Jobs NYC

Manager, Cybersecurity (The Boston Consulting Group, Inc. - New York, NY): Lead the development of customized cybersecurity and risk management programs to protect organizations’ most valuable digital, intellectual, and human assets against malicious attacks and fatal errors. Specific duties include: identify and address clients’ strategic, organizational, managerial, and operational security issues using advanced cybersecurity techniques, tools, and methodologies; lead teams to implement new cybersecurity process and toolsets; implement cybersecurity transformation and culture change initiatives; lead cybersecurity assessments including gap analysis and roadmap development; guide organizations through comprehensive cybersecurity transformations and modernizations, and enhance strategies and infrastructures to address both traditional and emerging threats to protect clients’ internal infrastructure and their customers; develop cybersecurity business strategies for technology product vendors that are integrated in the organizations overall business strategy, and increase revenue and profits; work with leadership teams, including facilitating board and senior management cybersecurity awareness workshops to design and implement comprehensive security training programs incorporating enterprise security and DevSecOps best practices; integrate security into software, systems, and architectures through designing appropriate processes, procedures, methods, and techniques; assist clients in executing table top exercises and business continuity and disaster recovery plans; and lead team members through career development processes and provide timely and accurate performance feedback. Requires: Bachelor's degree in Information Technology, Business Management, Cybersecurity, or related field (willing to accept foreign education equivalent) plus six (6) years of experience as a Cybersecurity Analyst, or related occupation responsible for analyzing, designing, and implementing customized cybersecurity and risk management programs for companies within the financial, healthcare, consumer products, telecommunications, industrial, and/or government sectors, which must include at least two (2) years of experience managing cybersecurity projects and decision processes. In lieu of Bachelor’s degree and six (6) years of experience as previously noted, BCG will accept a Master's degree in Information Technology, Business Management, Cybersecurity, or related field (willing to accept foreign education equivalent) and four (4) years of experience as a Cybersecurity Analyst, or related occupation responsible for analyzing, designing, and implementing customized cybersecurity and risk management programs for companies within the financial, healthcare, consumer products, telecommunications, industrial, and/or government sectors, which must include at least two (2) years of experience managing cybersecurity projects and decision processes. Specific skills/other requirements (quantitative experience requirement not applicable to this section) - must possess the following: designing and implementing advanced cybersecurity architectures tailored to industry needs and regulatory requirements, and industry-specific security best practices and standards to fortify client defenses and compliance; conducting assessments, identifying improvement areas, and focusing on automating security protocols to improve the security development lifecycle within agile frameworks; orchestrating comprehensive risk assessments to identify critical vulnerabilities and security gaps in large-scale enterprise systems, and uncovering opportunities to enhance security maturity and resilience; creating security solutions for cloud-based environments and ensuring compliance with standards including ISO/IEC 27017; implementing controls tailored to cloud service models and platforms including Amazon Web Services (AWS) and Microsoft Azure; designing cybersecurity supply chain risk management/third party risk management programs, and developing cybersecurity policies or strategies to manage third party risk; and developing and enforcing policies to improve enterprise security posture using cybersecurity frameworks including NIST Cybersecurity Framework, ISO/IEC 27000 series, C2M2, NIST SP 800-53 and its publications, CRI profile, and Cloud Security Alliance CCM. Partial telecommute benefit available. Must report to and reside within commutable distance of the listed BCG office. Domestic/international travel required (up to 50%) based on client/company need. M-F, 9:00 a.m. to 6:00 p.m. 45+ hours per week. Multiple positions available. Salary: $190,000.00 - $210,000.00. Submit resume to Platinion@bcg.com. Reference Position Number: 10-2025 / 357.419.2. An Equal Opportunity Employer.

Minimum Salary: 190,000 Maximum Salary: 210,000 Salary Unit: Yearly