IT Security Solution Architect – Director
| Company | Boston Consulting Group |
|---|---|
| Location | Boston, MA, USA, Stratford, London, UK, Atlanta, GA, USA |
| Salary | $Not Provided – $Not Provided |
| Type | Full-Time |
| Degrees | |
| Experience Level | Senior, Expert or higher |
Requirements
- 8+ years owning end-to-end solution architecture and/or security engineering experience with large-scale infrastructure portfolios.
- Proven success planning and rationalizing global estates, optimizing value, cost, and risk.
- Extensive experience in a globally distributed environment spanning multiple platforms such as AWS, Azure and GCP
- Experience of cloud security techniques in a DevSecOps and agile working environment
- Experience in understanding and capturing requirements, continuously improve and develop technical policies and processes
- Experience leading and mentoring fellow team members, across internal and vendor teams
- Record of steering investment decisions and securing executive buy-in.
- Confident communicator with polished C-suite presentations.
Responsibilities
- Set the strategy. Define and champion a clear, modern infrastructure vision—cloud-first, secure-by-design, highly available.
- Lead Solution architects. Inspire, coach, and coordinate a team of specialist architects to deliver against that vision.
- Build & run. Design, scale, and operate global platforms across identity, networking, compute, containers, and DevSecOps.
- Optimize delivery. Shape architectures that boost application performance on any device—online or offline.
- Drive decisions. Own roadmaps, investment cases, and KPIs for a sizable infrastructure estate.
- Tell the story. Craft concise, compelling materials for stakeholders up to C-suite, turning complex ideas into clear action.
Preferred Qualifications
- Proven leadership in Zero Trust architecture for hybrid and multi-cloud environments
- Strong background in secure, software-defined networking and micro-segmentation
- Hands-on with modern engineering practices—Agile, DevSecOps, automated testing
- Familiarity with secrets management / certificate lifecycle automation
- Solid grasp of cryptographic key management and enterprise PKI operations
- Experience with Cloud Security Posture Management (CSPM) and Cloud Workload Protection Platforms (CWPP)
- Working knowledge of CI/CD pipelines with integrated security gates
- Practical use of Infrastructure as Code (Terraform, CloudFormation, Pulumi) for secure, repeatable builds
- Familiarity with configuration-orchestration tools (Ansible, Chef, Puppet) to enforce baseline hardening
- Relevant certifications—CISSP, CCSP, CCSK, SABSA, ITIL, or equivalent