required Qualifications: 10+ years of experience in cybersecurity, security engineering, or platform security roles. 5+ years in a senior leadership position with accountability for enterprise-scale security platforms. Deep expertise in IAM, endpoint security, and data protection technologies, with proven ability to design and scale global solutions. Experience with security engineering in hybrid and cloud-native environments (AWS, Azure, GCP). Proven track record in automating security controls, implementing zero-trust models, and supporting 24x7 security operations. Strong understanding of compliance frameworks and risk management strategies. Preferred Qualifications: Certifications such as CISSP, CCSP, CISM, AWS/Azure Security Specialty, or equivalent. Experience with tools like Okta, Azure AD, CrowdStrike, Tanium, Zscaler, Vault, and other modern security platforms. Familiarity with DevSecOps principles, Infrastructure as Code, and secure software development practices. Who You'll Work With Work Environment & Additional Information: Hybrid or on-site work model. Occasional travel may be required for business, vendor, or team engagement. Ability to operate in a fast-paced, complex environment, balancing long-term strategy with operational agility. Additional info For US locations only In the US, we have a compensation transparency approach. Total compensation for this role includes base salary, annual discretionary performance bonus, retirement contribution, and a market leading benefits package described below. The base salary range for this role in Boston is $183,000.00 - $237,000.00. This is an estimated range, however, specific base salaries within the range depend on various factors such as experience and skill set. It is not common for new BCG employees to be hired at the high-end of the salary range. BCG regularly reviews its ranges to ensure market competitiveness. In addition to your base salary, your total compensation will include a bonus of up to 45% and a generous retirement contribution that starts at 10%. Senior Directors/Executive Directors are also eligible for a Firm Performance Bonus. All of our plans provide best in class coverage: Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children Low $10 (USD) copays for trips to the doctor, urgent care visits and prescriptions for generic drugs Dental coverage, including up to $5,000 in orthodontia benefits Vision insurance with coverage for both glasses and contact lenses annually Reimbursement for gym memberships and other fitness activities Fully vested Profit Sharing Retirement Fund contributions made annually, whether you contribute or not, plus the option for employees to make personal contributions to a 401(k) plan Paid Parental Leave and other family benefits such as elective egg freezing, surrogacy, and adoption reimbursement Generous paid time off including 12 holidays per year, an annual office closure between Christmas and New Years, and 20 vacation days per year (earned at 1.66 days per month) Paid sick time on an as needed basis Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws. BCG is an E - Verify Employer. Click here for more information on E-Verify.
Dec 18, 2025
Full time
Locations : Boston Atlanta London Who We Are Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact. To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures-and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do The Global Platform Team Lead and Senior Director - IT Security is responsible for leading the design, delivery, and continuous evolution of BCG's security platforms across identity, device, and data protection domains. This role ensures end-to-end security engineering across all technology environments, including cloud, on-prem, and hybrid systems. The leader will drive strategic planning, execution, and operations of scalable, automated, and resilient security controls that protect BCG's global operations and users, while enabling innovation and agility across BCG Core, BCG X, and CT worldwide. This role is also accountable for embedding security within DevSecOps practices, enforcing automation at scale, and applying Site Reliability Engineering (SRE) principles across all security services. The role requires strong partnership with ISRM, with a focus on balancing and prioritizing security requirements, automation opportunities, user experience needs, and broader business outcomes. Key Responsibilities: Strategic Leadership & Transformation: Define and execute a unified security engineering strategy that addresses identity, endpoint, and data protection across all environments. Lead the design and implementation of scalable, automated security solutions that integrate seamlessly into enterprise platforms and user experiences. Establish a global security architecture and engineering roadmap focused on prevention, detection, and rapid response. Drive continuous improvement of security posture while aligning with business needs, regulatory requirements, and user experience expectations. Champion DevSecOps practices to embed security early into development and delivery workflows. Security Platform Engineering: Lead end-to-end engineering for identity and access management (IAM), including authentication, authorization, and privileged access controls. Oversee endpoint security architecture and enforcement, ensuring comprehensive coverage for threat detection, malware prevention, and device compliance. Build and operate scalable data protection solutions, including data loss prevention (DLP), secrets management, encryption, and classification. Integrate security controls into CI/CD pipelines, cloud-native services, and on-prem platforms to enforce security-by-design principles. Deliver security capabilities that support modern work scenarios, remote access, zero-trust networking, and AI/ML workloads. Leverage automation frameworks and IaC to improve scalability and reduce manual intervention. Operational Security, SRE & Assurance: Ensure security platforms are resilient, continuously monitored, and designed for 24x7 support and incident response readiness. Embed security telemetry and observability to enable proactive threat detection and automated response. Apply SRE principles to improve reliability, performance, and maintainability of security services. Lead platform health, patching automation, and vulnerability remediation workflows. Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. Operationalize policy enforcement through automated controls and continuous compliance checks. Lead risk mitigation efforts with technical solutions that scale across diverse user and system profiles. Financial & Vendor Management: Manage security platform budgets and investments with a focus on cost optimization and long-term value. Evaluate and manage third-party vendors and partners, ensuring they meet technical, contractual, and security expectations. Lead procurement and renewal cycles in alignment with operational and architectural strategies. Leadership & Talent Development: Build and mentor a global team of security engineers, fostering a high-performance, collaborative, and forward-thinking culture. Drive internal knowledge sharing and upskilling programs across security architecture, automation, and secure software engineering. Collaborate cross-functionally with platform, product, and enterprise architecture teams to embed security early and often. What You'll Bring Required Qualifications: 10+ years of experience in cybersecurity, security engineering, or platform security roles. 5+ years in a senior leadership position with accountability for enterprise-scale security platforms. Deep expertise in IAM, endpoint security, and data protection technologies, with proven ability to design and scale global solutions. Experience with security engineering in hybrid and cloud-native environments (AWS, Azure, GCP). Proven track record in automating security controls, implementing zero-trust models, and supporting 24x7 security operations. Strong understanding of compliance frameworks and risk management strategies. Preferred Qualifications: Certifications such as CISSP, CCSP, CISM, AWS/Azure Security Specialty, or equivalent. Experience with tools like Okta, Azure AD, CrowdStrike, Tanium, Zscaler, Vault, and other modern security platforms. Familiarity with DevSecOps principles, Infrastructure as Code, and secure software development practices. Who You'll Work With Work Environment & Additional Information: Hybrid or on-site work model. Occasional travel may be required for business, vendor, or team engagement. Ability to operate in a fast-paced, complex environment, balancing long-term strategy with operational agility. Additional info For US locations only In the US, we have a compensation transparency approach. Total compensation for this role includes base salary, annual discretionary performance bonus, retirement contribution, and a market leading benefits package described below. The base salary range for this role in Boston is $183,000.00 - $237,000.00. This is an estimated range, however, specific base salaries within the range depend on various factors such as experience and skill set. It is not common for new BCG employees to be hired at the high-end of the salary range. BCG regularly reviews its ranges to ensure market competitiveness. In addition to your base salary, your total compensation will include a bonus of up to 45% and a generous retirement contribution that starts at 10%. Senior Directors/Executive Directors are also eligible for a Firm Performance Bonus. All of our plans provide best in class coverage: Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children Low $10 (USD) copays for trips to the doctor, urgent care visits and prescriptions for generic drugs Dental coverage, including up to $5,000 in orthodontia benefits Vision insurance with coverage for both glasses and contact lenses annually Reimbursement for gym memberships and other fitness activities Fully vested Profit Sharing Retirement Fund contributions made annually, whether you contribute or not, plus the option for employees to make personal contributions to a 401(k) plan Paid Parental Leave and other family benefits such as elective egg freezing, surrogacy, and adoption reimbursement Generous paid time off including 12 holidays per year, an annual office closure between Christmas and New Years, and 20 vacation days per year (earned at 1.66 days per month) Paid sick time on an as needed basis Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws. BCG is an E - Verify Employer. Click here for more information on E-Verify.
Locations : Boston Atlanta London Who We Are Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact. To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures-and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do The Global Platform Team Lead and Senior Director - IT Security is responsible for leading the design, delivery, and continuous evolution of BCG's security platforms across identity, device, and data protection domains. This role ensures end-to-end security engineering across all technology environments, including cloud, on-prem, and hybrid systems. The leader will drive strategic planning, execution, and operations of scalable, automated, and resilient security controls that protect BCG's global operations and users, while enabling innovation and agility across BCG Core, BCG X, and CT worldwide. This role is also accountable for embedding security within DevSecOps practices, enforcing automation at scale, and applying Site Reliability Engineering (SRE) principles across all security services. The role requires strong partnership with ISRM, with a focus on balancing and prioritizing security requirements, automation opportunities, user experience needs, and broader business outcomes. Key Responsibilities: Strategic Leadership & Transformation: Define and execute a unified security engineering strategy that addresses identity, endpoint, and data protection across all environments. Lead the design and implementation of scalable, automated security solutions that integrate seamlessly into enterprise platforms and user experiences. Establish a global security architecture and engineering roadmap focused on prevention, detection, and rapid response. Drive continuous improvement of security posture while aligning with business needs, regulatory requirements, and user experience expectations. Champion DevSecOps practices to embed security early into development and delivery workflows. Security Platform Engineering: Lead end-to-end engineering for identity and access management (IAM), including authentication, authorization, and privileged access controls. Oversee endpoint security architecture and enforcement, ensuring comprehensive coverage for threat detection, malware prevention, and device compliance. Build and operate scalable data protection solutions, including data loss prevention (DLP), secrets management, encryption, and classification. Integrate security controls into CI/CD pipelines, cloud-native services, and on-prem platforms to enforce security-by-design principles. Deliver security capabilities that support modern work scenarios, remote access, zero-trust networking, and AI/ML workloads. Leverage automation frameworks and IaC to improve scalability and reduce manual intervention. Operational Security, SRE & Assurance: Ensure security platforms are resilient, continuously monitored, and designed for 24x7 support and incident response readiness. Embed security telemetry and observability to enable proactive threat detection and automated response. Apply SRE principles to improve reliability, performance, and maintainability of security services. Lead platform health, patching automation, and vulnerability remediation workflows. Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. Operationalize policy enforcement through automated controls and continuous compliance checks. Lead risk mitigation efforts with technical solutions that scale across diverse user and system profiles. Financial & Vendor Management: Manage security platform budgets and investments with a focus on cost optimization and long-term value. Evaluate and manage third-party vendors and partners, ensuring they meet technical, contractual, and security expectations. Lead procurement and renewal cycles in alignment with operational and architectural strategies. Leadership & Talent Development: Build and mentor a global team of security engineers, fostering a high-performance, collaborative, and forward-thinking culture. Drive internal knowledge sharing and upskilling programs across security architecture, automation, and secure software engineering. Collaborate cross-functionally with platform, product, and enterprise architecture teams to embed security early and often. What You'll Bring Required Qualifications: 10+ years of experience in cybersecurity, security engineering, or platform security roles. 5+ years in a senior leadership position with accountability for enterprise-scale security platforms. Deep expertise in IAM, endpoint security, and data protection technologies, with proven ability to design and scale global solutions. Experience with security engineering in hybrid and cloud-native environments (AWS, Azure, GCP). Proven track record in automating security controls, implementing zero-trust models, and supporting 24x7 security operations. Strong understanding of compliance frameworks and risk management strategies. Preferred Qualifications: Certifications such as CISSP, CCSP, CISM, AWS/Azure Security Specialty, or equivalent. Experience with tools like Okta, Azure AD, CrowdStrike, Tanium, Zscaler, Vault, and other modern security platforms. Familiarity with DevSecOps principles, Infrastructure as Code, and secure software development practices. Who You'll Work With Work Environment & Additional Information: Hybrid or on-site work model. Occasional travel may be required for business, vendor, or team engagement. Ability to operate in a fast-paced, complex environment, balancing long-term strategy with operational agility. Additional info For US locations only In the US, we have a compensation transparency approach. Total compensation for this role includes base salary, annual discretionary performance bonus, retirement contribution, and a market leading benefits package described below. The base salary range for this role in Boston is $183,000.00 - $237,000.00. This is an estimated range, however, specific base salaries within the range depend on various factors such as experience and skill set. It is not common for new BCG employees to be hired at the high-end of the salary range. BCG regularly reviews its ranges to ensure market competitiveness. In addition to your base salary, your total compensation will include a bonus of up to 45% and a generous retirement contribution that starts at 10%. Senior Directors/Executive Directors are also eligible for a Firm Performance Bonus. All of our plans provide best in class coverage: Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children Low $10 (USD) copays for trips to the doctor, urgent care visits and prescriptions for generic drugs Dental coverage, including up to $5,000 in orthodontia benefits Vision insurance with coverage for both glasses and contact lenses annually Reimbursement for gym memberships and other fitness activities Fully vested Profit Sharing Retirement Fund contributions made annually, whether you contribute or not, plus the option for employees to make personal contributions to a 401(k) plan Paid Parental Leave and other family benefits such as elective egg freezing, surrogacy, and adoption reimbursement Generous paid time off including 12 holidays per year, an annual office closure between Christmas and New Years, and 20 vacation days per year (earned at 1.66 days per month) Paid sick time on an as needed basis Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws. BCG is an E - Verify Employer. Click here for more information on E-Verify.
Dec 18, 2025
Full time
Locations : Boston Atlanta London Who We Are Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact. To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures-and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do The Global Platform Team Lead and Senior Director - IT Security is responsible for leading the design, delivery, and continuous evolution of BCG's security platforms across identity, device, and data protection domains. This role ensures end-to-end security engineering across all technology environments, including cloud, on-prem, and hybrid systems. The leader will drive strategic planning, execution, and operations of scalable, automated, and resilient security controls that protect BCG's global operations and users, while enabling innovation and agility across BCG Core, BCG X, and CT worldwide. This role is also accountable for embedding security within DevSecOps practices, enforcing automation at scale, and applying Site Reliability Engineering (SRE) principles across all security services. The role requires strong partnership with ISRM, with a focus on balancing and prioritizing security requirements, automation opportunities, user experience needs, and broader business outcomes. Key Responsibilities: Strategic Leadership & Transformation: Define and execute a unified security engineering strategy that addresses identity, endpoint, and data protection across all environments. Lead the design and implementation of scalable, automated security solutions that integrate seamlessly into enterprise platforms and user experiences. Establish a global security architecture and engineering roadmap focused on prevention, detection, and rapid response. Drive continuous improvement of security posture while aligning with business needs, regulatory requirements, and user experience expectations. Champion DevSecOps practices to embed security early into development and delivery workflows. Security Platform Engineering: Lead end-to-end engineering for identity and access management (IAM), including authentication, authorization, and privileged access controls. Oversee endpoint security architecture and enforcement, ensuring comprehensive coverage for threat detection, malware prevention, and device compliance. Build and operate scalable data protection solutions, including data loss prevention (DLP), secrets management, encryption, and classification. Integrate security controls into CI/CD pipelines, cloud-native services, and on-prem platforms to enforce security-by-design principles. Deliver security capabilities that support modern work scenarios, remote access, zero-trust networking, and AI/ML workloads. Leverage automation frameworks and IaC to improve scalability and reduce manual intervention. Operational Security, SRE & Assurance: Ensure security platforms are resilient, continuously monitored, and designed for 24x7 support and incident response readiness. Embed security telemetry and observability to enable proactive threat detection and automated response. Apply SRE principles to improve reliability, performance, and maintainability of security services. Lead platform health, patching automation, and vulnerability remediation workflows. Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. Operationalize policy enforcement through automated controls and continuous compliance checks. Lead risk mitigation efforts with technical solutions that scale across diverse user and system profiles. Financial & Vendor Management: Manage security platform budgets and investments with a focus on cost optimization and long-term value. Evaluate and manage third-party vendors and partners, ensuring they meet technical, contractual, and security expectations. Lead procurement and renewal cycles in alignment with operational and architectural strategies. Leadership & Talent Development: Build and mentor a global team of security engineers, fostering a high-performance, collaborative, and forward-thinking culture. Drive internal knowledge sharing and upskilling programs across security architecture, automation, and secure software engineering. Collaborate cross-functionally with platform, product, and enterprise architecture teams to embed security early and often. What You'll Bring Required Qualifications: 10+ years of experience in cybersecurity, security engineering, or platform security roles. 5+ years in a senior leadership position with accountability for enterprise-scale security platforms. Deep expertise in IAM, endpoint security, and data protection technologies, with proven ability to design and scale global solutions. Experience with security engineering in hybrid and cloud-native environments (AWS, Azure, GCP). Proven track record in automating security controls, implementing zero-trust models, and supporting 24x7 security operations. Strong understanding of compliance frameworks and risk management strategies. Preferred Qualifications: Certifications such as CISSP, CCSP, CISM, AWS/Azure Security Specialty, or equivalent. Experience with tools like Okta, Azure AD, CrowdStrike, Tanium, Zscaler, Vault, and other modern security platforms. Familiarity with DevSecOps principles, Infrastructure as Code, and secure software development practices. Who You'll Work With Work Environment & Additional Information: Hybrid or on-site work model. Occasional travel may be required for business, vendor, or team engagement. Ability to operate in a fast-paced, complex environment, balancing long-term strategy with operational agility. Additional info For US locations only In the US, we have a compensation transparency approach. Total compensation for this role includes base salary, annual discretionary performance bonus, retirement contribution, and a market leading benefits package described below. The base salary range for this role in Boston is $183,000.00 - $237,000.00. This is an estimated range, however, specific base salaries within the range depend on various factors such as experience and skill set. It is not common for new BCG employees to be hired at the high-end of the salary range. BCG regularly reviews its ranges to ensure market competitiveness. In addition to your base salary, your total compensation will include a bonus of up to 45% and a generous retirement contribution that starts at 10%. Senior Directors/Executive Directors are also eligible for a Firm Performance Bonus. All of our plans provide best in class coverage: Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children Low $10 (USD) copays for trips to the doctor, urgent care visits and prescriptions for generic drugs Dental coverage, including up to $5,000 in orthodontia benefits Vision insurance with coverage for both glasses and contact lenses annually Reimbursement for gym memberships and other fitness activities Fully vested Profit Sharing Retirement Fund contributions made annually, whether you contribute or not, plus the option for employees to make personal contributions to a 401(k) plan Paid Parental Leave and other family benefits such as elective egg freezing, surrogacy, and adoption reimbursement Generous paid time off including 12 holidays per year, an annual office closure between Christmas and New Years, and 20 vacation days per year (earned at 1.66 days per month) Paid sick time on an as needed basis Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws. BCG is an E - Verify Employer. Click here for more information on E-Verify.
Locations : Boston London Who We Are Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact. To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures-and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do The Global Delivery Director - Secure Data is a critical leadership role that enables the secure foundation of BCG's digital operations globally. By driving scalable, automated, and user-focused security engineering-and by embedding security into modern engineering and operational practices-this role ensures BCG can innovate securely while maintaining trust, compliance, and operational excellence. The Global Delivery Director - Secure Data is responsible for leading the design, delivery, and continuous evolution of BCG's data security strategy and controls. This role ensures that BCG's most sensitive data is protected globally through secure-by-design engineering, automation at scale, and resilient security platforms. The Director will drive strategic planning, execution, and operations of scalable, automated, and resilient security solutions that safeguard BCG's global operations and users, while enabling innovation and agility across BCG Core, BCG X, and CT worldwide. This role is accountable for embedding security within DevSecOps practices, applying Site Reliability Engineering (SRE) principles across all security services, and aligning with privacy, compliance, and business leaders to maintain trust and regulatory compliance. Key Responsibilities: Strategic Leadership & Transformation: Define and execute a unified security engineering strategy that addresses data protection across all environments and data lifecycle stages. Lead the design and implementation of scalable, automated solutions that integrate seamlessly into enterprise platforms and user experiences. Establish a global security architecture and engineering roadmap focused on prevention, detection, and rapid response. Drive continuous improvement of security posture while aligning with business needs, regulatory requirements, and user experience expectations. Champion DevSecOps practices to embed security early into development and delivery workflows. Data Security Engineering: Build and operate scalable data protection solutions, including data loss prevention (DLP), secrets management, encryption, and classification. Collaborate with the IAM team to align authentication, authorization, and privileged access policies with data security controls. Deliver security capabilities that support modern work scenarios, remote access, zero-trust networking, and protection of sensitive data in AI/ML workloads. Leverage automation frameworks and IaC to improve scalability and reduce manual intervention. Operational Security, SRE & Assurance: Ensure security platforms are resilient, continuously monitored, and designed for 24x7 support and incident response readiness. Embed security telemetry and observability to enable proactive threat detection and automated response. Apply SRE principles to improve reliability, performance, and maintainability of security services. Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. Implement automated compliance controls and continuous assurance checks. Lead risk mitigation efforts with technical solutions that scale across diverse user and system profiles. Financial & Vendor Management: Manage security platform budgets and investments with a focus on cost optimization and long-term value. Evaluate and manage third-party vendors and partners, ensuring they meet technical, contractual, and security expectations. Lead procurement and renewal cycles in alignment with operational and architectural strategies. Leadership & Talent Development: Build and mentor a global team of security engineers, fostering a high-performance, collaborative, and forward-thinking culture. Drive internal knowledge sharing and upskilling programs across the team. Collaborate cross-functionally with platform, product, and enterprise architecture teams to embed security early and often. What You'll Bring Required Qualifications: 10+ years of experience in cybersecurity, security engineering, or platform security roles. 5+ years in a senior leadership position with accountability for enterprise-scale security platforms. Deep expertise in data protection technologies, with proven ability to design and scale global solutions. Experience with security engineering in hybrid and cloud-native environments (AWS, Azure, GCP). Proven track record in automating security controls, implementing zero-trust models, and supporting 24x7 security operations. Strong understanding of compliance frameworks and risk management strategies. Demonstrated ability to present complex security topics to executive leadership. Preferred Qualifications: Certifications such as CISSP, CCSP, CISM, AWS/Azure Security Specialty, or equivalent. Experience with tools like Symantec DLP, Zscaler CASB, MS Purview, Palo Alto Prisma, Hashi Vault and other modern security platforms. Familiarity with DevSecOps principles, Infrastructure as Code, and secure software development practices. Who You'll Work With Work Environment & Additional Information: Hybrid or on-site work model. Occasional travel may be required for business, vendor, or team engagement. Ability to operate in a fast-paced, complex environment, balancing long-term strategy with operational agility. Additional info For US locations only In the US, we have a compensation transparency approach. Total compensation for this role includes base salary, annual discretionary performance bonus, retirement contribution, and a market leading benefits package described below. The base salary range for this role in Boston is $181,000.00 - $221,000.00 This is an estimated range, however, specific base salaries within the range depend on various factors such as experience and skill set. It is not common for new BCG employees to be hired at the high-end of the salary range. BCG regularly reviews its ranges to ensure market competitiveness. In addition to your base salary, your total compensation will include a bonus of up to 30% and a generous retirement contribution that starts at 5% and moves to 10% after 2 years. All of our plans provide best in class coverage: Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children Low $10 (USD) copays for trips to the doctor, urgent care visits and prescriptions for generic drugs Dental coverage, including up to $5,000 in orthodontia benefits Vision insurance with coverage for both glasses and contact lenses annually Reimbursement for gym memberships and other fitness activities Fully vested Profit Sharing Retirement Fund contributions made annually, whether you contribute or not, plus the option for employees to make personal contributions to a 401(k) plan Paid Parental Leave and other family benefits such as elective egg freezing, surrogacy, and adoption reimbursement Generous paid time off including 12 holidays per year, an annual office closure between Christmas and New Years, and 15 vacation days per year (earned at 1.25 days per month) Paid sick time on an as needed basis Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws. BCG is an E - Verify Employer. Click here for more information on E-Verify.
Dec 09, 2025
Full time
Locations : Boston London Who We Are Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact. To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures-and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do The Global Delivery Director - Secure Data is a critical leadership role that enables the secure foundation of BCG's digital operations globally. By driving scalable, automated, and user-focused security engineering-and by embedding security into modern engineering and operational practices-this role ensures BCG can innovate securely while maintaining trust, compliance, and operational excellence. The Global Delivery Director - Secure Data is responsible for leading the design, delivery, and continuous evolution of BCG's data security strategy and controls. This role ensures that BCG's most sensitive data is protected globally through secure-by-design engineering, automation at scale, and resilient security platforms. The Director will drive strategic planning, execution, and operations of scalable, automated, and resilient security solutions that safeguard BCG's global operations and users, while enabling innovation and agility across BCG Core, BCG X, and CT worldwide. This role is accountable for embedding security within DevSecOps practices, applying Site Reliability Engineering (SRE) principles across all security services, and aligning with privacy, compliance, and business leaders to maintain trust and regulatory compliance. Key Responsibilities: Strategic Leadership & Transformation: Define and execute a unified security engineering strategy that addresses data protection across all environments and data lifecycle stages. Lead the design and implementation of scalable, automated solutions that integrate seamlessly into enterprise platforms and user experiences. Establish a global security architecture and engineering roadmap focused on prevention, detection, and rapid response. Drive continuous improvement of security posture while aligning with business needs, regulatory requirements, and user experience expectations. Champion DevSecOps practices to embed security early into development and delivery workflows. Data Security Engineering: Build and operate scalable data protection solutions, including data loss prevention (DLP), secrets management, encryption, and classification. Collaborate with the IAM team to align authentication, authorization, and privileged access policies with data security controls. Deliver security capabilities that support modern work scenarios, remote access, zero-trust networking, and protection of sensitive data in AI/ML workloads. Leverage automation frameworks and IaC to improve scalability and reduce manual intervention. Operational Security, SRE & Assurance: Ensure security platforms are resilient, continuously monitored, and designed for 24x7 support and incident response readiness. Embed security telemetry and observability to enable proactive threat detection and automated response. Apply SRE principles to improve reliability, performance, and maintainability of security services. Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. Implement automated compliance controls and continuous assurance checks. Lead risk mitigation efforts with technical solutions that scale across diverse user and system profiles. Financial & Vendor Management: Manage security platform budgets and investments with a focus on cost optimization and long-term value. Evaluate and manage third-party vendors and partners, ensuring they meet technical, contractual, and security expectations. Lead procurement and renewal cycles in alignment with operational and architectural strategies. Leadership & Talent Development: Build and mentor a global team of security engineers, fostering a high-performance, collaborative, and forward-thinking culture. Drive internal knowledge sharing and upskilling programs across the team. Collaborate cross-functionally with platform, product, and enterprise architecture teams to embed security early and often. What You'll Bring Required Qualifications: 10+ years of experience in cybersecurity, security engineering, or platform security roles. 5+ years in a senior leadership position with accountability for enterprise-scale security platforms. Deep expertise in data protection technologies, with proven ability to design and scale global solutions. Experience with security engineering in hybrid and cloud-native environments (AWS, Azure, GCP). Proven track record in automating security controls, implementing zero-trust models, and supporting 24x7 security operations. Strong understanding of compliance frameworks and risk management strategies. Demonstrated ability to present complex security topics to executive leadership. Preferred Qualifications: Certifications such as CISSP, CCSP, CISM, AWS/Azure Security Specialty, or equivalent. Experience with tools like Symantec DLP, Zscaler CASB, MS Purview, Palo Alto Prisma, Hashi Vault and other modern security platforms. Familiarity with DevSecOps principles, Infrastructure as Code, and secure software development practices. Who You'll Work With Work Environment & Additional Information: Hybrid or on-site work model. Occasional travel may be required for business, vendor, or team engagement. Ability to operate in a fast-paced, complex environment, balancing long-term strategy with operational agility. Additional info For US locations only In the US, we have a compensation transparency approach. Total compensation for this role includes base salary, annual discretionary performance bonus, retirement contribution, and a market leading benefits package described below. The base salary range for this role in Boston is $181,000.00 - $221,000.00 This is an estimated range, however, specific base salaries within the range depend on various factors such as experience and skill set. It is not common for new BCG employees to be hired at the high-end of the salary range. BCG regularly reviews its ranges to ensure market competitiveness. In addition to your base salary, your total compensation will include a bonus of up to 30% and a generous retirement contribution that starts at 5% and moves to 10% after 2 years. All of our plans provide best in class coverage: Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children Low $10 (USD) copays for trips to the doctor, urgent care visits and prescriptions for generic drugs Dental coverage, including up to $5,000 in orthodontia benefits Vision insurance with coverage for both glasses and contact lenses annually Reimbursement for gym memberships and other fitness activities Fully vested Profit Sharing Retirement Fund contributions made annually, whether you contribute or not, plus the option for employees to make personal contributions to a 401(k) plan Paid Parental Leave and other family benefits such as elective egg freezing, surrogacy, and adoption reimbursement Generous paid time off including 12 holidays per year, an annual office closure between Christmas and New Years, and 15 vacation days per year (earned at 1.25 days per month) Paid sick time on an as needed basis Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws. BCG is an E - Verify Employer. Click here for more information on E-Verify.
