Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead cybersecurity initiatives and ensure compliance with security standards across cloud platforms.
- Company: Join a global firm that values diversity and innovation in a high-performance environment.
- Benefits: Enjoy competitive salary, comprehensive benefits, and a focus on holistic well-being.
- Why this job: Make a real impact by enhancing cybersecurity and protecting valuable assets.
- Qualifications: 5+ years in Information Security with knowledge of secure software development and risk assessments.
- Other info: Collaborate with diverse teams globally and embrace continuous learning opportunities.
The predicted salary is between 36000 - 60000 £ per year.
You are someone who thrives in a high-performance environment, bringing a growth mindset and entrepreneurial spirit to tackle meaningful challenges that have a real impact. In return for your drive, determination, and curiosity, we will provide the resources, mentorship, and opportunities to help you quickly broaden your expertise, grow into a well-rounded professional, and contribute to work that truly makes a difference.
When you join us, you will have:
- Continuous learning: Our learning and apprenticeship culture, backed by structured programs, is all about helping you grow while creating an environment where feedback is clear, actionable, and focused on your development. The real magic happens when you take the input from others to heart and embrace the fast-paced learning experience, owning your journey.
- A voice that matters: From day one, we value your ideas and contributions. You will make a tangible impact by offering innovative ideas and practical solutions, all while upholding our unwavering commitment to ethics and integrity. We not only encourage diverse perspectives, but they are critical in driving us toward the best possible outcomes.
- Global community: With colleagues across 65+ countries and over 100 different nationalities, our firm’s diversity fuels creativity and helps us come up with the best solutions. Plus, you will have the opportunity to learn from exceptional colleagues with diverse backgrounds and experiences.
- Exceptional benefits: On top of a competitive salary (based on your location, experience, and skills), we provide a comprehensive benefits package to enable holistic well-being for you and your family.
As a Security Manager for McKinsey's Operations practice, you will contribute to practice product and cloud security across AWS or Azure or GCP by supporting the implementation of the firm’s security standards in alignment with the strategic business plan. You will assist in embedding "Shift Left" strategies, tools, and processes across the software development lifecycle. Additionally, you will work closely with CSTs to ensure cybersecurity considerations are integrated throughout the engagement delivery lifecycle, including infrastructure and tooling decisions, secure product development, and the processing and deletion of client data.
In this role, your responsibilities will include conducting security assessments of products to ensure alignment with the firm’s established security requirements and processes. You will collaborate with product risk teams and other internal risk functions to support end-to-end risk assessments of products. Additionally, you will assist in client engagements by working with the team to provide cybersecurity assurance during client interactions, which may involve responding to security questionnaires, participating in workshops, and supporting due diligence processes.
You will also play a key role in supporting compliance efforts by helping to implement and manage independent third-party attestations of industry cybersecurity standards and certifications, such as ISO ***** and SOC 2, for practice-specific solutions and products. As part of your responsibilities, you will collaborate with the Security Operations Center (SOC), Threat Intelligence, and Crisis Response Teams to address practice-related cybersecurity incidents, ensuring timely identification, remediation, and documentation of lessons learned.
You will contribute to the preparation of practice-level cybersecurity reports, metrics, and forecasts for practice and firm leadership. Furthermore, you will assist in implementing firm-wide cybersecurity, data protection, and privacy policies, standards, and processes within the practice. Finally, you will support proactive risk management efforts and help establish cybersecurity controls to enhance the security posture of asset development and engagement. Your role offers an opportunity to work closely with various teams to strengthen our cybersecurity framework and protect our firm’s assets.
Qualifications:
- 5+ years of experience in a similar Information Security Role.
- Knowledge of Secure Software Development Lifecycle and DevSecOps.
- Technical understanding of a range of enterprise IT and cloud-based architectures and technologies (AWS, Azure, Databricks etc.), networking, server infrastructure, operating systems, web applications, databases, containerization.
- Working knowledge of common information security controls, guidelines and standards, such as ISO*****, SOC 2, NIST CSF, NIST SP******, GDPR, etc.
- Experience of conducting risk assessments, threat modeling and information security reviews, and audits.
- Experience with security technologies and tooling, e.g. vulnerability scanners, firewalls, network monitors, IAM, SIEM, IDS/IPS.
- Strong analytical and organizational skills and the ability to work independently, as well as part of a wider team, with minimal supervision.
- Strong written and verbal communication with the ability to converse effectively at all levels of seniority, both internally and externally.
Security Manager Ii in England employer: Mckinsey & Company
Contact Detail:
Mckinsey & Company Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Security Manager Ii in England
✨Tip Number 1
Network like a pro! Get out there and connect with people in the industry. Attend events, join online forums, and don’t be shy to reach out on LinkedIn. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Prepare for interviews by researching the company and its culture. Understand their values and how they align with your own. This will help you tailor your responses and show that you’re genuinely interested in being part of their team.
✨Tip Number 3
Practice makes perfect! Conduct mock interviews with friends or use online platforms. This will help you get comfortable with common questions and refine your answers, making you feel more confident when it’s time for the real deal.
✨Tip Number 4
Don’t forget to apply through our website! We’ve got loads of opportunities waiting for you. Plus, it’s a great way to ensure your application gets seen by the right people. So, what are you waiting for? Get applying!
We think you need these skills to ace Security Manager Ii in England
Some tips for your application 🫡
Show Your Passion: When you're writing your application, let your enthusiasm for the role shine through! We want to see that you’re genuinely excited about the opportunity to contribute to our security efforts and how your background aligns with our mission.
Tailor Your CV: Make sure to customise your CV for the Security Manager role. Highlight relevant experience, especially in cybersecurity and risk management, and don’t forget to mention any specific tools or frameworks you’ve worked with that match our needs.
Craft a Compelling Cover Letter: Your cover letter is your chance to tell us why you’re the perfect fit! Use it to elaborate on your experiences and how they relate to the responsibilities outlined in the job description. Be sure to include examples of how you've tackled challenges in previous roles.
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way to ensure your application gets into the right hands and allows us to keep track of your journey with us from the very start!
How to prepare for a job interview at Mckinsey & Company
✨Know Your Stuff
Make sure you brush up on your knowledge of secure software development lifecycles and the specific security standards mentioned in the job description, like ISO and SOC 2. Being able to discuss these topics confidently will show that you're not just familiar with the basics but are ready to dive deep into the role.
✨Show Your Growth Mindset
Since the company values a growth mindset, be prepared to share examples of how you've embraced feedback and learned from challenges in your previous roles. Highlighting your adaptability and eagerness to learn will resonate well with the interviewers.
✨Communicate Clearly
Strong communication skills are key for this role. Practice articulating complex security concepts in simple terms, as you'll need to convey information effectively to various stakeholders. Consider preparing a few scenarios where you successfully communicated technical details to non-technical audiences.
✨Collaborate and Contribute
Emphasise your experience working in teams and how you've contributed to collaborative projects. The company values diverse perspectives, so be ready to discuss how you've worked with colleagues from different backgrounds and how those experiences have shaped your approach to problem-solving.
