IT Data Protection Security Engineer - Senior Manager

Boston Consulting Group
London
4 days ago
Applications closed

Related Jobs

View all jobs

IT Security Engineer

Cyber Security Engineer

Cyber Security Engineer

Information Security Engineer - Development and Automation

Cyber Security Manager

Security Engineer - Governance, Risk and Compliance (GRC), London New London

Locations: Canary Wharf Heredia

Who We Are

BCG pioneered strategy consulting more than 50 years ago, and we continue to innovate and redefine the industry. We offer multiple career paths for the world's best talent to have a real impact on business and society. As part of our team, you will benefit from the breadth and diversity of what we are doing today and where we are headed next. We count on your authenticity, exceptional work, and strong integrity. In return we are committed to supporting you in discovering the most fulfilling career journey possible-and unlocking your potential to advance the world. Our team called Global Services (GS) provides corporate support to business areas such as Finance, Legal, HR, Marketing and IT. This diverse team of experts, operators and specialists represent all levels from Partner to entry level staff, operating across the globe in multiple countries. Global Services is in short, the backbone of BCG.

What You'll Do

Join Us in BCG Worldwide IT! We are seeking an exceptional data protection expert to play key role in our growing Information Protection team, as an IT Data Protection Security Engineer.

You will be part of a growing team, providing world class Security Engineering, Architecture and Operations, driving and supporting improvements globally to our Information Protection Portfolio.

You will be:

  • Engaging collaboratively with application development, data protection, information security, and risk management teams to understand and implement data security solutions.

  • Supporting vendor assessments, including proof of concepts & security technologies research

  • Continuously improving data protection services based on input from a diverse network of internal and external stakeholders, technology teams and security industry at large

  • Creating and maintaining technical service roadmaps for our data protection services

  • Contributing to both architectural and operational effectiveness of the Secure Data team.

YOU'RE GOOD AT

  • Exceptional verbal and written communication skills in English is required; command of additional languages will be considered a plus

  • You can successfully interface and connect with skilled technologists and non-technical stakeholders, including members of the C-suite

  • Ability to work in an Agile environment leveraging strong work management, organizational and planning skills

  • You have an ability to work well independently, as well as part of a geographically dispersed team bringing a sense of urgency to the tasks at hand

  • Must have well-honed and credible influencing skills including the ability to negotiate and gain consensus between involved parties where competing priorities exist

  • You're able to effectively handle difficult and stressful situations with poise, tact and patience, while demonstrating a sense of urgency.



What You'll Bring

  • Minimum 8+ years of data loss solutions and/or security engineering experience with large scale globally distributed implementations

  • Extensive experience in data-at-rest and data-in-transit, data security techniques and methodologies

  • Experience of using relevant DLP tools such as Symantec DLP, Zscaler CASB, MS Purview & similar

  • Experience in managing DLP IM Management and have good understanding of end-to-end IM processes

  • Experience of working with MS Defender and Intune.

  • Experience of using relevant IRM/Data Classification/Data Discovery tools

  • Extensive experience in a globally distributed environment spanning multiple platforms such as AWS, Azure and GCP

  • Experience of cloud security techniques in a DevSecOps and agile working environment

  • Experience in understanding and capturing requirements, continuously improve and develop technical policies and processes

  • Experience leading and mentoring fellow team members, across internal and vendor teams.

Desirable

  • Familiarity with Secrets Management and/or Certificate Lifecycle Management
  • Familiarity with cryptographic key management, PKI lifecycle management
  • Familiarity with Cloud Security Posture Management & Cloud Workload Protection
  • Understanding of CI/CD pipelines
  • Understanding of infrastructure as a code and concepts
  • Understanding of systems configuration orchestration
  • Related security certifications (e.g. CISSP, CCSP, CCSK, SABSA, ITIL etc.)



Who You'll Work With

You will be part of a diverse and dynamic team of protection specialists located across Europe, Asia, and the Americas, working in a highly collaborative environment with like-minded colleagues

Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws.
BCG is an E - Verify Employer. Click here for more information on E-Verify.

Tracking.aspx?jGd9jP5ARKG3xc38dg9hkgs

Get the latest insights and jobs direct. Sign up for our newsletter.

By subscribing you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Job-Hunting During Economic Uncertainty: Cyber Security Edition

The cybe rsecurity sector sits at the forefront of today’s digital landscape, defending businesses and governments alike from increasingly sophisticated threats. From incident response and network security to cloud protections and zero-trust architectures, cyber security professionals tackle an ever-evolving array of challenges. Yet, even this mission-critical field is not immune to economic turbulence. When broader financial markets experience uncertainty—whether through global recessions, regional downturns, or unexpected macro events—the hiring climate can shift, making roles more selective and budgets tighter. For job seekers in cyber security, this can be disconcerting. You might discover that once-abundant vacancies have become scarce, competition for the remaining positions is fiercer, or company priorities pivot away from large-scale expansions toward essential, cost-justified security projects. At the same time, data breaches and cyberattacks don’t pause during economic slowdowns—if anything, they may escalate as bad actors exploit organizational vulnerabilities. This paradox means that while the market feels tough, demand for cyber security expertise remains robust. In this article, we’ll look at: Why economic uncertainty affects cyber security hiring trends. Strategies for staying competitive, even if the number of open roles shrinks. Methods to highlight your skills, adapt to shifting priorities, and network effectively. Approaches for preserving mental well-being during prolonged searches or uncertain feedback loops. How www.cybersecurityjobs.tech can help you find the ideal security-focused role. By proactively sharpening your skill set, tailoring your professional profile, and engaging with a focused community, you can secure a rewarding cyber security job—even when the broader market feels volatile.

How to Achieve Work-Life Balance in Cyber Security Jobs: Realistic Strategies and Mental Health Tips

Cyber security is one of today’s most vital and rapidly expanding sectors. As data breaches, ransomware, and other cyber threats continue to evolve, the demand for skilled professionals is surging across industries—from finance and healthcare to government and e-commerce. Whether you’re a penetration tester, security analyst, or threat intelligence expert, you play a key role in safeguarding digital infrastructure and sensitive information. This high-stakes environment, however, often comes with intense pressure. Long hours, constant vigilance, and an ever-changing threat landscape can make it challenging to find time for personal well-being. Many cyber security specialists report difficulty striking a sustainable work-life balance, unsure if it’s even possible in a field that never truly sleeps. Yet, as concerns about mental health and burnout become more pressing, professionals and employers alike are seeking better ways to combine career advancement with a fulfilling personal life. In this comprehensive article, we’ll explore how to achieve a work-life balance in cyber security. You’ll discover strategies for managing 24/7 threat alerts, the importance of realistic expectations, ways to maintain mental health in high-intensity roles, and tips for setting boundaries without compromising your professional growth. Whether you’re new to this dynamic arena or already an established specialist, these insights can help you thrive personally and professionally in the fast-paced world of cyber security.

Transitioning from Academia to the Cyber Security Industry: How Researchers Can Harness Their Skills to Protect Commercial Environments

Cyber security has become a mission-critical field in an era where data breaches, ransomware attacks, and sophisticated hacking techniques threaten businesses and public institutions alike. As digital transformation touches nearly every facet of modern life, the need for highly skilled individuals capable of defending systems and networks continues to grow. For PhDs and academic researchers with expertise in areas like cryptography, network security, or threat intelligence, this presents an exciting opportunity to deploy your analytical prowess in a high-impact, fast-paced commercial setting. In this guide we’ll explore how academics can successfully pivot from the research lab to the cyber security industry. Learn how to apply rigorous, theory-driven approaches to real-world challenges, from designing secure software architectures to neutralising advanced persistent threats. By embracing the industry’s urgency and end-to-end mindset, you can transform your scholarly insights into robust, market-facing security solutions that protect companies and users on a global scale.