Join Us in BCG Worldwide IT! We are seeking an exceptional data protection expert to play key role in our growing Information Protection team, as an IT Data Protection Security Engineer.
You will be part of a growing team, providing world class Security Engineering, Architecture and Operations, driving and supporting improvements globally to our Information Protection Portfolio.
You will be:
Engaging collaboratively with application development, data protection, information security, and risk management teams to understand and implement data security solutions.
Supporting vendor assessments, including proof of concepts & security technologies research
Continuously improving data protection services based on input from a diverse network of internal and external stakeholders, technology teams and security industry at large
Creating and maintaining technical service roadmaps for our data protection services
Contributing to both architectural and operational effectiveness of the Secure Data team.
YOU’RE GOOD AT
Exceptional verbal and written communication skills in English is required; command of additional languages will be considered a plus
You can successfully interface and connect with skilled technologists and non-technical stakeholders, including members of the C-suite
Ability to work in an Agile environment leveraging strong work management, organizational and planning skills
You have an ability to work well independently, as well as part of a geographically dispersed team bringing a sense of urgency to the tasks at hand
Must have well-honed and credible influencing skills including the ability to negotiate and gain consensus between involved parties where competing priorities exist
You’re able to effectively handle difficult and stressful situations with poise, tact and patience, while demonstrating a sense of urgency.
YOU BRING (EXPERIENCE & QUALIFICATIONS)
Minimum 8+ years of data loss solutions and/or security engineering experience with large scale globally distributed implementations
Extensive experience in data-at-rest and data-in-transit, data security techniques and methodologies
Experience of using relevant DLP tools such as Symantec DLP, Zscaler CASB, MS Purview & similar
Experience in managing DLP IM Management and have good understanding of end-to-end IM processes
Experience of working with MS Defender and Intune.
Experience of using relevant IRM/Data Classification/Data Discovery tools
Extensive experience in a globally distributed environment spanning multiple platforms such as AWS, Azure and GCP
Experience of cloud security techniques in a DevSecOps and agile working environment
Experience in understanding and capturing requirements, continuously improve and develop technical policies and processes
Experience leading and mentoring fellow team members, across internal and vendor teams.
Desirable
Familiarity with Secrets Management and/or Certificate Lifecycle Management
Familiarity with cryptographic key management, PKI lifecycle management
Familiarity with Cloud Security Posture Management & Cloud Workload Protection
Understanding of CI/CD pipelines
Understanding of infrastructure as a code and concepts
Understanding of systems configuration orchestration
Related security certifications (e.g. CISSP, CCSP, CCSK, SABSA, ITIL etc.).
YOU'LL WORK WITH
You will be part of a diverse and dynamic team of protection specialists located across Europe, Asia, and the Americas, working in a highly collaborative environment with like-minded colleagues