Managing Director, BCG Platinion
Nadya Bartol, CISSP, CGEIT™, is Managing Director at BCG Platinion, a division of Boston Consulting Group. Her focus is on helping BCG clients improve their cybersecurity strategies and cybersecurity programs. Nadya has over 20 years of cybersecurity technology and management experience across multiple industry and government environments.
At BCG, Nadya advises clients in the financial services, technology, energy, insurance, professional services, and consumer packaged goods sectors on cybersecurity strategy and implementation. She provides strategic cybersecurity advice and support to Fortune 500 boards and executives. She is also responsible for developing cybersecurity service offerings, staff mentoring, and team growth.
In her work with the firm, Nadya has managed a team of cybersecurity experts supporting the cybersecurity program at a major consumer goods company, led a series of research projects for the National Institute of Standards and Technology (NIST), and provided advisory support to numerous firm clients on cybersecurity organization design, processes, practices, technologies, and integration into software development. Additionally, Nadya led development of a harmonized cybersecurity regulatory framework for the financial services industry that has been adopted by numerous financial institutions in the US and globally.
Nadya co-authored six publications for the National Institute of Standards and Technology (NIST) and led the development of several ISO standards on a variety of cybersecurity topics including cyber supply chain risk management.
Businesses that adopt a holistic cloud security strategy driven by automation will be able to respond quickly to any change or opportunity in the development life cycle.
Dispelling the shame around tech mistakes, BCG Platinion Managing Director Nadya Bartol offers creative ways to celebrate good cybersecurity habits.
BCG Platinion has developed the Financial Sector Cybersecurity Framework Profile, which harmonizes and consolidates regulatory requirements. The profile improves cybersecurity while significantly reducing compliance costs.
As electric utilities embrace intelligent digital networks, they become far more vulnerable to cyberattacks. The industry must act decisively, going well beyond cybersecurity basics.