Cyber Security Engineer


Cyber Security Engineer

Information Technology

United States

Boston

Regular

Full time

The Boston Consulting Group (BCG) is a global management consulting firm and the world’s leading advisor on business strategy. We partner with clients from the private, public, and not-for-profit sectors in all regions to identify their highest value opportunities, address their most critical challenges, and transform their enterprises. BCG was founded in 1963 and is a privately owned firm with more than 7,000 employees across 85 offices in 48 countries. Integrity, respect for the individual, delivering value, and making an impact on society are just some of BCG's core values. BCG's commitment to both our clients' success and our own standards is what sets BCG apart as a world-class professional services organization. Join BCG - start your career at a company that is consistently ranked as the leader in its field, and is acknowledged as one of the best places to work.

The Cyber Security Engineer works with various teams inside BCG (Information Management Team, Global Functions and IT) and with vendors, suppliers, and partners to support the CSIRT program.

Cyber Security Engineer Level 2 is an experienced position within the CSIRT and has either gained a good understanding or already understands the threat and vulnerability management domains. They are the Engineers that can work simultaneously on multiple security incidents and security application related problems. This position performs a majority of the CSIRT daily tasks. These tasks ensure that all of the SIEM content and other identification mechanisms of the threat intelligence tools are running smoothly.

This includes, but is not limited to:
  • Fully understand and implement the capabilities of the SIEM solution:
    • Functional capabilities
    • Reporting, auditing, and alerting,
    • Rule creation and management
    • Product roadmap and application of SIEM in BCG
    • Industry knowledge of SIEM and threat intelligence and its interactions with other technologies including but limited to Active Directory, Log Management, Ticketing, Information Management, Cloud Services, Devices, etc.
    • Experience with log sources in the cloud and supporting technology e.g. AWS Cloudtrail / Cloudwatch, Azure Operational Insights, Event Hubs
  • Collect, monitor and analyze data produced by the BCG's System
  • Review and prepare monthly status reports and statistics
  • Follow-up on incidents, issues, and concerns related to data loss
  • Provide backup to other BCG Security Architects to audit, monitor and report on the various components of BCG IT security
  • Balance cost, risk, security, user convenience, and business requirements in all aspects of work


Under the general direction of the Information Security Manager or delegate and working with other IT, BST, etc. throughout the firm, the roles will perform the following functions:
Participate as an integral part of the Security Team and IT in general
  • Fully understand and implement the capabilities of the SIEM solution:
    • Functional capabilities
    • Reporting, auditing, and alerting,
    • Rule creation and management
    • Product roadmap and application of SIEM in BCG
    • Industry knowledge of SIEM and its interactions with other technologies including but limited to Active Directory, Log Management, Ticketing, Information Management, Cloud Services, Devices, etc.
    • Disaster Recovery/Business Continuity management of SIEM service
    • System lifecycle management
  • Propose, Create, Write, Test, Implement, Maintain, SIEM rule sets appropriate to BCG's needs
  • Update the Security Team and other groups on industry trends, tolls, thinking and recommend initiatives to help lower risk
  • Define SIEM use cases to collect, monitor and analyze data to discover and discern trends, threats, and security risks associated with BCG assets and information.
  • Recommend and create SIEM rules to protect BCG and BCG client confidential information
  • Proactively monitoring and analyze logs for indicators of attack
  • With the Information management team, follow-up on incidents, issues, and concerns related to data loss
  • Manage incidents related to data loss, producing alerts and escalating issues to appropriate management
  • Recommend and create SIEM rules to protect BCG and BCG client confidential information
  • Provide SIEM solutions and support for specific case team and/or project needs and requirements
  • Develop and produce operational metrics that demonstrate the effectiveness of controls, quantifies security risks and issues, confirms service levels, tracks incident type and volume
  •  Apply industry and BCG security knowledge, policy, standards, practices to data loss prevention
  • Respond to inquiries related to data loss and inappropriate sharing
  • Develop standard materials in support of BCG Information Security
  • Respond to, and to the extent possible, accommodating special requests and requirements
  • Track and report on security issues
  • All other tasks and responsibilities as requested by manager


Maintain up-to-date knowledge of the Security industry as it relates to BCG including:
  • Standards, regulations and legislation.
  • Threats and vulnerabilities
  • Technologies and solutions
  • Industry best practices
  • Client requirements and concerns
Provide input and represent client and BCG interests in the areas of:
  • Security Policy
  • Organization Security – 3rd Party Security, Outsource Security, Information Security Infrastructure
  • Asset Classification and Control
  • Personnel Security
  • Physical and Environmental Security related to IT
  • Communications and Operations Management
  • Access Control
  • System Development and Maintenance
  • Business Continuity Management
  • Compliance and Audit
  • Incident Response and Investigation
  • Work across the firm to identify risk, develop and plan risk mitigation strategies and ongoing audit functions related to client information
  • Provide timely response to client inquires by completing client questionnaires, writing client responses and participating on conference calls and meetings with clients, BCG Partners, case teams, Legal and Risk Departments
  • Incident response management for client security incidents
  • Update externally-oriented documents and propose new documents and materials in order to respond to requests quickly and completely
  • Propose standards in accordance with Industry state-of-the-art alternatives, and requirements for data and information sharing
  • Work with IT Directors, Managers, Architects and staff to implement, monitor and maintain Confidentiality, Availability and Integrity of BCG information assets
  • Track and manage materials provided to external providers and clients
  • Maintain information security credentials and certifications as required to present a credible presence to internal and external audiences


  • Bachelors  degree (or equivalent);
  • Minimum of 3 to 5 years of information security experience, with a very strong technical background and significant information security and risk management experience in a multinational enterprise preferred, but will also consider applicants with equivalent significant level of experience
  • Threat Hunting and Incident Response experience (from a Consultancy or SOC environment)
  • Security Monitoring tools and their use (Arcsight, Splunk, ELK,  Falcon,  )
  • GIAC Certified Intrusion Analyst (GCIA) or GIAC Reverse Engineering Malware (GREM)
  • Security certification like CISSP, CCSP, CEH or equivalent a plus


Technical and functional expertise
  • Requires an advanced level of professional knowledge in information technology and security developed through a combination of advanced degrees in information technology and hands on experience. Must have previous career development experience which has provided management skills, motivational skills, interpersonal skills, and outstanding organizational effectiveness
  • Knowledge of the legal and regulatory landscape related to security and privacy in an international environment
  • Very strong business sense with ability to relate technology issues to business
Problem solving, analytical skills and decision making
  • Requires strong analytical skills and abilities including an extensive knowledge of software, data base, operating systems, client server architecture and voice and data communication services and facilities, security and privacy, in an international setting
  • Collect, review, and analyze various metrics, which help to measure and monitor systems, departmental performance, and quality. Discern and analyze trends.
  • Review and prepare monthly status reports and statistics
  • Manage group and project budgets
 Communication, interpersonal and teaming skills
  • Outstanding verbal and written communications skills are a must because of the requirement to represent BCG in communications with clients.
  • Calm demeanor, grace under fire, outstanding listening skills
Leadership, impact and change
  •  High level of initiative and self-motivation, resourceful, and patient with an iterative process
  • Ability to gain trust and commitment of others at different levels of the organization
  • Proven ability to challenge traditional way of operating and moving beyond the obvious
  • Translates BCG’s broader strategic objectives and cascades these into own work plans, metrics and team work plans
  • Works effectively with significant ambiguity and fluctuating priorities and constrains
 Work management, organization and planning
  • Ability to evaluate and prepare detailed project plans for technology projects that will be implemented across the business. Manage local and global technology problems and direct staff in resolution of such problems. Evaluate and advise on the technology and systems components associated with projects adopted by BCG corporate and offices
  • Ability to monitor projects and direct staffs to ensure projects are aligned with the strategic objectives of the business
 Customer and business focus
  • Focuses on the most critical issues that have the highest impact on the organization and business needs
  • Working mode: “enabling”, “value adding” and “expanding”
  • Treats all others with respect; generate trust
 People management
  • This position requires interaction with BCG Partners, BCG Case Team staff, client legal and security staff, Administrative Management, vendors, IT Management and Staff, Legal Department, Finance, Vendors, etc. Very strong relationship skills are essential. Excellent Leadership and teaming skills are required
Values and ethics
  • Strong sense of confidentiality and integrity
  • Treats others with respect and generates trust
  • Establish relationships based on respect, trust and integrity.


The Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under federal, state or local law, where applicable. BCG is an E-Verify Employer. Click here for more information on E-Verify. VEVRAA Federal Contractor

3601BR



Job Type : Full-Time
Education Level : Bachelors Degree
Experience Level : Mid to Senior Level
Job Function : Engineering
Powered By GrowthZone