Director of Secure Devices

Locations: Boston | London | Gurgaon

Who We Are

Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact.

To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures—and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive.

What You'll Do

The Director – Secure Devices is responsible for protecting BCG's edge and endpoint environments, including laptops, mobile phones, corporate-managed, BYOD, and server-side devices. This critical role leads the engineering and enablement of endpoint protection technologies, ensuring device compliance, threat detection, and automated response capabilities. The role combines strong technical leadership, deep expertise in endpoint protection platforms, and a collaborative approach to operationalize security across all user and device touchpoints globally.

Key Responsibilities:

• Endpoint Security Strategy & Engineering:
  • Define and lead the secure device strategy, ensuring strong protection across all device types and operating systems.
  • Engineer and operate scalable solutions for endpoint protection, data loss prevention (DLP), and compliance checking.
  • Build automated controls for device posture, encryption, threat detection, and remediation.
  • Own and optimize integrations with tools such as Microsoft Defender, Purview, Symantec, CrowdStrike, or equivalent.
• Platform Integration & Automation:
  • Drive automation for device onboarding, compliance validation, and health monitoring.
  • Ensure endpoint telemetry is integrated with SIEM platforms and observability stacks.
  • Partner with platform and infrastructure teams to enforce secure device baselines and policies.
  • Build self-healing, zero-trust-aligned architectures for secure device management.
• Observability & Event Management:
  • Implement real-time observability of endpoint health, risk exposure, and threat posture.
  • Integrate with cybersecurity event and incident management pipelines for early detection and rapid response.
  • Collaborate with the cyber and incident response teams to streamline investigation and containment.
  • Ensure high-fidelity logging and alerting from all edge device sources.
• Compliance & Risk Management:
  • Ensure devices meet internal policies and external regulatory standards through automation and audit-readiness.
  • Drive policy enforcement through scalable automation and end-user experience design.
  • Manage the lifecycle of security configuration across device fleets globally.
• Collaboration & Stakeholder Engagement:
  • Work closely with IT support, mobility, infrastructure, and security operations teams.
  • Partner with cyber, legal, and compliance stakeholders to define and enforce device governance policies.
  • Serve as a key contributor to global security programs and strategic initiatives.
• Leadership & Operational Excellence:
  • Lead a global engineering team responsible for endpoint protection tooling and device compliance.
  • Foster a culture of security, automation, transparency, and continuous improvement.
  • Define and track SLAs, SLOs, and KPIs related to device health, compliance, and risk.

What You'll Bring

Required Qualifications:

• 12+ years of experience in endpoint security, device management, or security engineering roles.
• Proven experience implementing and operating tools such as Microsoft Defender, Purview, Symantec, or CrowdStrike.
• Deep technical understanding of endpoint protection, mobile security, and compliance tooling.
• Strong background in automation, scripting, and observability practices.
• Experience working with large, global device fleets and BYOD models.

Preferred Qualifications:

• Familiarity with zero-trust security models and endpoint detection and response (EDR).
• Certifications such as CISSP, CISM, Microsoft Security certifications, or equivalent.
• Experience integrating device telemetry into SIEM and SOAR platforms.

Who You'll Work With

Work Environment & Additional Information:

• Hybrid or on-site work model.
• Occasional travel for global alignment or vendor engagements.
• Ability to operate in a fast-paced, security-first engineering environment.

The Director – Secure Devices plays a mission-critical role in securing BCG's edge footprint, from user laptops to mobile and unmanaged devices. By delivering high-visibility, automated, and resilient endpoint protection capabilities, this role ensures BCG maintains a strong, scalable, and adaptive defense posture aligned to the modern threat landscape.

Additional info

Total compensation for this role includes base salary, annual discretionary performance bonus, retirement contribution, and a market leading benefits package described below.

• The base salary range for this role is $181, $221,000.00

This is an estimated range, however, specific base salaries within the range depend on various factors such as experience and skill set. It is not common for new BCG employees to be hired at the high-end of the salary range. BCG regularly reviews its ranges to ensure market competitiveness.

In addition to your base salary, your total compensation will include a bonus of up to 30% and a generous retirement contribution that starts at 5% and moves to 10% after 2 years.

All of our plans provide best in class coverage:

• Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children
• Low $10 (USD) copays for trips to the doctor, urgent care visits and prescriptions for generic drugs
• Dental coverage, including up to $5,000 in orthodontia benefits
• Vision insurance with coverage for both glasses and contact lenses annually
• Reimbursement for gym memberships and other fitness activities
• Fully vested Profit Sharing Retirement Fund contributions made annually, whether you contribute or not, plus the option for employees to make personal contributions to a 401(k) plan
• Paid Parental Leave and other family benefits such as elective egg freezing, surrogacy, and adoption reimbursement
• Generous paid time off including 12 holidays per year, an annual office closure between Christmas and New Years, and 15 vacation days per year (earned at 1.25 days per month)
• Paid sick time on an as needed basis

Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws.

BCG is an E - Verify Employer. Click here for more information on E-Verify.