Job Description
Locations: Atlanta | London
Who We Are
Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation - inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact. To succeed, organizations must blend digital and human capabilities.
Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures—and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive.
What You'll Do
This role focuses on designing, implementing, and tracking cloud security enhancements with a specialization in Secrets Management across multi-cloud and SaaS environments. You will influence engineering decisions to drive secure and successful business outcomes while collaborating with internal teams to protect enterprise information. Key responsibilities include:
1. Defining and implementing access and security requirements.
2. Planning, testing, and supporting secure systems.
3. Serving as a Subject Matter Expert on IT projects.
4. Developing and maintaining security standards, policies, and procedures.
5. Mentoring team members to foster a strong security culture.
This position requires a strategic and hands-on approach to strengthen BCG’s cloud security posture.
YOU'RE GOOD AT
1. Interacting with stakeholders and influencing direction, articulating risks, and advocating for solutions and roadmaps.
2. Managing backlog and roadmap of secrets management items to be completed.
3. Managing end-to-end delivery of projects with hands-on involvement in the development and configuration of products around secrets management and machine authentication.
4. Determining requirements by evaluating business strategies and requirements, implementing information security standards, conducting system and vulnerability analyses and risk assessments, recommending secure architecture aligned to business architecture, and identifying/driving remediation of integration issues.
5. Providing expert knowledge of solution/application architecture for related capabilities as well as methodologies in the software development life cycle.
6. Maintaining security data and principles by ensuring compliance to standards, policies, regulatory requirements, and good industry practices.
7. Self-managing progress and status of tasks and deliverables on projects and escalating issues and risks timely.
8. Completing market assessments on vendor products, packages, and services; guiding tests and implementation of products solving enterprise information security requirements.
9. Suggesting and implementing alternative mitigations/compensating controls to allow for business continuity while protecting BCG's assets.
10. Partnering with cross-functional teams to ensure compliance to industry and company standards including ISO 27001, SOC2, NIST, GDPR, and DPO standards.
11. Updating job knowledge by tracking and understanding emerging practices and standards; participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations.
12. Vendor escalations and Major Incident Management support for business-critical services.
13. Providing L3 operational support for Secrets Management tooling and oversight of L1/L2 ops issues.
14. Creating and tracking health, security, and adoption metrics.
What You'll Bring
Must Haves:
1. Ability to drive adoption of secrets management best practices, primarily using HashiCorp Vault.
2. 3+ years’ experience of secrets management through large scale implementations distributed globally.
3. Experience managing cloud secrets management solutions such as Azure Key Vault, Google Secrets Manager, and AWS Secrets Manager.
4. Experience with Cloud Security Posture Management (CSPM) across the cloud platforms including AWS, Azure, and GCP.
5. Tier 3 support experience for service outage and mission-critical application support.
6. Experience with app registrations and service principals in Azure AD.
7. Experience documenting complex architectures.
8. Experience with GitHub, (or similar tools including Chef or Puppet), Continuous Integration/Continuous Deployment (CI/CD).
9. Knowledge and experience with automating solutions using one or more languages (i.e., Python, PowerShell, Terraform, or similar).
Nice Haves:
1. Bachelor’s degree (or equivalent related experience).
2. 7+ years’ experience working with AWS, GCP, Azure, or Alibaba cloud.
3. Understanding of API concepts and RESTful services.
4. Understanding of cloud security, zero trust, risk-based authentication, and multi-factor authentication (MFA) solutions.
5. Hands-on/direct experience integrating web, single-page applications through API endpoints, API services for machine-to-machine authentication.
6. Related certifications (e.g. Security Plus, CISSP, CCSP, ITIL Foundations, CE+, etc).
7. Experience working in Agile, knowledge of Jira, Jira Align, Miro, and related tools and principles.
8. Experience as a change management practitioner using industry best practices and ServiceNow tooling and workflows.
Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, ancestry, citizenship, age, disability, protected veteran status, or any other characteristic protected under federal, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws.
BCG is an E-Verify Employer. (Click here for more information on E-Verify.)
#J-18808-Ljbffr