The primary responsibilities of the Senior Information Security Engineer will be to focus primarily in working with the business to instill data security best practices and technologies where appropriate to meet business directives and work generally within the Information Security team to ensure that best practices for security engineering and secure technical architectures are in place throughout Bain globally. This position is focused on building new capabilities across Bain and across a variety of services and platforms. Overall, this role will be an important part of driving continuous improvement to Bain & Company’s security posture and capabilities that can better protect the integrity of the firm and its clients.
The Engineer will also work directly with other members of the Security team to develop and provide security and best practices expertise, and will work with other technical and non-technical teams to leverage that expertise in secure design and implementation of new systems and services. The Senior Information Security Engineer will also provide security guidance and best practices related to new technologies and policy development.
Successful candidates will have knowledge and experience in the overall field of information security with significant time spent solely in a security function within an organization. CISSP, GIAC or other certifications are preferred as well as experience in environments with standards-based security certifications or attestations (ISO 27001/2, NIST, etc.). The candidate should display complex problem-solving skills and an ability to lead groups of people towards a common direction and engage with others to facilitate resolutions. The ability to drive consensus amongst peers and to generate the insights necessary to facilitate new process or technology change will also be important.