WHAT YOU'LL DO The Global Security Director works in the Information Security Architecture team within BCG's Information Security and Risk management (ISRM) organization. This role will lead the monitoring, assessment, and security standards development of all cyber security solutions deployed by BCG within its on-premises and cloud infrastructure, enabling BCG's Security product health gap assessment and remediation strategy and the overall cyber security strategy. You will work with engineering teams to ensure that the security features are being correctly used and that there are regular architecture reviews done for key security products. YOU'RE GOOD AT You have a consultative approach where you bring years of technical and professionaland soft skill experience to solve problems in a consultative way. You value other's opinion in meeting and discussions and take positive feedback from such engagement to augment your role agenda. You have ability to build relationships within the organization outside your team and function which will help you resolve conflicts. You're good at problem solving. You can handle ambiguous situations where there is often less clarify on the way forward and manage the tasks successfully. You must have a learning attitude whereby there is high degree of willingness to learn new security solutions and draft security standards, audit, and security assessment controls. Functionality assessment of cyber security products and tools by using a combination of manual interview and automated scanning tools, thereby articulating the results in the format of a uniform reporting framework. Configuration review of security engineering products and tools. Documenting security standards, configuration reviews and work products in a clear and coherent manner that is easily understandable to your stakeholders. YOU BRING (EXPERIENCE & QUALIFICATIONS) 10 to 15 years of experience in security assessment of cyber security products and services within the space of systems security, network security, identity and access management and cloud. Hands-on experience in a broad range of enterprise security solutions, identity governance, and in multi-cloud environments. Good hands on experiencing in control definition, auditing, and security assessment Have experience drafting security standards for security engineering solutions by applying the ability of critical thinking and security research skills. Have experience in security product selection by documenting design requirements, functional requirements and eventually doing a proof of concept (PoC) testing to select the final proposed solution. Have worked with any market leading vulnerability management solutions like Tenable.IO, Rapid7; and have triaged and remediated software vulnerabilities in functional products. Have worked in an Agile environment. YOU'LL WORK WITH BCG's information technology group collaboratively delivers the latest digital technologies that enable our consultants to lead and our business to grow. For our IT jobs, we seek individuals with expertise in the areas of IT infrastructure, application development, business systems, collaborative and social technologies, information security, and project leadership.
