BCG Platinion | Principal, Cybersecurity

Boston Consulting Group•Durham, NC

11d

About The Position

Boston Consulting Group (BCG) is a global consulting firm that partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. Our success depends on a spirit of deep collaboration and a global community of diverse individuals determined to make the world and each other better every day. BCG's Tech and Digital Advantage (TDA) practice focuses on helping clients deliver competitive advantage and business superior performance through the use of data, technology and digital. TDA is the fastest growing practice at BCG and at the heart of the strategic impact we have with our clients. Our consultants and experts globally work across all industries and provide deep experience and expertise across a number of topics including Digital Transformation, Data & Digital Platforms, AI at Scale, Agile, Cybersecurity and Digitizing the Tech Function. At BCG, we bring together the right people to conquer complexity, drive material change, and initiate positive, long-term impact. Explore our BCG Culture and Values for more information. About BCG Platinion BCG Platinion's presence spans across the globe, with offices in Asia, Europe, and South and North America. We achieve digital excellence for clients with sustained solutions to the most complex and time-sensitive challenge. We guide clients into the future to push the status quo, overcome tech limitations, and enable our clients to go further in their digital journeys than what has ever been possible in the past. At BCG Platinion, we deliver business value through the innovative use of technology at a rapid pace. We roll up our sleeves to transform business, revolutionize approaches, satisfy customers, and change the game through Architecture, Cybersecurity, Digital Transformation, Enterprise Application and Risk functions. We balance vision with a pragmatic path to change transforming strategies into leading-edge tech platforms, at scale. Cybersecurity Consultants at BCG Platinion: Technical experts. They are critical thinkers and have extensive cybersecurity expertise that drives innovative solutions. Innovators. They understand and leverage cutting-edge cybersecurity approaches and tactics to create customized solutions for clients. Change agents. They know how to make change happen across an organization. They can align and onboard teams to implement new cybersecurity process and toolsets. They embrace complex challenges and guide an organization to optimize their cybersecurity practices. Collaborative. They are interdisciplinary team players who seek alignment and establish relationships ranging from cross-functional stakeholder groups to existing security teams.

Requirements

8+ years of practical experience in cybersecurity consulting or project management (with teams of five persons or more) in a financial, healthcare, telecommunications, industrial or government organization.
BS in mathematics, natural sciences, information technology, business management, or similar degree.
4+ years of experience managing projects and decision processes at large organizations.
Hands-on experience with, or extensive knowledge of some of the following: Cybersecurity strategy, governance, and policy development. Cyber risk management and security assessments. Design and implementation of enterprise cybersecurity programs. Security architecture and secure system development lifecycle (SDLC) integration. AI platform security and emerging technology risk. Cloud, Big Data, and mobile security. Cyber supply chain and third-party risk management. Identity and access management (IAM). Continuous monitoring and vulnerability management. Incident response, penetration testing, SIEM, BCP, and DRP. Cybersecurity workforce development and awareness programs.
Broad knowledge of cybersecurity technologies throughout organizational and acquisition lifecycle.
Working knowledge of at least two different cybersecurity frameworks: NIST Cybersecurity Framework. C2M2 NIST SP 800-53 and companion publications. ISO/IEC 27000 family of standards, etc. Cloud Security Alliance CCM.
Knowledge and experience with cybersecurity regulatory environments.
Business-fluent written and spoken English language skills.
GenAI tool fluency (e.g., demonstrated use of GenAI tools such as ChatGPT, Claude) and validation of responses.
Willingness to travel around the globe to work with clients and BCG teams. At times, this role involves significant travel to client sites. The amount of travel will depend on client needs and nature of projects.

Responsibilities

Develop cybersecurity strategies, policies, processes, and operating models to protect clients’ internal infrastructure and their customers.
Serve as a trusted advisor to senior client stakeholders, presenting strategic recommendations, training, and reporting to executive audiences.
Lead multiple concurrent engagements, ensuring successful end-to-end delivery of complex, high-impact cybersecurity programs.
Scope, structure, and oversee engagements across diverse client environments and stakeholder groups.
Develop high-quality proposals, reports, and executive presentations.
Develop and lead client proposals end-to-end, bringing original thought leadership to each engagement – in addition to core responsibilities.
Own the full proposal process - from concept to delivery - contributing original insights and thought leadership alongside standard role expectations.
Shape and expand cybersecurity offerings and capabilities; contribute to building and scaling the practice.
Recruit, mentor, and develop top talent to strengthen team capabilities and market differentiation.
Mentorship, leading and offering guidance to other members of the team to develop talent, provide direction, and oversee output and projects.
Management experience, leading team members through our career development process and providing timely and accurate performance feedback.
Demonstrate a growth mindset and promote continuous learning across cybersecurity and adjacent technology domains.

Benefits

At BCG, we care about our people, and offer best in class benefits to support you personally and professionally including: An opportunity to work organically across disciplines and across BCG, we offer a unified and unrivaled opportunity that combines strategic thinking with hands-on applications.
A unique experience to work alongside a team of passionate and driven problem-solvers with a mission to deliver innovative and valuable digital solutions in a supportive environment.
Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children.
$10 (USD) copays for trips to the doctor, urgent care visits and prescriptions for generic drugs.
Dental coverage, including up to $5,000 (USD) in orthodontia benefits.
Vision insurance with coverage for both glasses and contact lenses annually.
Reimbursement for gym memberships and other fitness activities.
Fully vested retirement contributions made annually, whether you contribute or not.
Generous paid time off including vacation, holidays, and annual office closure between Christmas and New Years.
Paid Parental Leave and other family benefits such as elective egg freezing, surrogacy, and adoption reimbursement.
Employees, spouses, and children are covered at no cost. Employees share in the cost of domestic partner coverage.