Senior Cybersecurity Transformation Leader
Job Description
Company: Boston Consulting Group (BCG)
Location: Summit, US
Locations
• Atlanta
• Austin
• Boston
• Brooklyn
• Chicago
• Dallas
• Denver
• Detroit
• Durham
• Houston
• Los Angeles
• Miami
• Minneapolis
• Nashville
• New York
• Philadelphia
• Pittsburgh
• Summit
• Washington
Who We Are
Boston Consulting Group (BCG) is a global consulting firm that partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. Our success depends on a spirit of deep collaboration and a global community of diverse individuals determined to make the world and each other better every day.
About BCG Platinion
BCG Platinion, part of BCG’s Tech and Digital Advantage practice, focuses on helping clients deliver competitive advantage and superior performance through data, technology and digital. The team works across all industries, delivering expertise in areas such as Tech Advisory, Architecture, Enterprise Solutions, Cybersecurity, and Technology Risk Management. Their goal is to develop customized, innovative client solutions that combine deep technical knowledge with business insight.
What You’ll Do
Cybersecurity Consultants at BCG Platinion
• Act as a technical expert, applying critical thinking and extensive cybersecurity knowledge to drive innovative solutions.
• Leverage cutting‑edge cybersecurity approaches and tactics to create customized solutions for clients.
• Serve as a change agent, aligning and onboarding teams to implement new cybersecurity processes and toolsets, and guiding organizations to optimize their practices.
• Collaborate with interdisciplinary teams, building relationships across stakeholder groups and existing security teams.
You’re Good At
• Understanding how technology enables business strategy and analyzing the cybersecurity implications of that relationship.
• Interpreting cybersecurity standards, regulatory requirements, and best practices to recommend tailored solutions.
• Communicating complex, technical concepts in concise, business‑value‑centric written form.
• Implementing cybersecurity transformation and culture change initiatives.
• Conducting cybersecurity assessments, including gap analysis and roadmap development for organizations, product development, and cloud security.
• Developing cybersecurity strategies, policies, processes, and procedures to protect internal infrastructure and customers.
• Understanding data protection, data security, and privacy drivers that influence today’s organizations.
• Developing business strategies for technology product vendors that integrate with overall business strategy and increase revenue.
• Facilitating board and senior‑management cybersecurity awareness workshops.
• Embedding product security and DevSecOps practices into development lifecycles, system designs, and IT architectures.
• Using cyber risk quantification to reduce uncertainty and improve executive decision‑making.
• Creating and facilitating tabletop exercises.
• Delivering operational resilience through incident response, business continuity, and disaster recovery planning.
What You’ll Bring
• 6+ years of practical experience in cybersecurity consulting or management with teams of five or more across multiple sectors and contexts.
• BS in cybersecurity, information systems, mathematics, natural sciences, business management, or a similar field.
• Hands‑on experience with or extensive knowledge of:
• Developing cybersecurity strategies or policies.
• Quantifying and managing cybersecurity risk.
• Leading security assessments.
• Designing, transforming, implementing, and running cybersecurity programs.
• Developing security architectures.
• Integrating security into applications and systems.
• Implementing cloud security.
• Managing third‑party and supply‑chain cybersecurity risk.
• Designing or implementing identity and access management.
• Upskilling a cybersecurity workforce.
• Delivering culture change, awareness, and training.
• Conducting continuous monitoring, SIEM, APT hunting, UBA, and related activities.
• Implementing vulnerability management, including vulnerability assessment and penetration testing.
• Performing incident management, BCP, and DRP.
• Broad knowledge of cybersecurity technologies throughout an organization’s lifecycle.
• Working knowledge of at least two frameworks, e.g., NIST Cybersecurity Framework, C2M2, NIST SP 800‑53, ISO/IEC 27000 family, and Cloud Security Alliance CCM.
• Team‑oriented attitude.
• Strong communication and presentation skills.
• Outstanding analytical and conceptual skills.
• Results‑oriented mindset.
• Confidence and persuasiveness.
• Proficiency with GenAI tools (e.g., ChatGPT, Claude) and validation of responses.
• Business‑fluent written and spoken English.
• Willingness to travel globally to work with clients and BCG teams, as required by project needs.
What We Offer
• Opportunities to work organically across disciplines and BCG, combining strategic thinking with hands‑on applications.
• Supportive environment with passionate, driven problem‑solvers focused on delivering innovative digital solutions.
For U.S. Applicants
The base compensation for this role is $190,000 in USD.
In addition, you will be eligible for an annual discretionary performance bonus, BCG’s Profit Sharing and Retirement Fund (PSRF) contribution, and a market‑leading benefits package that includes comprehensive medical, dental, vision, retirement, and paid family leave benefits.
Equal Opportunity & E‑Verify
Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity or expression, national origin, disability, protected veteran status, or any other characteristic protected under applicable law. Candidates with criminal histories will be considered in a manner consistent with applicable state and local laws.
BCG is an E‑Verify Employer. Click here for more information on E‑Verify.
Source: JobLeads
