Who We Are

Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we work closely with clients to embrace a transformational approach aimed at benefiting all stakeholders—empowering organizations to grow, build sustainable competitive advantage, and drive positive societal impact.

Our diverse, global teams bring deep industry and functional expertise and a range of perspectives that question the status quo and spark change. BCG delivers solutions through leading-edge management consulting, technology and design, and corporate and digital ventures. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, fueled by the goal of helping our clients thrive and enabling them to make the world a better place.

Boston Consulting Group (BCG) is a global consulting firm that partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. Our success depends on a spirit of deep collaboration and a global community of diverse individuals determined to make the world and each other better every day

BCG's Tech and Digital Advantage (TDA) practice focuses on helping clients deliver competitive advantage and business superior performance through the use of data, technology and digital. TDA is the fastest growing practice at BCG and at the heart of the strategic impact we have with our clients. Our consultants and experts globally work across all industries and provide deep experience and expertise across a number of topics including Digital Transformation, Data & Digital Platforms, AI at Scale, Agile, Cybersecurity and Digitizing the Tech Function.

At BCG, we bring together the right people to conquer complexity, drive material change, and initiate positive, long-term impact. Explore our BCG Culture and Values for more information

Practice Area Profile

BCG Platinion launched in Germany in 2000 to add deep technical expertise to the Boston Consulting Group’s existing capabilities. Today, our presence spans across the globe, with offices in Asia, Europe, and South and North America. Our New York-based North American team began in 2014 and in 2017 acquired MAYA Design, a Pittsburgh-based digital design and innovation lab, to grow our capabilities around technology and design. We support our clients’ total digital transformation through technology, design, cybersecurity, and risk management & financial engineering capabilities. And together with BCG, BCG Platinion’s interdisciplinary team of technical experts enable customized technical solutions and accelerate delivery value through new business platforms, application consolidations, and major system implementations.

What You'll Do

What You’ll Do:

As a Cybersecurity Consultant at BCG Platinion, you will work with BCG clients to protect organizations’ most valuable digital, intellectual, and human assets against malicious attacks and fatal errors. In this role, you will apply your sound technical expertise, understanding of business contexts, and analytical skills to enable organizations security priorities. You will also work in multidisciplinary teams to help businesses improve their products and create market growth strategies.

Cybersecurity Consultants at BCG Platinion are:

Technical experts. They are critical thinkers and have extensive cybersecurity expertise that drives innovative solutions.
Innovators. They understand and leverage cutting-edge cybersecurity approaches and tactics to create customized solutions for clients.
Change agents. They know how to make change happen across an organization. They can align and onboard teams to implement new cybersecurity process and toolsets. They embrace complex challenges and guide an organization to optimize their cybersecurity practices.
Collaborative. They are interdisciplinary team players who seek alignment and establish relationships ranging from cross-functional stakeholder groups to existing security teams.

You’re Good At:

Developing tailored, customized cyber solutions to address our clients challenges
Implementing cybersecurity transformation and culture change initiatives
Conducting cybersecurity assessments including gap analysis and roadmap development in multiple contexts, including organizations, product development, and cloud security
Developing cybersecurity strategies, policies, processes, and procedures to protect clients’ internal infrastructure and their customers
Understanding data protection, data security, and privacy drivers that influence organizations today
Developing cybersecurity business strategies for technology product vendors that are integrated in the organizations overall business strategy and increase revenue and profits
Working with leadership teams, including facilitating board and senior management cybersecurity awareness workshops
Integrating security into software, systems, and architectures through shifting left and designing appropriate processes, procedures, methods, and techniques Quantifying progress through cybersecurity measurement and risk quantification
Helping clients with incident response readiness, by creating and facilitating table-top exercises, business continuity and disaster recovery plans

What You'll Bring (Experience & Qualifications)

You Bring:

2+ years of professional experience in the execution and management of technology (Prior experience at a consulting organization is highly preferred)
BS in mathematics, natural sciences, information technology, business management, or similar degree
Hands-on experience with, or extensive knowledge of some of the following:
Developing cybersecurity strategies or policies
Managing cybersecurity risk
Leading security assessments
Designing, transforming, implementing, and running cybersecurity programs
Developing security architectures
Integrating security into applications and systems
Implementing cloud security
Cyber supply chain risk management/third party risk management
Designing / implementing identity and access management
Developing cybersecurity workforce
Delivering cybersecurity culture change, awareness, and training
Performing continuous monitoring activities such as using SIEM tools, APT hunting, implementing UBA, etc.
Designing / implementing vulnerability management, including conducting vulnerability assessments
Performing penetration testing, incident management, BCP, and/or DRP
Broad knowledge of cybersecurity technologies throughout organizational and acquisition lifecycle
Working knowledge of at least two different cybersecurity frameworks:
NIST Cybersecurity Framework
C2M2
NIST SP 800-53 and companion publications
ISO/IEC 27000 family of standards, etc.
Cloud Security Alliance CCM
The CRI Profile
Team-oriented attitude
Strong communication and presentation skills
Outstanding analytical and conceptual skills
Results-orientated mindset
Confidence and persuasiveness
Business-fluent written and spoken English language skills%53389588% %%techinfo%%

posted 30+ days ago