Locations: Atlanta | Austin | Boston | Brooklyn | Chicago | Dallas | Denver | Detroit | Durham | Houston | Miami | Minneapolis | Nashville | New York | Philadelphia | Pittsburgh | Summit | Washington

Who We Are

Boston Consulting Group (BCG) is a global consulting firm that partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. Our success depends on a spirit of deep collaboration and a global community of diverse individuals determined to make the world and each other better every day.

 

BCG's Tech and Digital Advantage (TDA) practice focuses on helping clients deliver competitive advantage and superior business performance through the use of data, technology and digital. Platinion is the fastest growing practice at BCG and at the heart of the strategic impact we have with our clients. Our consultants and experts globally work across all industries and provide deep experience and expertise across a number of topics including Digital Transformation, Data & Digital Platforms, AI at Scale, Agile, Cybersecurity and Digitizing the Tech Function.

 

At BCG, we bring together the right people to conquer complexity, drive material change, and initiate positive, long-term impact. Explore our BCG Culture and Values for more information.

About BCG Platinion

 

BCG Platinion's presence spans across the globe, with offices in Asia, Europe, and South and North America. We achieve digital excellence for clients with sustained solutions to the most complex and time-sensitive challenge. We guide clients into the future to push the status quo, overcome tech limitations, and enable our clients to go further in their digital journeys than what has ever been possible in the past. At BCG Platinion, we deliver business value through the innovative use of technology at a rapid pace. We roll up our sleeves to transform business, revolutionize approaches, satisfy customers, and change the game through Architecture, Cybersecurity, Digital Transformation, Enterprise Application and Risk functions. We balance vision with a pragmatic path to change transforming strategies into leading-edge tech platforms, at scale.

What You'll Do

As a Cybersecurity Senior Consultant, you'll be given end-to-end responsibility for an individual 'module' within a BCG client engagement and begin to develop specialized knowledge to help you solve our clients' problems. You'll work on a variety of cybersecurity and digital risk topics, applying generalist consulting skills to strategic cybersecurity & digital risk questions. We are looking for someone who can address our clients’ strategic, organizational, managerial, and operational issues using the most advanced cybersecurity methodologies, tools, and techniques.

 

Cybersecurity Consultants at BCG Platinion are:

Technical experts. They are critical thinkers and have extensive cybersecurity expertise that drives innovative solutions.Business-minded story tellers. They leverage their deep-technical understanding of cybersecurity challenges and translate that into implications across the business value chain.Innovators. They understand and leverage cutting-edge cybersecurity approaches and tactics to create customized solutions for clients.Change agents. They know how to make changes happen across an organization. They can align and onboard teams to implement new cybersecurity processes and toolsets. They embrace complex challenges and guide an organization to optimize their cybersecurity practices.Collaborative. They are interdisciplinary team players who seek alignment and establish relationships ranging from cross-functional stakeholder groups to existing security teams.

 

You’re Good At:

Understanding the role technology plays in enabling businesses to execute their strategies and decomposing the cybersecurity implications of this relationship.Analyzing cybersecurity requirements - current tools - and best practices to translate into a meaningful set of recommendations tailored to a client’s unique environment and circumstances.Communicating complex and technical concepts in a concise and business value-centric written form.Implementing cybersecurity transformation and culture change initiatives.Conducting cybersecurity assessments including gap analysis and roadmap development in multiple contexts, including organizations, product development, and cloud security.Developing cybersecurity strategies, policies, processes, and procedures to protect clients’ internal infrastructure and their customers.Understanding data protection, data security, and privacy drivers that influence organizations today.Developing cybersecurity business strategies for technology product vendors that are integrated in the organizations overall business strategy and increase revenue and profits.Working with leadership teams, including facilitating board and senior management cybersecurity awareness workshops.Embedding product security and DevSecOps practices into the software development lifecycles, system designs, and IT architectures.Utilizing cyber risk quantification to reduce uncertainty around cyber risk and improve executive decision making.Creating and facilitating table-top exercises.Delivering operational resilience through incident response, business continuity, and disaster recovery planning.

 

What You'll Bring:

4+ years of practical experience in cybersecurity consulting or cybersecurity management (with teams of five persons or more) in a variety of sectors and contexts.BS in cybersecurity, information systems, mathematics, natural sciences, business management, or similar degree.Hands-on experience with, or extensive knowledge of some of the following:Developing cybersecurity strategies or policies.Quantifying and managing cybersecurity risk.Designing, transforming, implementing, and running cybersecurity programs.Assessing cybersecurity risks in AI platforms.Integrating security into applications and systems.Implementing cloud security.Managing cybersecurity risk arising from third parties and the supply chain.Designing / implementing identity and access management.Developing and upskilling a cybersecurity workforce.Delivering cybersecurity culture change, awareness, and training.Designing continuous monitoring programs incorporating SIEM tools, APT hunting, implementing UBA, etc.Designing / implementing vulnerability management, including conducting vulnerability assessments.Performing penetration testing, incident management, BCP, and/or DRP.Broad knowledge of cybersecurity technologies throughout organizational and acquisition lifecycleWorking knowledge of at least two different cybersecurity frameworks:NIST Cybersecurity Framework.C2M2NIST SP 800-53 and companion publications.ISO/IEC 27000 family of standards, etc.Cloud Security Alliance CCM.Team-oriented attitude.Strong communication and presentation skills.Outstanding analytical and conceptual skills.Results-orientated mindset.Confidence and persuasiveness.GenAI tool fluency (e.g., demonstrated use of GenAI tools such as ChatGPT, Claude) and validation of responses.Willingness to travel around the globe to work with clients and BCG teams. At times, this role involves significant travel to client sites. The amount of travel will depend on client needs and nature of projects.

What You'll Bring

4+ years of practical experience in cybersecurity consulting or cybersecurity management (with teams of five persons or more) in a variety of sectors and contexts.BS in cybersecurity, information systems, mathematics, natural sciences, business management, or similar degree.Hands-on experience with, or extensive knowledge of some of the following:Developing cybersecurity strategies or policies.Quantifying and managing cybersecurity risk.Designing, transforming, implementing, and running cybersecurity programs.Assessing cybersecurity risks in AI platforms.Integrating security into applications and systems.Implementing cloud security.Managing cybersecurity risk arising from third parties and the supply chain.Designing / implementing identity and access management.Developing and upskilling a cybersecurity workforce.Delivering cybersecurity culture change, awareness, and training.Designing continuous monitoring programs incorporating SIEM tools, APT hunting, implementing UBA, etc.Designing / implementing vulnerability management, including conducting vulnerability assessments.Performing penetration testing, incident management, BCP, and/or DRP.Broad knowledge of cybersecurity technologies throughout organizational and acquisition lifecycleWorking knowledge of at least two different cybersecurity frameworks:NIST Cybersecurity Framework.C2M2NIST SP 800-53 and companion publications.ISO/IEC 27000 family of standards, etc.Cloud Security Alliance CCM.Team-oriented attitude.Strong communication and presentation skills.Outstanding analytical and conceptual skills.Results-orientated mindset.Confidence and persuasiveness.GenAI tool fluency (e.g., demonstrated use of GenAI tools such as ChatGPT, Claude) and validation of responses.Willingness to travel around the globe to work with clients and BCG teams. At times, this role involves significant travel to client sites. The amount of travel will depend on client needs and nature of projects.

Additional info

What We Offer:

 

At BCG, we care about our people, and offer best in class benefits to support you personally and professionally including:

An opportunity to work organically across disciplines and across BCG, we offer a unified and unrivaled opportunity that combines strategic thinking with hands-on applications.A unique experience to work alongside a team of passionate and driven problem-solvers with a mission to deliver innovative and valuable digital solutions in a supportive environment.

 

For U.S. Applicants:

 

The base compensation for this role is $150,000 in USD.

 

In addition to your base salary, you will also be eligible for an annual discretionary performance bonus and BCG's Profit Sharing and Retirement Fund (PSRF) contribution. BCG also provides a market leading benefits package described below.

 

At BCG, we are committed to offering a comprehensive benefit program that includes everything our employees and their families need to be well and live life to the fullest. We pay the full cost of medical, dental, and vision coverage for employees - and their eligible family members.* That’s zero dollars in premiums taken from employee paychecks. All our plans provide best in class coverage:

Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children.$10 (USD) copays for trips to the doctor, urgent care visits and prescriptions for generic drugs.Dental coverage, including up to $5,000 (USD) in orthodontia benefits.Vision insurance with coverage for both glasses and contact lenses annually.Reimbursement for gym memberships and other fitness activities.Fully vested retirement contributions made annually, whether you contribute or not.Generous paid time off including vacation, holidays, and annual office closure between Christmas and New Years.Paid Parental Leave and other family benefits such as elective egg freezing, surrogacy, and adoption reimbursement.

*Employees, spouses, and children are covered at no cost. Employees share in the cost of domestic partner coverage.

 

To learn more about our employee benefit please check our Benefits page.

Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws.\n
BCG is an E - Verify Employer. Click here for more information on E-Verify.