LOG IN
SIGN UP
Tech Job Finder - Find Software, Technology Sales and Product Manager Jobs.
Sign In
OR continue with e-mail and password
E-mail address
Password
Don't have an account?
Reset password
Join Tech Job Finder
OR continue with e-mail and password
E-mail address
First name
Last name
Username
Password
Confirm Password
How did you hear about us?
By signing up, you agree to our Terms & Conditions and Privacy Policy.

Security Manager II

at McKinsey & Company

Psychometric Test Practice
Failing at the psychometric testing stage is an expensive mistake to make. Practise and ace your tests.
SUBSCRIBE NOW
Back to all Cybersecurity jobs
Apply now
McKinsey & Company logo
Consultancies

Security Manager II

at McKinsey & Company

Mid LevelNo visa sponsorshipCybersecurity

Posted 6 days ago

No clicks

Compensation
Not specified

Currency: Not specified

City
London, Prague, San Jose
Country
United Kingdom, Czech Republic, United States

As a Security Manager for McKinsey’s Operations practice, you will contribute to practice product and cloud security across AWS, Azure, or GCP by implementing the firm's security standards in alignment with the strategic business plan. You will embed Shift Left strategies across the software development lifecycle and collaborate with CSTs to ensure cybersecurity considerations are integrated throughout the engagement delivery lifecycle, including infrastructure, secure product development, and the processing and deletion of client data. You will conduct security assessments of products, support end-to-end risk assessments with product risk teams, assist in client engagements by providing cybersecurity assurance, and help manage independent third-party attestations such as ISO 27001 and SOC 2. You will work with Security Operations Center, Threat Intelligence, and Crisis Response teams to address incidents and help establish cybersecurity controls and policies to strengthen the firm's security posture.

Technology & Digital

Security Manager II

Job ID: 105184
  • London
  • Prague
  • San Jose


Do you want to work on complex and pressing challenges—the kind that bring together curious, ambitious, and determined leaders who strive to become better every day? If this sounds like you, you’ve come to the right place.

Your Impact

As a Security Manager for McKinsey’s Operations practice, you will contribute to practice product and cloud security across AWS or Azure or GCP by supporting the implementation of the firm's security standards in alignment with the strategic business plan.
You will assist in embedding "Shift Left" strategies, tools, and processes across the software development lifecycle. Additionally, you will work closely with CSTs to ensure cybersecurity considerations are integrated throughout the engagement delivery lifecycle, including infrastructure and tooling decisions, secure product development, and the processing and deletion of client data.
In this role, your responsibilities will include conducting security assessments of products to ensure alignment with the firm’s established security requirements and processes. You will collaborate with product risk teams and other internal risk functions to support end-to-end risk assessments of products. Additionally, you will assist in client engagements by working with the team to provide cybersecurity assurance during client interactions, which may involve responding to security questionnaires, participating in workshops, and supporting due diligence processes. You will also play a key role in supporting compliance efforts by helping to implement and manage independent third-party attestations of industry cybersecurity standards and certifications, such as ISO 27001 and SOC 2, for practice-specific solutions and products.
As part of your responsibilities, you will collaborate with the Security Operations Center (SOC), Threat Intelligence, and Crisis Response Teams to address practice-related cybersecurity incidents, ensuring timely identification, remediation, and documentation of lessons learned. You will contribute to the preparation of practice-level cybersecurity reports, metrics, and forecasts for practice and firm leadership. 
Furthermore, you will assist in implementing firm-wide cybersecurity, data protection, and privacy policies, standards, and processes within the practice. Finally, you will support proactive risk management efforts and help establish cybersecurity controls to enhance the security posture of asset development and engagement.
Your role offers an opportunity to work closely with various teams to strengthen our cybersecurity framework and protect our firm’s assets.

Your Growth

You are someone who thrives in a high-performance environment, bringing a growth mindset and entrepreneurial spirit to tackle meaningful challenges that have a real impact.
In return for your drive, determination, and curiosity, we’ll provide the resources, mentorship, and opportunities to help you quickly broaden your expertise, grow into a well-rounded professional, and contribute to work that truly makes a difference.
When you join us, you will have:
  • Continuous learning: Our learning and apprenticeship culture, backed by structured programs, is all about helping you grow while creating an environment where feedback is clear, actionable, and focused on your development. The real magic happens when you take the input from others to heart and embrace the fast-paced learning experience, owning your journey.
  • A voice that matters: From day one, we value your ideas and contributions. You’ll make a tangible impact by offering innovative ideas and practical solutions, all while upholding our unwavering commitment to ethics and integrity. We not only encourage diverse perspectives, but they are critical in driving us toward the best possible outcomes.
  • Global community: With colleagues across 65+ countries and over 100 different nationalities, our firm’s diversity fuels creativity and helps us come up with the best solutions. Plus, you’ll have the opportunity to learn from exceptional colleagues with diverse backgrounds and experiences.
  • Exceptional benefits: On top of a competitive salary (based on your location, experience, and skills), we provide a comprehensive benefits package to enable holistic well-being for you and your family.

Your qualifications and skills

  • 5+ years of experience in a similar Information Security Role. 
  • Knowledge of Secure Software Development Lifecycle and DevSecOps
  • Technical understanding of a range of enterprise IT and cloud-based architectures and technologies (AWS, Azure, Databricks etc.), networking, server infrastructure, operating systems, web applications, databases, containerization
  • Working Knowledge of common information security controls, guidelines and standards, such as ISO27001, SOC 2, NIST CSF, NIST SP800-53, GDPR, etc.
  • Experience of conducting risk assessments, threat modeling and information security reviews, and audits 
  • Experience with security technologies and tooling, e.g. vulnerability scanners, firewalls, network monitors, IAM, SIEM, IDS/IPS
  • Strong analytical and organizational skills and the ability to work independently, as well as part of a wider team, with minimal supervision
  • Strong written and verbal communication with the ability to converse effectively at all levels of seniority, both internally and externally
Please review the additional requirements regarding essential job functions of McKinsey colleagues.
Our unwavering commitment to integrity drives everything we do, guiding us to always act in the best interests of our clients, our people, and the communities we serve.
Industries
  • High Tech
Capabilities
  • Technology

FOR U.S. APPLICANTS: McKinsey & Company is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by applicable law.

FOR NON-U.S. APPLICANTS: McKinsey & Company is an Equal Opportunity employer. For additional details regarding our global EEO policy and diversity initiatives, please visit our McKinsey Careers and Diversity & Inclusion sites.

share this job

Job Skill Group - N/A
Job Skill Code - ISYB - Security Manager II
Function - Technology
Industry - High Tech
Post to LinkedIn - Yes
Posted to LinkedIn Date - Fri Jan 30 00:00:00 GMT 2026
LinkedIn Posting City - London
LinkedIn Posting State/Province -
LinkedIn Posting Country - United Kingdom
LinkedIn Job Title - Security Manager II
LinkedIn Function - Information Technology
LinkedIn Industry - Information Technology and Services
LinkedIn Seniority Level - Mid-Senior level

Security Manager II

at McKinsey & Company

AI-Generated Cover Letters
Generate cover letter drafts & save time with our in-house AI trained on 100s of intern and graduate cover letters
SUBSCRIBE NOW
Back to all Cybersecurity jobs
Apply now
McKinsey & Company logo
Consultancies

Security Manager II

at McKinsey & Company

Mid LevelNo visa sponsorshipCybersecurity

Posted 6 days ago

No clicks

Compensation
Not specified

Currency: Not specified

City
London, Prague, San Jose
Country
United Kingdom, Czech Republic, United States

As a Security Manager for McKinsey’s Operations practice, you will contribute to practice product and cloud security across AWS, Azure, or GCP by implementing the firm's security standards in alignment with the strategic business plan. You will embed Shift Left strategies across the software development lifecycle and collaborate with CSTs to ensure cybersecurity considerations are integrated throughout the engagement delivery lifecycle, including infrastructure, secure product development, and the processing and deletion of client data. You will conduct security assessments of products, support end-to-end risk assessments with product risk teams, assist in client engagements by providing cybersecurity assurance, and help manage independent third-party attestations such as ISO 27001 and SOC 2. You will work with Security Operations Center, Threat Intelligence, and Crisis Response teams to address incidents and help establish cybersecurity controls and policies to strengthen the firm's security posture.

Technology & Digital

Security Manager II

Job ID: 105184
  • London
  • Prague
  • San Jose


Do you want to work on complex and pressing challenges—the kind that bring together curious, ambitious, and determined leaders who strive to become better every day? If this sounds like you, you’ve come to the right place.

Your Impact

As a Security Manager for McKinsey’s Operations practice, you will contribute to practice product and cloud security across AWS or Azure or GCP by supporting the implementation of the firm's security standards in alignment with the strategic business plan.
You will assist in embedding "Shift Left" strategies, tools, and processes across the software development lifecycle. Additionally, you will work closely with CSTs to ensure cybersecurity considerations are integrated throughout the engagement delivery lifecycle, including infrastructure and tooling decisions, secure product development, and the processing and deletion of client data.
In this role, your responsibilities will include conducting security assessments of products to ensure alignment with the firm’s established security requirements and processes. You will collaborate with product risk teams and other internal risk functions to support end-to-end risk assessments of products. Additionally, you will assist in client engagements by working with the team to provide cybersecurity assurance during client interactions, which may involve responding to security questionnaires, participating in workshops, and supporting due diligence processes. You will also play a key role in supporting compliance efforts by helping to implement and manage independent third-party attestations of industry cybersecurity standards and certifications, such as ISO 27001 and SOC 2, for practice-specific solutions and products.
As part of your responsibilities, you will collaborate with the Security Operations Center (SOC), Threat Intelligence, and Crisis Response Teams to address practice-related cybersecurity incidents, ensuring timely identification, remediation, and documentation of lessons learned. You will contribute to the preparation of practice-level cybersecurity reports, metrics, and forecasts for practice and firm leadership. 
Furthermore, you will assist in implementing firm-wide cybersecurity, data protection, and privacy policies, standards, and processes within the practice. Finally, you will support proactive risk management efforts and help establish cybersecurity controls to enhance the security posture of asset development and engagement.
Your role offers an opportunity to work closely with various teams to strengthen our cybersecurity framework and protect our firm’s assets.

Your Growth

You are someone who thrives in a high-performance environment, bringing a growth mindset and entrepreneurial spirit to tackle meaningful challenges that have a real impact.
In return for your drive, determination, and curiosity, we’ll provide the resources, mentorship, and opportunities to help you quickly broaden your expertise, grow into a well-rounded professional, and contribute to work that truly makes a difference.
When you join us, you will have:
  • Continuous learning: Our learning and apprenticeship culture, backed by structured programs, is all about helping you grow while creating an environment where feedback is clear, actionable, and focused on your development. The real magic happens when you take the input from others to heart and embrace the fast-paced learning experience, owning your journey.
  • A voice that matters: From day one, we value your ideas and contributions. You’ll make a tangible impact by offering innovative ideas and practical solutions, all while upholding our unwavering commitment to ethics and integrity. We not only encourage diverse perspectives, but they are critical in driving us toward the best possible outcomes.
  • Global community: With colleagues across 65+ countries and over 100 different nationalities, our firm’s diversity fuels creativity and helps us come up with the best solutions. Plus, you’ll have the opportunity to learn from exceptional colleagues with diverse backgrounds and experiences.
  • Exceptional benefits: On top of a competitive salary (based on your location, experience, and skills), we provide a comprehensive benefits package to enable holistic well-being for you and your family.

Your qualifications and skills

  • 5+ years of experience in a similar Information Security Role. 
  • Knowledge of Secure Software Development Lifecycle and DevSecOps
  • Technical understanding of a range of enterprise IT and cloud-based architectures and technologies (AWS, Azure, Databricks etc.), networking, server infrastructure, operating systems, web applications, databases, containerization
  • Working Knowledge of common information security controls, guidelines and standards, such as ISO27001, SOC 2, NIST CSF, NIST SP800-53, GDPR, etc.
  • Experience of conducting risk assessments, threat modeling and information security reviews, and audits 
  • Experience with security technologies and tooling, e.g. vulnerability scanners, firewalls, network monitors, IAM, SIEM, IDS/IPS
  • Strong analytical and organizational skills and the ability to work independently, as well as part of a wider team, with minimal supervision
  • Strong written and verbal communication with the ability to converse effectively at all levels of seniority, both internally and externally
Please review the additional requirements regarding essential job functions of McKinsey colleagues.
Our unwavering commitment to integrity drives everything we do, guiding us to always act in the best interests of our clients, our people, and the communities we serve.
Industries
  • High Tech
Capabilities
  • Technology

FOR U.S. APPLICANTS: McKinsey & Company is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by applicable law.

FOR NON-U.S. APPLICANTS: McKinsey & Company is an Equal Opportunity employer. For additional details regarding our global EEO policy and diversity initiatives, please visit our McKinsey Careers and Diversity & Inclusion sites.

share this job

Job Skill Group - N/A
Job Skill Code - ISYB - Security Manager II
Function - Technology
Industry - High Tech
Post to LinkedIn - Yes
Posted to LinkedIn Date - Fri Jan 30 00:00:00 GMT 2026
LinkedIn Posting City - London
LinkedIn Posting State/Province -
LinkedIn Posting Country - United Kingdom
LinkedIn Job Title - Security Manager II
LinkedIn Function - Information Technology
LinkedIn Industry - Information Technology and Services
LinkedIn Seniority Level - Mid-Senior level

SIMILAR OPPORTUNITIES

No similar jobs available at the moment.

© 2026 Tech Job Finder. All Rights Reserved.
LinkedIn
Instagram
Facebook
Tech Job Finder
LinkedIn
Instagram
Facebook
© 2026 Tech Job Finder. All Rights Reserved.