Online Application
New Ventures Office of CTO - Information Security Lead - Americas - New York
Who you’ll work with

You’ll work with our McKinsey Solutions Security Compliance Team which is part of the New Ventures Technology Office in in NY.  
The New Ventures Technology office provides Security, Support and Hosting Services to McKinsey Solutions. This includes Helpdesk (first-level support and configuration operations) and hosting services. New Venture Technology office is currently supporting 40+ SaaS products and 40000+ end users.

New Ventures is a recently formed part of McKinsey focused on fostering innovations driven by analytics, design thinking, mobile, social and other technologies and integrating them into our client work. It is a foundation for—and expands our investment in—our entrepreneurial culture. As one of the fastest-growing parts of our firm, New Ventures has more than 1,000 dedicated professionals (including more than 800 analysts and data scientists) and we’re hiring more mathematicians, data scientists, designers, software engineers, product managers, client development managers and general managers.  
McKinsey Solutions is a core part of New Ventures and offers practical tools that help people at all levels of an organization generate insights they need to address both strategic and day-to-day decisions. These solutions complement McKinsey's traditional client service and are delivered in many ways, including subscriptions, workshops, training programs and project-based engagements. We work closely with clients to embed our tools, analytics and expertise, and provide on-going support to help them build the capabilities they need to revolutionize how decisions are made.
 

What you’ll do

As an IT Security Architect at McKinsey Solutions you’ll be responsible for providing functional and technical support for MSO Solutions and New Ventures.  This includes defining standards and guidelines for web application security, defining methodology to support continuous delivery models (Dev-ops/Sec-dev-ops) and the design of security architecture and systems and the assessment of existing applications for vulnerabilities for their remediation. You will provide support from design inception through to security operations readiness of Solution infrastructure ‘in the Cloud.
 

Qualifications
  • A minimum of 7 years’ experience in IT, and 3-5 years in design and Implementation of security practices and components
  • Solid understanding of end to end of IT processes including architecture, design, implementation and operations.
  • Strong security, solution architecture and data expertise including web application security, web application firewalls, Intrusion detection systems, penetration testing, identity and access management, cloud architecture
  • Experience with application vulnerability assessments and driving remediation efforts
  • Experience defining and documenting application security requirements, creating approaches for their implementation in software applications and working with development teams to ensure their proper implementation and testing. 
  • Expert knowledge of cloud delivery models including continuous deployment methodology and delivery of web applications over cloud-based services
  • Security certifications (CISSP, AWS certified solution architect, vendor independent cloud related security certifications)
  • Exceptional verbal and written communication skills
  • Superb client service skills with both creative and analytical mind-set
  • Be of mature disposition and personable, and able to work well in a global team environment spanning multiple continents / time zones
  • Highly collaborative, yet able to function well independently 
  • Creative problem solver and natural entrepreneur; comfort with ambiguity

What to Expect


If you want to know what kind of questions we ask in the application, you can find out here.

Questions

Please review our frequently asked questions here.

If you are still unable to find the answer you are looking for click here to email our online application support team.