Who We Are

Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact.

To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures—and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive.

What You'll Do

As a SecOps Engineer, you will be ensuring security, automation, and cost efficiency. You will leverage expertise in cloud architecture, automation, security, and operations to build resilient, cost-effective, and secure environments.

Job Responsibilities:

Security Monitoring and Incident Response: Monitor security alerts and respond to incidents using tools like Microsoft Defender, Sentinel, and Tanium.Endpoint Security Management: Implement and manage endpoint security solutions, including Intune and other endpoint protection tools.Network Security: Configure and maintain network security devices such as firewalls, IDS/IPS, and Zscaler solutions.Identity and Access Management: Manage identity and access controls using EntraID and Azure security services.Compliance and Risk Management: Ensure compliance with federal regulations, standards, and manage security risks, including knowledge of CMMC 2.0 and NIST 800.171.Automation and Scripting: Develop and maintain scripts to automate security tasks and improve operational efficiency.Container Security: Manage and secure containerized applications using Azure Container Registry.Operating System Management: Administer and secure systems running Red Hat Enterprise Linux, Debian, Ubuntu, Windows, and macOS environments.Certificate Management: Oversee the management and deployment of security certificates.Version Control and CI/CD: Utilize GitLab for version control and continuous integration/continuous deployment (CI/CD) processes.Documentation and Reporting: Create and maintain documentation for security policies, procedures, and incidents.Technical Skills: Proficiency with security tools and platforms such as Tanium, Microsoft Defender, Sentinel, Zscaler, EntraID, Azure security, and Intune

You’re good at:

Cloud architecture – designing cost-efficient, secure solutions.Network engineering – securing and optimizing connectivity across hybrid cloud environments.Cloud security – enforcing IAM, RBAC, and ABAC policies.Multi-cloud operations – leveraging multiple CSPs effectively.Federal cloud compliance – navigating security standards in civilian and defense sectors.Cross-team collaboration – communicating technical concepts across engineering, security, and business units.

What You'll Bring

Bachelor's degree in Computer Science, Information Security, or a related field is required.CISSP (Certified Information Systems Security Professional) is strongly preferred. Other relevant certifications might include CEH, CCNA, or SANS certifications.U.S. Citizen and ability to obtain and maintain Secret clearance required. Dual citizens may be subject to additional eligibility requirementsProficiency with security tools and platforms such as Tanium, Microsoft Defender, Sentinel, Zscaler, Azure security, Intune, GitLab, Red Hat Enterprise Linux, Debian, Ubuntu, Terraform, Azure Container Registry, and Python.Strong cloud security and security operations expertise.Deep network engineering knowledge for secure, scalable cloud connectivity.Experience with IAM, RBAC, ABAC, and cloud security best practices.Multi-cloud expertise across multiple CSPs.Background in US Federal government cloud/network/systems engineering.Strong communication skills for collaborating across teams.Familiarity with federal compliance requirements and directives is essential.

Nice-to-Have:

DevSecOps experience in agile service/software delivery.Hands-on work with CI/CD pipelines (GitHub/GitLab).Expertise in US Federal compliance/security frameworks (FedRAMP, DoD STIGs).Ability to educate teams on security cloud operations best practices.

Who You'll Work With

Format

This role currently requires 5 days a week in office presence. This in-office plan allows for critically important learning, collaboration and networking with our colleagues.

Additional info

Total compensation for this role includes base salary, annual discretionary performance bonus, contributions to BCG’s Profit Sharing and Retirement Fund (PSRF), and a market leading benefits package described below.

We expect total annualized compensation for Washington D.C. based employees to be approximately the following:Base salary between $144,000 - $176,667; placement within this range will vary based on experience and skill levelAnnual discretionary performance bonus between 0% - 20%5% Profit Sharing Retirement Fund (PSRF) contribution, increasing to 10% after two years of service. Contributions are vested immediately and there is no waiting periodFirst year annualized target total compensation: $166,320-  $204,050

At BCG, we are committed to offering a comprehensive benefit program that includes everything our employees and their families need to be well and live life to the fullest. We pay the full cost of medical, dental, and vision coverage for employees – and their eligible family members.**That’s zero dollars in premiums taken from employee paychecks.

All of our plans provide best in class coverage:

Zero dollar ($0) health insurance premiums for BCG employees, spouses, and childrenLow $10 (USD) copays for trips to the doctor, urgent care visits and prescriptions for generic drugsDental coverage, including up to $5,000 in orthodontia benefitsVision insurance with coverage for both glasses and contact lenses annuallyReimbursement for gym memberships and other fitness activitiesFully vested Profit Sharing Retirement Fund contributions made annually, whether you contribute or not, plus the option for employees to make personal contributions to a 401(k) planPaid Parental Leave and other family benefits such as elective egg freezing, surrogacy, and adoption reimbursementGenerous paid time off including 12 holidays per year, an annual office closure between Christmas and New Years, and 15 vacation days per year (earned at 1.25 days per month)Paid sick time on an as needed basis

*Employees, spouses, and children are covered at no cost. Employees share in the cost of domestic partner coverage.

Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws.\n
BCG is an E - Verify Employer. Click here for more information on E-Verify.