Cyber Security Engineer - Senior Manager

WHAT YOU'LL DO BCG FED is a US federally compliant environment at BCG. The BCG FED Organization is seeking a knowledgeable and talented Lead Security Engineer that will be responsible for operating and maintaining the BCG Cybersecurity Incident Response and Risk Management programs in alignment with NIST 800-171, CMMC and IT Security best practices. The SOC Senior Manager manages the outsourced SOC, and internal playbooks relating to IT security. They will ensure appropriate application of risk management methodologies, security products, and technologies to protect the company’s systems and information. Your duties will include: Operating IAW with relevant industry standards and frameworks (i.e. FedRAMP, NIST 800-171, CMMC, etc) Be the subject matter expert (SME) for all things threat in the environment Manage BCG Federal’s MSSP day to day operations Managing, monitoring, and implementation of security technologies related to Incident Response Understanding the current threat landscape and helping to develop risk mitigation strategies Creation of documentation and knowledgebase articles regarding Cyber Incident policies and procedures Provide monthly reporting metrics on threats and vulnerabilities Assist with development of the company’s Asset Management processes and procedures. Create KPI’s, metrics, dashboards and reporting to measure the performance of the security organization. YOU'RE GOOD AT Strong comprehensive problem-solving skills to identify and solve issues quickly Ability to work well independently as well as part of a virtual, geographically dispersed team bringing a sense of urgency to the tasks at hand Effectively handle difficult and stressful situations with poise, tact and patience, while demonstrating a sense of urgency Strong analytical skills, detail-oriented, and quality-minded Exceptional verbal and written communication and presentation skills Demonstrated ability to operate and innovate in a small team with a fast-paced environment, balancing both strategic and tactical needs. YOU BRING (EXPERIENCE & QUALIFICATIONS) Minimum of 5 years of information security experience with a strong background in IT infrastructure, Incident Response, and Vulnerability Management Experience with the management of Managed Security Service Providers Experience with EDR and Vulnerability Management tools Technical knowledge and hands on experience with Azure Security services and technologies Ability to obtain a Security Clearance (if required) Experience working with the Microsoft G5 Security stack U.S. Citizenship Required Cloud Security YOU'LL WORK WITH This individual will collaborate with other BCG information technology teams such as Identity, Information Management, Hosting, Devices Team – Windows/Mac/Mobile, Security, Voice and Networking to ensure alignment with BCG’s overall Cybersecurity Incident Response and IT Architecture plan.