Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead digital risk initiatives and embed cybersecurity practices in product development.
- Company: Join a global firm with a diverse community across 65+ countries.
- Benefits: Enjoy competitive salary, comprehensive benefits, and a focus on holistic well-being.
- Why this job: Make a real impact by ensuring secure design principles in innovative digital solutions.
- Qualifications: 5+ years in cybersecurity with experience in cloud security and DevSecOps.
- Other info: Embrace continuous learning and mentorship in a fast-paced environment.
The predicted salary is between 70000 - 90000 ÂŁ per year.
We’re looking for someone who thrives in a high‑performance environment, bringing a growth mindset and entrepreneurial spirit to tackle meaningful challenges that have a real impact. In return for your drive, determination, and curiosity, we’ll provide the resources, mentorship, and opportunities to help you quickly broaden your expertise, grow into a well‑rounded professional, and contribute to work that truly makes a difference.
When you join us, you will have:
- Continuous learning: Our learning and apprenticeship culture, backed by structured programs, is all about helping you grow while creating an environment where feedback is clear, actionable, and focused on your development.
- A voice that matters: From day one, we value your ideas and contributions. You’ll make a tangible impact by offering innovative ideas and practical solutions, all while upholding our unwavering commitment to ethics and integrity.
- Global community: With colleagues across 65+ countries and over 100 different nationalities, our firm’s diversity fuels creativity and helps us come up with the best solutions.
- Exceptional benefits: On top of a competitive salary, we provide a comprehensive benefits package to enable holistic well‑being for you and your family.
Your Impact:
As a Security Manager II, you will act as the digital risk lead embedded within ClienTech’s product, data, and engineering ecosystem, ensuring that secure‑by‑design principles, firm cybersecurity standards, and ClienTech‑specific delivery patterns are consistently applied across digital assets, accelerators, and client deployments. You will embed cybersecurity controls and secure design practices into ClienTech pipelines, reusable assets, accelerator builds, and delivery environments across AWS, Azure, and GCP.
Working closely with engineering squads, you will support the implementation of secure SDLC and DevSecOps practices, including static analysis, dependency scanning, container hardening, threat modeling, and secure design reviews. You will also support the governance and security uplift of ClienTech internal platforms, development environments, and shared services, conduct technical assessments for emerging capabilities, track adherence to secure engineering guardrails, and highlight areas requiring uplift.
During client delivery, you will work directly with client service teams to select secure runtime environments and define compliant data‑handling workflows. Your work supports ClienTech’s mission to deliver high‑quality, high‑velocity digital solutions by operationalizing security controls, enabling engineering teams, and effectively managing cyber risk across the build‑and‑deploy lifecycle.
You will be based in one of our core locations as part of the ClienTech technology and engineering ecosystem, partnering closely with product, data, engineering, and client service teams.
Your Qualifications and Skills:
- Bachelor’s degree or master’s degree equivalent of work experience required; background in Cybersecurity, Computer Science, Engineering, or equivalent experience preferred.
- 5+ years of cybersecurity experience with strong exposure to digital product engineering, cloud workloads, or security architecture.
- Working knowledge of securing cloud solutions in AWS, Azure, or GCP, including IAM, networking, containerization, and Kubernetes.
- Hands‑on experience with DevSecOps toolchains such as SAST, DAST, dependency scanning, container image scanning, and infrastructure‑as‑code security scanning.
- Experience conducting threat modeling, secure design reviews, and engineering‑focused risk assessments.
- Familiarity with industry standards and frameworks such as ISO 27001, SOC 2, OWASP, and NIST CSF.
- Strong communication and stakeholder‑management skills, with the ability to partner effectively with engineering teams in fast‑paced delivery environments.
- Experience supporting digital product teams or client‑facing technology delivery units; knowledge of privacy and data protection regulations (e.g., GDPR, CCPA); and relevant professional certifications such as CISSP, CISM, CCSK, or cloud security specialty certifications are preferred.
Security Manager II - Digital Risk employer: Mckinsey & Company
Contact Detail:
Mckinsey & Company Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Security Manager II - Digital Risk
✨Tip Number 1
Network like a pro! Reach out to folks in your industry on LinkedIn or at events. A friendly chat can lead to opportunities that aren’t even advertised yet.
✨Tip Number 2
Show off your skills! Create a portfolio or a personal project that highlights your expertise in cybersecurity and digital risk management. This gives you something tangible to discuss during interviews.
✨Tip Number 3
Prepare for the interview by researching the company’s culture and values. Tailor your responses to show how your growth mindset and entrepreneurial spirit align with their mission.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets noticed, and we love seeing candidates who are proactive about their job search.
We think you need these skills to ace Security Manager II - Digital Risk
Some tips for your application 🫡
Tailor Your Application: Make sure to customise your CV and cover letter for the Security Manager II role. Highlight your relevant experience in cybersecurity, cloud solutions, and digital product engineering to show us you’re the perfect fit!
Showcase Your Skills: Don’t just list your qualifications; demonstrate how your skills align with our needs. Use specific examples from your past work that illustrate your hands-on experience with DevSecOps toolchains and secure design practices.
Be Authentic: We love seeing your personality shine through! Share your passion for cybersecurity and your growth mindset in your application. Let us know what drives you and how you can contribute to our high-performance environment.
Apply Through Our Website: For the best chance of success, make sure to apply directly through our website. This way, we can easily track your application and ensure it gets the attention it deserves!
How to prepare for a job interview at Mckinsey & Company
✨Know Your Cybersecurity Stuff
Make sure you brush up on your knowledge of cybersecurity principles, especially those related to cloud solutions like AWS, Azure, and GCP. Be ready to discuss your hands-on experience with DevSecOps toolchains and how you've implemented secure design practices in past roles.
✨Showcase Your Problem-Solving Skills
Prepare to share specific examples of how you've tackled challenges in digital risk management. Think about times when you had to conduct threat modelling or secure design reviews, and be ready to explain your thought process and the outcomes.
✨Communicate Effectively
Since strong communication is key for this role, practice articulating complex technical concepts in a way that's easy to understand. You might be asked to explain how you would partner with engineering teams, so think about how you can convey your ideas clearly and confidently.
✨Embrace the Growth Mindset
This company values continuous learning, so be prepared to discuss how you've embraced feedback and adapted in fast-paced environments. Share examples of how you've taken initiative to learn new skills or improve processes, showing that you're not just a fit for the role but also eager to grow.