Global Information Security Senior Manager – Incident Response - The Boston Consulting Group

Under the general direction of the Information Security Director – Incident Response or delegate and working with other Risk, IT, BST, etc. colleagues across the firm, the roles will perform the following functions: 

Participate as an integral part of the Security Team and IT in general 

• Work closely with CSIRT team people & technology to detect, assess, and communicate cyber threats 
• Update the Security Team and other groups on industry trends and recommend initiatives to help lower risk 
• Define SIEM use cases to collect, monitor and analyze data to discover and discern trends, threats, and security risks associated with BCG assets and information. 
• Recommend and create SIEM rules to protect BCG and BCG client confidential information 
• Proactively monitoring and analyze logs via the SIEM for indicators of attack 
• Mentoring more junior team members 
• With the Information management team, follow-up on incidents, issues, and concerns related to data loss 
• Manage incidents related to data loss, producing alerts and escalating issues to appropriate management 
• Provide SIEM solutions and support for specific case team and/or project needs and requirements 
• Develop and produce operational metrics that demonstrate the effectiveness of controls, quantifies security risks and issues, confirms service levels, tracks incident type and volume 
• Apply industry and BCG security knowledge, policy, standards, practices to incident response 
• Respond to inquiries related to data loss and inappropriate sharing 
• Develop standard materials in support of BCG Information Security 
• Respond to, and to the extent possible, accommodate special requests and requirements 
• Track and report on security issues 
• All other tasks and responsibilities as requested by manager 

Maintain up-to-date knowledge of the cyber security industry as it relates to BCG including: 

• Attacker methods and TTPs 
• Standards, regulations and legislation. 
• Threats and vulnerabilities 
• Technologies and solutions 
• Industry best practices 
• Client requirements and concerns 

Provide input and represent BCG and client interests in the areas of: 

• Incident response and investigation 
• Incident response management for client security incidents 
• Work with IT Directors, Managers, Architects and staff to implement, monitor and maintain Confidentiality, Availability and Integrity of BCG information assets. 
• Track and manage materials provided to external providers and clients. 
• Maintain information security credentials and certifications as required to present a credible presence to internal and external audiences.