Senior planning lead

Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact. To succeed, organizations must blend digital and human capabilities. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures—and business purpose. The Global Platform Team Lead and Senior Director - IT Security is responsible for leading the design, delivery, and continuous evolution of BCG's security platforms across identity, device, and data protection domains. This role ensures end-to-end security engineering across all technology environments, including cloud, on-prem, and hybrid systems. The leader will drive strategic planning, execution, and operations of scalable, automated, and resilient security controls that protect BCG’s global operations and users, while enabling innovation and agility across BCG Core, BCG X, and CT worldwide. The role requires strong partnership with ISRM, with a focus on balancing and prioritizing security requirements, automation opportunities, user experience needs, and broader business outcomes. Strategic Leadership & Transformation: * Define and execute a unified security engineering strategy that addresses identity, endpoint, and data protection across all environments. * Lead the design and implementation of scalable, automated security solutions that integrate seamlessly into enterprise platforms and user experiences. * Drive continuous improvement of security posture while aligning with business needs, regulatory requirements, and user experience expectations. * Lead end-to-end engineering for identity and access management (IAM), including authentication, authorization, and privileged access controls. * Build and operate scalable data protection solutions, including data loss prevention (DLP), secrets management, encryption, and classification. * Deliver security capabilities that support modern work scenarios, remote access, zero-trust networking, and AI/ML workloads. * Leverage automation frameworks and IaC to improve scalability and reduce manual intervention. * Apply SRE principles to improve reliability, performance, and maintainability of security services. * Lead platform health, patching automation, and vulnerability remediation workflows. * Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. * Compliance, Governance & Risk Management: * Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. * Operationalize policy enforcement through automated controls and continuous compliance checks. * Lead risk mitigation efforts with technical solutions that scale across diverse user and system profiles. * Financial & Vendor Management: * Manage security platform budgets and investments with a focus on cost optimization and long-term value. * Lead procurement and renewal cycles in alignment with operational and architectural strategies. * Leadership & Talent Development: * Build and mentor a global team of security engineers, fostering a high-performance, collaborative, and forward-thinking culture. * Drive internal knowledge sharing and upskilling programs across security architecture, automation, and secure software engineering. * 10+ years of experience in cybersecurity, security engineering, or platform security roles. * Deep expertise in IAM, endpoint security, and data protection technologies, with proven ability to design and scale global solutions. * Experience with security engineering in hybrid and cloud-native environments (AWS, Azure, GCP). * Strong understanding of compliance frameworks and risk management strategies. Certifications such as CISSP, CCSP, CISM, AWS/Azure Security Specialty, or equivalent. * Familiarity with DevSecOps principles, Infrastructure as Code, and secure software development practices. Hybrid or on-site work model. * Occasional travel may be required for business, vendor, or team engagement. * Ability to operate in a fast-paced, complex environment, balancing long-term strategy with operational agility. In the US, we have a compensation transparency approach. Total compensation for this role includes base salary, annual discretionary performance bonus, retirement contribution, and a market leading benefits package described below. * In addition to your base salary, your total compensation will include a bonus of up to 45% and a generous retirement contribution that starts at 10%. Senior Directors/Executive Directors are also eligible for a Firm Performance Bonus. Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children * Low $10 (USD) copays for trips to the doctor, urgent care visits and prescriptions for generic drugs * Dental coverage, including up to $5,000 in orthodontia benefits * Reimbursement for gym memberships and other fitness activities * Fully vested Profit Sharing Retirement Fund contributions made annually, whether you contribute or not, plus the option for employees to make personal contributions to a 401(k) plan * Paid Parental Leave and other family benefits such as elective egg freezing, surrogacy, and adoption reimbursement * Generous paid time off including 12 holidays per year, an annual office closure between Christmas and New Years, and 20 vacation days per year (earned at 1.66 days per month) * All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws.