Overview
Global Cybersecurity Manager – Security Engineer – Lisbon, Portugal
Who We Are
Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact.
To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures—and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive.
What You’ll Do
As we continue to build our global Threat Detection & Continuous Monitoring capability and we require an experienced Detection Content Specialist to help establish and manage the technical content that drives our Detection Engineering programme.
This role sits between threat intelligence, security operations and detection engineering, ensuring that detection development is driven by well-defined use cases, quality telemetry requirements and measurable security outcomes.
Rather than developing detection logic full-time, you will define, maintain and continuously improve the detection content that enables our Detection Engineers to build high-confidence detections aligned to the organisation’s threat landscape.
Working closely with Detection Engineering, Security Data Engineering, CSIRT, Threat Intelligence, Offensive Security and Security Engineering, you will ensure detection content remains threat-led, evidence-based and operationally relevant.
What you will do
As a Detection Content Specialist, you will help build BCG’s enterprise detection capability by translating threats into structured engineering requirements that guide detection development.
- Develop and maintain the Detection Use Case Catalogue.
- Translate approved threat scenarios into actionable detection requirements.
- Maintain mappings between threats, ATT&CK techniques, telemetry requirements and detection use cases.
- Define telemetry requirements for new detection use cases and work with the Security Data Engineer to identify data gaps.
- Maintain the Detection Catalogue, ensuring metadata, ownership, status and documentation remain current.
- Prioritise detection engineering work in partnership with the Director and Senior Detection Engineer.
- Identify gaps in detection coverage and maintain the Detection Gap Register.
- Work with Detection Engineers to ensure detections align with approved use cases and engineering standards.
- Collaborate with Threat Intelligence, Offensive Security and CSIRT to incorporate emerging threats, operational feedback and lessons learned into the detection backlog.
- Support the production of detection coverage metrics, engineering reports and executive heatmaps.
- Contribute to the continuous improvement of detection standards, documentation and engineering processes.
What You’ll Bring
Experience developing or managing detection use cases within an enterprise security environment.
- Strong understanding of MITRE ATT&CK and threat-informed defence principles.
- Experience working with SIEM platforms such as Splunk Enterprise Security, Microsoft Sentinel, Elastic or equivalent.
- Good understanding of enterprise security telemetry and logging requirements.
- Experience translating threat scenarios into structured engineering requirements.
- Strong analytical and organisational skills with the ability to manage large detection catalogues and engineering backlogs.
- Experience working collaboratively with Detection Engineering, Security Operations, Threat Intelligence or Security Engineering teams.
- Excellent written communication and documentation skills.
- A structured, engineering-focused approach to maintaining high-quality technical content.
Who You’ll Work With
You will join BCG’s Continuous Monitoring & Threat Detection function and work closely with Detection Engineering, Security Data Engineering, CSIRT, Threat Intelligence, Offensive Security and Security Engineering teams.
You will partner with technical stakeholders across Cybersecurity to ensure detection engineering activities are driven by clearly defined use cases, supported by appropriate telemetry and aligned with the organisation’s threat landscape.
Working alongside the Director of Continuous Monitoring & Threat Detection and the Senior Detection Engineer, you will help maintain the technical content, traceability and engineering backlog that underpin BCG’s growing detection capability.
Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws.
BCG is an E – Verify Employer. Click here for more information on E-Verify.
IMPORTANT: Before applying for this role, please make sure you have the right to work in the country where the role is based. Unless it clearly stipulates within in the job advert above that the hiring company is looking to or able to sponsor applicants it is deemed that the hiring employer will only consider applications from those able to comply with and work in the country where the role is based.













