Job Description

WHAT YOU'LL DO
------------------



Under the general direction of the Information Security Manager or delegate and working with other IT, BST, etc. throughout the firm, the roles will perform the following functions• Participate as an integral part of the CSIRT Team, Risk and IT in general.
+ Work closely with CSIRT team people & technology to detect, assess, and communicate cyber threats.
+ Proactively monitoring and analyze logs via the SIEM for indicators of attack.
+ Lead proactive threat hunting initiatives, utilizing both internal and external threat intelligence sources, to identify potential threats and vulnerabilities.
+ Develop and refine threat hunting methodologies, leveraging indicators of compromise (IOCs), tactics, techniques, and procedures (TTPs), and threat actor profiles.
+ Collaborate closely with cross-functional teams to provide timely and relevant cyber threat intelligence updates, contributing to strategic security decisions.
+ Perform in-depth analysis of threat data from various sources to identify patterns, correlations, and trends, and translate findings into actionable intelligence.
+ Create and disseminate timely threat intelligence reports and alerts to stakeholders, enabling informed responses to emerging threats.
+ Define SIEM use cases to collect, monitor and analyze data to discover and discern trends, threats, and security risks associated with BCG assets and information.
• Maintain up-to-date knowledge of the cyber security industry as it relates to BCG including:
+ Threat Hunting Frameworks & Methodologies
+ Attacker methods and TTPs
+ Standards, regulations, and legislation
+ Technologies and solutions
+ Industry best practices
+ Threats and vulnerabilities
• Provide input and represent BCG and client interests in the areas of:
+ Threat Hunting, Incident response and investigation
+ Incident response management for client security incidents
+ Work with IT Directors, Managers, Architects and staff to implement, monitor and maintain Confidentiality, Availability and Integrity of BCG information assets
+ Track and manage materials provided to external providers and clients
+ Maintain information security credentials and certifications as required to present a credible presence to internal and external audiences.

YOU'RE GOOD AT
------------------



• Technical and functional expertise
+ Requires an advanced level of professional knowledge in information technology and security developed through a combination of advanced degrees in information technology and hands on experience
+ Must have previous career development experience which has provided management skills, motivational skills, interpersonal skills, and outstanding organizational effectiveness
+ Knowledge of the legal and regulatory landscape related to security and privacy in an international environment.
+ Very strong business sense with ability to relate technology issues to business.
+ Requires strong analytical skills and abilities including an extensive knowledge of software, database, operating systems, client server architecture and voice and data communication services and facilities, security and privacy, in an international setting.
+ Perform in-depth analysis of threat data from various sources to identify patterns, correlations, and trends, and translate findings into actionable intelligence.
+ Communication, interpersonal and teaming skills
+ Outstanding verbal and written communications skills are a must because of the requirement to represent BCG in communications with clients.
+ Calm demeanor, grace under fire, outstanding listening skills
• Leadership, impact and change
+ High level of initiative and self-motivation, resourceful, and patient with an iterative process
+ Ability to gain trust and commitment of others at different levels of the organization
+ Proven ability to challenge traditional way of operating and moving beyond the obvious
+ Translates BCG's broader strategic objectives and cascades these into own work plans, metrics and team work plans
+ Works effectively with significant ambiguity and fluctuating priorities and constrains
• Work management, organization and planning
+ Ability to evaluate and prepare detailed project plans for technology projects that will be implemented across the business. Manage local and global technology problems and direct staff in resolution of such problems. Evaluate and advise on the technology and systems components associated with projects adopted by BCG corporate and offices
+ Ability to monitor projects and direct staffs to ensure projects are aligned with the strategic objectives of the business
• Customer and business focus
+ Focuses on the most critical issues that have the highest impact on the organization and business needs
+ Working mode: "enabling", "value adding" and "expanding"
+ Treats all others with respect; generate trust
• People management
+ This position requires interaction with BCG Partners, BCG Case Team staff, client legal and security staff, Administrative Management, vendors, IT Management and Staff, Legal Department, Finance, Vendors, etc. Very strong relationship skills are essential. Excellent Leadership and teaming skills are required
• Values and ethics
+ Strong sense of confidentiality and integrity
+ Treats others with respect and generates trust
+ Establish relationships based on respect, trust and integrity.
• Work Environment
+ Must be able to perform successfully in a fast-paced, intellectually intense, service-oriented environment and to interpret rules and guidelines flexibly to enhance the business and in keeping with BCG's values and culture.
+ Experience working successfully within a complex matrix structured organization is essential.
+ It is necessary to have the ability to understand and manage complex reporting relationships and incorporate multiple cultures.

YOU BRING (EXPERIENCE & QUALIFICATIONS)
-------------------------------------------



• Bachelor's degree (or equivalent) in Computer Science, Cybersecurity, Information Security, or a related field.
• Minimum 5 years of information security experience, with a very strong technical background.
• Demonstrated Threat Hunting and Incident Response experience.
• Strong experience with threat hunting methodologies and tools, including but not limited to SIEM platforms, EDR solutions, network traffic analysis tools, and threat intelligence feeds.
• Proficiency in analyzing and interpreting security logs, network traffic, and endpoint data to identify and investigate potential security incidents.
• Strong analytical, problem-solving, and critical-thinking skills, with the ability to work effectively in high-pressure situations.
• Experience with threat intelligence frameworks and methodologies, including STIX/TAXII, MITRE ATT&CK framework, and other relevant standards.
• Expertise in analyzing malware and malicious artifacts, employing both static and dynamic analysis techniques.
• Security certification like GIAC Cyber Threat Intelligence (GCTI), GIAC Certified Intrusion Analyst (GCIA) or GIAC Certified Incident Handler (GCIH) or equivalent a plus.

YOU'LL WORK WITH
--------------------



BCG's information technology group collaboratively delivers the latest digital technologies that enable our consultants to lead and our business to grow. For our IT jobs, we seek individuals with expertise in the areas of IT infrastructure, application development, business systems, collaborative and social technologies, information security, and project leadership.