Job Description Senior Embedded Software Engineer Jobs in Andover at Stannah – Join Our Team! We have an exciting opportunity for an experienced Senior Embedded Software Engineer to join Stannah based at Andover. This job will involve designing, developing, testing, and delivering embedded software solutions for motion control and safety-critical systems in the stairlift industry. Reporting to the Lead Software Engineer, you will be in a hands-on role and will be able to design, develop and recommend new technical directions based upon your extensive experience. You will collaborate with multidisciplinary teams to bring innovative electromechanical products to life and support existing ranges with upgrades and new features. Candidates must have unrestricted right to work, sponsorship is not offered. As the Senior Embedded Software Engineer, you will work Monday to Thursday 08:00 to 16:45, Friday 08:00 to 13:00 This job is a permanent contract. This is a great opportunity for a highly skilled embedded software professional who is passionate about improving lives through technology, eager to solve complex engineering problems, and thrives in a collaborative, cross-functional environment. To be successful as the Senior Embedded Software Engineer, it is essential that you have previous experience in embedded systems development using C and C++ on 32-bit microcontrollers. You will be able to demonstrate extensive experience in control systems, safety-critical systems (EN61508/SIL2 or equivalent), and programming in Python. Senior Embedded Software Engineer Responsibilities: Work closely with the Lead Software Engineer to help develop the technological direction of our stairlift systems and CASE tools Develop embedded software in C/C++ Develop Python applications for testing our new products and for analytics Design and deliver embedded software for safety critical systems Design and implement algorithms for sensor data processing and closed loop motion control systems Support existing products through enhancements and feature upgrades Work closely with electronics, mechanical, and test teams to deliver complete solutions Mentor more junior staff to assist their development Please see the full job description here: Senior Embedding Software Engineer Job Description Qualifications Senior Embedded Software Engineer Requirements: Highly experienced in embedded C/C++ on 32-bit microcontrollers Extensive background in motion control, sensor systems, and safety-critical software (e.g. EN61508 or equivalent) Experienced with MISRA standards and unit testing Working knowledge of Python for internal tools and testing support Excellent documentation, communication, and cross-functional collaboration skills Additional Information If you have previous experience working in a Senior role as an Embedded Software Engineer, or similar, and are looking for a new opportunity based in Andover, please click the "Apply Now" button or contact us for further information. Benefits Include: Competitive Salary, paid on a monthly basis Profit Share Bonus Scheme, paid to all employees every quarter. Based on Group Company profits 25 days holiday, plus bank holidays Holiday scheme to buy extra days’ annual leave Pension Scheme. Matched contribution/salary sacrifice SimplyHealth Cash Plan. Allows you to claim towards health costs. For example, dental, optical, physiotherapy, chiropody treatments and more Life Assurance Scheme Long Service award scheme, with holiday benefit Company Benefits Discount Rewards Scheme. Includes shop discounts, hotel discounts, days out, and more Employee Assistance Programme. A workplace initiative to support and enhance well-being Company Sick Pay Enhanced maternity and paternity provision Free parking HAPO Stannah Group is an equal opportunities employer. We welcome and encourage applications from candidates of all backgrounds, identities, and abilities. We are a Disability Confident Committed Employer. We treat all our job applicants fairly and with respect. Our employees are the heart of our business. We take great care to create a working environment where everyone feels valued. Join our team and be a part of our diverse and inclusive community! We reserve the right to close this vacancy early if we receive high numbers of applications for the role. Appropriate right to work must be held by applicants. Sponsorship is not available. PandoLogic. Keywords: Embedded Software Engineer, Location: Andover, ENG - SP10 4HB

Locations : Boston | Atlanta | London Who We Are Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact. To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures—and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do The Global Platform Team Lead and Senior Director - IT Security is responsible for leading the design, delivery, and continuous evolution of BCG's security platforms across identity, device, and data protection domains. This role ensures end-to-end security engineering across all technology environments, including cloud, on-prem, and hybrid systems. The leader will drive strategic planning, execution, and operations of scalable, automated, and resilient security controls that protect BCG's global operations and users, while enabling innovation and agility across BCG Core, BCG X, and CT worldwide. This role is also accountable for embedding security within DevSecOps practices, enforcing automation at scale, and applying Site Reliability Engineering (SRE) principles across all security services. The role requires strong partnership with ISRM, with a focus on balancing and prioritizing security requirements, automation opportunities, user experience needs, and broader business outcomes. Key Responsibilities: * Strategic Leadership & Transformation: * Define and execute a unified security engineering strategy that addresses identity, endpoint, and data protection across all environments. * Lead the design and implementation of scalable, automated security solutions that integrate seamlessly into enterprise platforms and user experiences. * Establish a global security architecture and engineering roadmap focused on prevention, detection, and rapid response. * Drive continuous improvement of security posture while aligning with business needs, regulatory requirements, and user experience expectations. * Champion DevSecOps practices to embed security early into development and delivery workflows. * Security Platform Engineering: * Lead end-to-end engineering for identity and access management (IAM), including authentication, authorization, and privileged access controls. * Oversee endpoint security architecture and enforcement, ensuring comprehensive coverage for threat detection, malware prevention, and device compliance. * Build and operate scalable data protection solutions, including data loss prevention (DLP), secrets management, encryption, and classification. * Integrate security controls into CI/CD pipelines, cloud-native services, and on-prem platforms to enforce security-by-design principles. * Deliver security capabilities that support modern work scenarios, remote access, zero-trust networking, and AI/ML workloads. * Leverage automation frameworks and IaC to improve scalability and reduce manual intervention. * Operational Security, SRE & Assurance: * Ensure security platforms are resilient, continuously monitored, and designed for 24x7 support and incident response readiness. * Embed security telemetry and observability to enable proactive threat detection and automated response. * Apply SRE principles to improve reliability, performance, and maintainability of security services. * Lead platform health, patching automation, and vulnerability remediation workflows. * Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. * Compliance, Governance & Risk Management: * Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. * Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. * Operationalize policy enforcement through automated controls and continuous compliance checks. * Lead risk mitigation efforts with technical solutions that scale across diverse user and system profiles. * Financial & Vendor Management: * Manage security platform budgets and investments with a focus on cost optimization and long-term value. * Evaluate and manage third-party vendors and partners, ensuring they meet technical, contractual, and security expectations. * Lead procurement and renewal cycles in alignment with operational and architectural strategies. * Leadership & Talent Development: * Build and mentor a global team of security engineers, fostering a high-performance, collaborative, and forward-thinking culture. * Drive internal knowledge sharing and upskilling programs across security architecture, automation, and secure software engineering. * Collaborate cross-functionally with platform, product, and enterprise architecture teams to embed security early and often. What You'll Bring Required Qualifications: * 10 years of experience in cybersecurity, security engineering, or platform security roles. * 5 years in a senior leadership position with accountability for enterprise-scale security platforms. * Deep expertise in IAM, endpoint security, and data protection technologies, with proven ability to design and scale global solutions. * Experience with security engineering in hybrid and cloud-native environments (AWS, Azure, GCP). * Proven track record in automating security controls, implementing zero-trust models, and supporting 24x7 security operations. * Strong understanding of compliance frameworks and risk management strategies. Preferred Qualifications: * Certifications such as CISSP, CCSP, CISM, AWS/Azure Security Specialty, or equivalent. * Experience with tools like Okta, Azure AD, CrowdStrike, Tanium, Zscaler, Vault, and other modern security platforms. * Familiarity with DevSecOps principles, Infrastructure as Code, and secure software development practices. Who You'll Work With Work Environment & Additional Information: * Hybrid or on-site work model. * Occasional travel may be required for business, vendor, or team engagement. * Ability to operate in a fast-paced, complex environment, balancing long-term strategy with operational agility. Additional info For US locations only In the US, we have a compensation transparency approach. Total compensation for this role includes base salary, annual discretionary performance bonus, retirement contribution, and a market leading benefits package described below. * The base salary range for this role in Boston is $183,000.00 - $237,000.00. This is an estimated range, however, specific base salaries within the range depend on various factors such as experience and skill set. It is not common for new BCG employees to be hired at the high-end of the salary range. BCG regularly reviews its ranges to ensure market competitiveness. In addition to your base salary, your total compensation will include a bonus of up to 45% and a generous retirement contribution that starts at 10%. Senior Directors/Executive Directors are also eligible for a Firm Performance Bonus. All of our plans provide best in class coverage: * Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children * Low $10 (USD) copays for trips to the doctor, urgent care visits and prescriptions for generic drugs * Dental coverage, including up to $5,000 in orthodontia benefits * Vision insurance with coverage for both glasses and contact lenses annually * Reimbursement for gym memberships and other fitness activities * Fully vested Profit Sharing Retirement Fund contributions made annually, whether you contribute or not, plus the option for employees to make personal contributions to a 401(k) plan * Paid Parental Leave and other family benefits such as elective egg freezing, surrogacy, and adoption reimbursement * Generous paid time off including 12 holidays per year, an annual office closure between Christmas and New Years, and 20 vacation days per year (earned at 1.66 days per month) * Paid sick time on an as needed basis Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws. BCG is an E - Verify Employer. Click here (https://careers.bcg.com/global/en/e-verify) for more information on E-Verify.

Locations : Boston | Atlanta | London Who We Are Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact. To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures—and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do The Global Platform Team Lead and Senior Director - IT Security is responsible for leading the design, delivery, and continuous evolution of BCG's security platforms across identity, device, and data protection domains. This role ensures end-to-end security engineering across all technology environments, including cloud, on-prem, and hybrid systems. The leader will drive strategic planning, execution, and operations of scalable, automated, and resilient security controls that protect BCG's global operations and users, while enabling innovation and agility across BCG Core, BCG X, and CT worldwide. This role is also accountable for embedding security within DevSecOps practices, enforcing automation at scale, and applying Site Reliability Engineering (SRE) principles across all security services. The role requires strong partnership with ISRM, with a focus on balancing and prioritizing security requirements, automation opportunities, user experience needs, and broader business outcomes. Key Responsibilities: * Strategic Leadership & Transformation: * Define and execute a unified security engineering strategy that addresses identity, endpoint, and data protection across all environments. * Lead the design and implementation of scalable, automated security solutions that integrate seamlessly into enterprise platforms and user experiences. * Establish a global security architecture and engineering roadmap focused on prevention, detection, and rapid response. * Drive continuous improvement of security posture while aligning with business needs, regulatory requirements, and user experience expectations. * Champion DevSecOps practices to embed security early into development and delivery workflows. * Security Platform Engineering: * Lead end-to-end engineering for identity and access management (IAM), including authentication, authorization, and privileged access controls. * Oversee endpoint security architecture and enforcement, ensuring comprehensive coverage for threat detection, malware prevention, and device compliance. * Build and operate scalable data protection solutions, including data loss prevention (DLP), secrets management, encryption, and classification. * Integrate security controls into CI/CD pipelines, cloud-native services, and on-prem platforms to enforce security-by-design principles. * Deliver security capabilities that support modern work scenarios, remote access, zero-trust networking, and AI/ML workloads. * Leverage automation frameworks and IaC to improve scalability and reduce manual intervention. * Operational Security, SRE & Assurance: * Ensure security platforms are resilient, continuously monitored, and designed for 24x7 support and incident response readiness. * Embed security telemetry and observability to enable proactive threat detection and automated response. * Apply SRE principles to improve reliability, performance, and maintainability of security services. * Lead platform health, patching automation, and vulnerability remediation workflows. * Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. * Compliance, Governance & Risk Management: * Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. * Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. * Operationalize policy enforcement through automated controls and continuous compliance checks. * Lead risk mitigation efforts with technical solutions that scale across diverse user and system profiles. * Financial & Vendor Management: * Manage security platform budgets and investments with a focus on cost optimization and long-term value. * Evaluate and manage third-party vendors and partners, ensuring they meet technical, contractual, and security expectations. * Lead procurement and renewal cycles in alignment with operational and architectural strategies. * Leadership & Talent Development: * Build and mentor a global team of security engineers, fostering a high-performance, collaborative, and forward-thinking culture. * Drive internal knowledge sharing and upskilling programs across security architecture, automation, and secure software engineering. * Collaborate cross-functionally with platform, product, and enterprise architecture teams to embed security early and often. What You'll Bring Required Qualifications: * 10 years of experience in cybersecurity, security engineering, or platform security roles. * 5 years in a senior leadership position with accountability for enterprise-scale security platforms. * Deep expertise in IAM, endpoint security, and data protection technologies, with proven ability to design and scale global solutions. * Experience with security engineering in hybrid and cloud-native environments (AWS, Azure, GCP). * Proven track record in automating security controls, implementing zero-trust models, and supporting 24x7 security operations. * Strong understanding of compliance frameworks and risk management strategies. Preferred Qualifications: * Certifications such as CISSP, CCSP, CISM, AWS/Azure Security Specialty, or equivalent. * Experience with tools like Okta, Azure AD, CrowdStrike, Tanium, Zscaler, Vault, and other modern security platforms. * Familiarity with DevSecOps principles, Infrastructure as Code, and secure software development practices. Who You'll Work With Work Environment & Additional Information: * Hybrid or on-site work model. * Occasional travel may be required for business, vendor, or team engagement. * Ability to operate in a fast-paced, complex environment, balancing long-term strategy with operational agility. Additional info For US locations only In the US, we have a compensation transparency approach. Total compensation for this role includes base salary, annual discretionary performance bonus, retirement contribution, and a market leading benefits package described below. * The base salary range for this role in Boston is $183,000.00 - $237,000.00. This is an estimated range, however, specific base salaries within the range depend on various factors such as experience and skill set. It is not common for new BCG employees to be hired at the high-end of the salary range. BCG regularly reviews its ranges to ensure market competitiveness. In addition to your base salary, your total compensation will include a bonus of up to 45% and a generous retirement contribution that starts at 10%. Senior Directors/Executive Directors are also eligible for a Firm Performance Bonus. All of our plans provide best in class coverage: * Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children * Low $10 (USD) copays for trips to the doctor, urgent care visits and prescriptions for generic drugs * Dental coverage, including up to $5,000 in orthodontia benefits * Vision insurance with coverage for both glasses and contact lenses annually * Reimbursement for gym memberships and other fitness activities * Fully vested Profit Sharing Retirement Fund contributions made annually, whether you contribute or not, plus the option for employees to make personal contributions to a 401(k) plan * Paid Parental Leave and other family benefits such as elective egg freezing, surrogacy, and adoption reimbursement * Generous paid time off including 12 holidays per year, an annual office closure between Christmas and New Years, and 20 vacation days per year (earned at 1.66 days per month) * Paid sick time on an as needed basis Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws. BCG is an E - Verify Employer. Click here (https://careers.bcg.com/global/en/e-verify) for more information on E-Verify.

Locations : Boston | Atlanta | London Who We Are Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact. To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures—and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do The Global Platform Team Lead and Senior Director - IT Security is responsible for leading the design, delivery, and continuous evolution of BCG's security platforms across identity, device, and data protection domains. This role ensures end-to-end security engineering across all technology environments, including cloud, on-prem, and hybrid systems. The leader will drive strategic planning, execution, and operations of scalable, automated, and resilient security controls that protect BCG's global operations and users, while enabling innovation and agility across BCG Core, BCG X, and CT worldwide. This role is also accountable for embedding security within DevSecOps practices, enforcing automation at scale, and applying Site Reliability Engineering (SRE) principles across all security services. The role requires strong partnership with ISRM, with a focus on balancing and prioritizing security requirements, automation opportunities, user experience needs, and broader business outcomes. Key Responsibilities: * Strategic Leadership & Transformation: * Define and execute a unified security engineering strategy that addresses identity, endpoint, and data protection across all environments. * Lead the design and implementation of scalable, automated security solutions that integrate seamlessly into enterprise platforms and user experiences. * Establish a global security architecture and engineering roadmap focused on prevention, detection, and rapid response. * Drive continuous improvement of security posture while aligning with business needs, regulatory requirements, and user experience expectations. * Champion DevSecOps practices to embed security early into development and delivery workflows. * Security Platform Engineering: * Lead end-to-end engineering for identity and access management (IAM), including authentication, authorization, and privileged access controls. * Oversee endpoint security architecture and enforcement, ensuring comprehensive coverage for threat detection, malware prevention, and device compliance. * Build and operate scalable data protection solutions, including data loss prevention (DLP), secrets management, encryption, and classification. * Integrate security controls into CI/CD pipelines, cloud-native services, and on-prem platforms to enforce security-by-design principles. * Deliver security capabilities that support modern work scenarios, remote access, zero-trust networking, and AI/ML workloads. * Leverage automation frameworks and IaC to improve scalability and reduce manual intervention. * Operational Security, SRE & Assurance: * Ensure security platforms are resilient, continuously monitored, and designed for 24x7 support and incident response readiness. * Embed security telemetry and observability to enable proactive threat detection and automated response. * Apply SRE principles to improve reliability, performance, and maintainability of security services. * Lead platform health, patching automation, and vulnerability remediation workflows. * Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. * Compliance, Governance & Risk Management: * Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. * Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. * Operationalize policy enforcement through automated controls and continuous compliance checks. * Lead risk mitigation efforts with technical solutions that scale across diverse user and system profiles. * Financial & Vendor Management: * Manage security platform budgets and investments with a focus on cost optimization and long-term value. * Evaluate and manage third-party vendors and partners, ensuring they meet technical, contractual, and security expectations. * Lead procurement and renewal cycles in alignment with operational and architectural strategies. * Leadership & Talent Development: * Build and mentor a global team of security engineers, fostering a high-performance, collaborative, and forward-thinking culture. * Drive internal knowledge sharing and upskilling programs across security architecture, automation, and secure software engineering. * Collaborate cross-functionally with platform, product, and enterprise architecture teams to embed security early and often. What You'll Bring Required Qualifications: * 10 years of experience in cybersecurity, security engineering, or platform security roles. * 5 years in a senior leadership position with accountability for enterprise-scale security platforms. * Deep expertise in IAM, endpoint security, and data protection technologies, with proven ability to design and scale global solutions. * Experience with security engineering in hybrid and cloud-native environments (AWS, Azure, GCP). * Proven track record in automating security controls, implementing zero-trust models, and supporting 24x7 security operations. * Strong understanding of compliance frameworks and risk management strategies. Preferred Qualifications: * Certifications such as CISSP, CCSP, CISM, AWS/Azure Security Specialty, or equivalent. * Experience with tools like Okta, Azure AD, CrowdStrike, Tanium, Zscaler, Vault, and other modern security platforms. * Familiarity with DevSecOps principles, Infrastructure as Code, and secure software development practices. Who You'll Work With Work Environment & Additional Information: * Hybrid or on-site work model. * Occasional travel may be required for business, vendor, or team engagement. * Ability to operate in a fast-paced, complex environment, balancing long-term strategy with operational agility. Additional info For US locations only In the US, we have a compensation transparency approach. Total compensation for this role includes base salary, annual discretionary performance bonus, retirement contribution, and a market leading benefits package described below. * The base salary range for this role in Boston is $183,000.00 - $237,000.00. This is an estimated range, however, specific base salaries within the range depend on various factors such as experience and skill set. It is not common for new BCG employees to be hired at the high-end of the salary range. BCG regularly reviews its ranges to ensure market competitiveness. In addition to your base salary, your total compensation will include a bonus of up to 45% and a generous retirement contribution that starts at 10%. Senior Directors/Executive Directors are also eligible for a Firm Performance Bonus. All of our plans provide best in class coverage: * Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children * Low $10 (USD) copays for trips to the doctor, urgent care visits and prescriptions for generic drugs * Dental coverage, including up to $5,000 in orthodontia benefits * Vision insurance with coverage for both glasses and contact lenses annually * Reimbursement for gym memberships and other fitness activities * Fully vested Profit Sharing Retirement Fund contributions made annually, whether you contribute or not, plus the option for employees to make personal contributions to a 401(k) plan * Paid Parental Leave and other family benefits such as elective egg freezing, surrogacy, and adoption reimbursement * Generous paid time off including 12 holidays per year, an annual office closure between Christmas and New Years, and 20 vacation days per year (earned at 1.66 days per month) * Paid sick time on an as needed basis Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws. BCG is an E - Verify Employer. Click here (https://careers.bcg.com/global/en/e-verify) for more information on E-Verify.

Locations : Boston | Atlanta | London Who We Are Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact. To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures—and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do The Global Platform Team Lead and Senior Director - IT Security is responsible for leading the design, delivery, and continuous evolution of BCG's security platforms across identity, device, and data protection domains. This role ensures end-to-end security engineering across all technology environments, including cloud, on-prem, and hybrid systems. The leader will drive strategic planning, execution, and operations of scalable, automated, and resilient security controls that protect BCG's global operations and users, while enabling innovation and agility across BCG Core, BCG X, and CT worldwide. This role is also accountable for embedding security within DevSecOps practices, enforcing automation at scale, and applying Site Reliability Engineering (SRE) principles across all security services. The role requires strong partnership with ISRM, with a focus on balancing and prioritizing security requirements, automation opportunities, user experience needs, and broader business outcomes. Key Responsibilities: * Strategic Leadership & Transformation: * Define and execute a unified security engineering strategy that addresses identity, endpoint, and data protection across all environments. * Lead the design and implementation of scalable, automated security solutions that integrate seamlessly into enterprise platforms and user experiences. * Establish a global security architecture and engineering roadmap focused on prevention, detection, and rapid response. * Drive continuous improvement of security posture while aligning with business needs, regulatory requirements, and user experience expectations. * Champion DevSecOps practices to embed security early into development and delivery workflows. * Security Platform Engineering: * Lead end-to-end engineering for identity and access management (IAM), including authentication, authorization, and privileged access controls. * Oversee endpoint security architecture and enforcement, ensuring comprehensive coverage for threat detection, malware prevention, and device compliance. * Build and operate scalable data protection solutions, including data loss prevention (DLP), secrets management, encryption, and classification. * Integrate security controls into CI/CD pipelines, cloud-native services, and on-prem platforms to enforce security-by-design principles. * Deliver security capabilities that support modern work scenarios, remote access, zero-trust networking, and AI/ML workloads. * Leverage automation frameworks and IaC to improve scalability and reduce manual intervention. * Operational Security, SRE & Assurance: * Ensure security platforms are resilient, continuously monitored, and designed for 24x7 support and incident response readiness. * Embed security telemetry and observability to enable proactive threat detection and automated response. * Apply SRE principles to improve reliability, performance, and maintainability of security services. * Lead platform health, patching automation, and vulnerability remediation workflows. * Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. * Compliance, Governance & Risk Management: * Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. * Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. * Operationalize policy enforcement through automated controls and continuous compliance checks. * Lead risk mitigation efforts with technical solutions that scale across diverse user and system profiles. * Financial & Vendor Management: * Manage security platform budgets and investments with a focus on cost optimization and long-term value. * Evaluate and manage third-party vendors and partners, ensuring they meet technical, contractual, and security expectations. * Lead procurement and renewal cycles in alignment with operational and architectural strategies. * Leadership & Talent Development: * Build and mentor a global team of security engineers, fostering a high-performance, collaborative, and forward-thinking culture. * Drive internal knowledge sharing and upskilling programs across security architecture, automation, and secure software engineering. * Collaborate cross-functionally with platform, product, and enterprise architecture teams to embed security early and often. What You'll Bring Required Qualifications: * 10 years of experience in cybersecurity, security engineering, or platform security roles. * 5 years in a senior leadership position with accountability for enterprise-scale security platforms. * Deep expertise in IAM, endpoint security, and data protection technologies, with proven ability to design and scale global solutions. * Experience with security engineering in hybrid and cloud-native environments (AWS, Azure, GCP). * Proven track record in automating security controls, implementing zero-trust models, and supporting 24x7 security operations. * Strong understanding of compliance frameworks and risk management strategies. Preferred Qualifications: * Certifications such as CISSP, CCSP, CISM, AWS/Azure Security Specialty, or equivalent. * Experience with tools like Okta, Azure AD, CrowdStrike, Tanium, Zscaler, Vault, and other modern security platforms. * Familiarity with DevSecOps principles, Infrastructure as Code, and secure software development practices. Who You'll Work With Work Environment & Additional Information: * Hybrid or on-site work model. * Occasional travel may be required for business, vendor, or team engagement. * Ability to operate in a fast-paced, complex environment, balancing long-term strategy with operational agility. Additional info For US locations only In the US, we have a compensation transparency approach. Total compensation for this role includes base salary, annual discretionary performance bonus, retirement contribution, and a market leading benefits package described below. * The base salary range for this role in Boston is $183,000.00 - $237,000.00. This is an estimated range, however, specific base salaries within the range depend on various factors such as experience and skill set. It is not common for new BCG employees to be hired at the high-end of the salary range. BCG regularly reviews its ranges to ensure market competitiveness. In addition to your base salary, your total compensation will include a bonus of up to 45% and a generous retirement contribution that starts at 10%. Senior Directors/Executive Directors are also eligible for a Firm Performance Bonus. All of our plans provide best in class coverage: * Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children * Low $10 (USD) copays for trips to the doctor, urgent care visits and prescriptions for generic drugs * Dental coverage, including up to $5,000 in orthodontia benefits * Vision insurance with coverage for both glasses and contact lenses annually * Reimbursement for gym memberships and other fitness activities * Fully vested Profit Sharing Retirement Fund contributions made annually, whether you contribute or not, plus the option for employees to make personal contributions to a 401(k) plan * Paid Parental Leave and other family benefits such as elective egg freezing, surrogacy, and adoption reimbursement * Generous paid time off including 12 holidays per year, an annual office closure between Christmas and New Years, and 20 vacation days per year (earned at 1.66 days per month) * Paid sick time on an as needed basis Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws. BCG is an E - Verify Employer. Click here (https://careers.bcg.com/global/en/e-verify) for more information on E-Verify.

Locations : Boston | Atlanta | London Who We Are Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact. To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures—and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do The Global Platform Team Lead and Senior Director - IT Security is responsible for leading the design, delivery, and continuous evolution of BCG's security platforms across identity, device, and data protection domains. This role ensures end-to-end security engineering across all technology environments, including cloud, on-prem, and hybrid systems. The leader will drive strategic planning, execution, and operations of scalable, automated, and resilient security controls that protect BCG's global operations and users, while enabling innovation and agility across BCG Core, BCG X, and CT worldwide. This role is also accountable for embedding security within DevSecOps practices, enforcing automation at scale, and applying Site Reliability Engineering (SRE) principles across all security services. The role requires strong partnership with ISRM, with a focus on balancing and prioritizing security requirements, automation opportunities, user experience needs, and broader business outcomes. Key Responsibilities: * Strategic Leadership & Transformation: * Define and execute a unified security engineering strategy that addresses identity, endpoint, and data protection across all environments. * Lead the design and implementation of scalable, automated security solutions that integrate seamlessly into enterprise platforms and user experiences. * Establish a global security architecture and engineering roadmap focused on prevention, detection, and rapid response. * Drive continuous improvement of security posture while aligning with business needs, regulatory requirements, and user experience expectations. * Champion DevSecOps practices to embed security early into development and delivery workflows. * Security Platform Engineering: * Lead end-to-end engineering for identity and access management (IAM), including authentication, authorization, and privileged access controls. * Oversee endpoint security architecture and enforcement, ensuring comprehensive coverage for threat detection, malware prevention, and device compliance. * Build and operate scalable data protection solutions, including data loss prevention (DLP), secrets management, encryption, and classification. * Integrate security controls into CI/CD pipelines, cloud-native services, and on-prem platforms to enforce security-by-design principles. * Deliver security capabilities that support modern work scenarios, remote access, zero-trust networking, and AI/ML workloads. * Leverage automation frameworks and IaC to improve scalability and reduce manual intervention. * Operational Security, SRE & Assurance: * Ensure security platforms are resilient, continuously monitored, and designed for 24x7 support and incident response readiness. * Embed security telemetry and observability to enable proactive threat detection and automated response. * Apply SRE principles to improve reliability, performance, and maintainability of security services. * Lead platform health, patching automation, and vulnerability remediation workflows. * Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. * Compliance, Governance & Risk Management: * Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. * Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. * Operationalize policy enforcement through automated controls and continuous compliance checks. * Lead risk mitigation efforts with technical solutions that scale across diverse user and system profiles. * Financial & Vendor Management: * Manage security platform budgets and investments with a focus on cost optimization and long-term value. * Evaluate and manage third-party vendors and partners, ensuring they meet technical, contractual, and security expectations. * Lead procurement and renewal cycles in alignment with operational and architectural strategies. * Leadership & Talent Development: * Build and mentor a global team of security engineers, fostering a high-performance, collaborative, and forward-thinking culture. * Drive internal knowledge sharing and upskilling programs across security architecture, automation, and secure software engineering. * Collaborate cross-functionally with platform, product, and enterprise architecture teams to embed security early and often. What You'll Bring Required Qualifications: * 10 years of experience in cybersecurity, security engineering, or platform security roles. * 5 years in a senior leadership position with accountability for enterprise-scale security platforms. * Deep expertise in IAM, endpoint security, and data protection technologies, with proven ability to design and scale global solutions. * Experience with security engineering in hybrid and cloud-native environments (AWS, Azure, GCP). * Proven track record in automating security controls, implementing zero-trust models, and supporting 24x7 security operations. * Strong understanding of compliance frameworks and risk management strategies. Preferred Qualifications: * Certifications such as CISSP, CCSP, CISM, AWS/Azure Security Specialty, or equivalent. * Experience with tools like Okta, Azure AD, CrowdStrike, Tanium, Zscaler, Vault, and other modern security platforms. * Familiarity with DevSecOps principles, Infrastructure as Code, and secure software development practices. Who You'll Work With Work Environment & Additional Information: * Hybrid or on-site work model. * Occasional travel may be required for business, vendor, or team engagement. * Ability to operate in a fast-paced, complex environment, balancing long-term strategy with operational agility. Additional info For US locations only In the US, we have a compensation transparency approach. Total compensation for this role includes base salary, annual discretionary performance bonus, retirement contribution, and a market leading benefits package described below. * The base salary range for this role in Boston is $183,000.00 - $237,000.00. This is an estimated range, however, specific base salaries within the range depend on various factors such as experience and skill set. It is not common for new BCG employees to be hired at the high-end of the salary range. BCG regularly reviews its ranges to ensure market competitiveness. In addition to your base salary, your total compensation will include a bonus of up to 45% and a generous retirement contribution that starts at 10%. Senior Directors/Executive Directors are also eligible for a Firm Performance Bonus. All of our plans provide best in class coverage: * Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children * Low $10 (USD) copays for trips to the doctor, urgent care visits and prescriptions for generic drugs * Dental coverage, including up to $5,000 in orthodontia benefits * Vision insurance with coverage for both glasses and contact lenses annually * Reimbursement for gym memberships and other fitness activities * Fully vested Profit Sharing Retirement Fund contributions made annually, whether you contribute or not, plus the option for employees to make personal contributions to a 401(k) plan * Paid Parental Leave and other family benefits such as elective egg freezing, surrogacy, and adoption reimbursement * Generous paid time off including 12 holidays per year, an annual office closure between Christmas and New Years, and 20 vacation days per year (earned at 1.66 days per month) * Paid sick time on an as needed basis Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws. BCG is an E - Verify Employer. Click here (https://careers.bcg.com/global/en/e-verify) for more information on E-Verify.