Senior Cyber Security Engineer

McDonald’s is the world’s leading global foodservice retailer with over 36,000 locations in over 100 countries. More than 80% of McDonald’s restaurants worldwide are owned and operated by independent local business men and women.

IT Solutions is the central IT organization to McDonald’s and is made up of global and regional components. Global Technology Risk Management (GTRM) is the team which is ultimately responsible for the securing of McDonald’s information assets at a global level. The “customer” or stakeholder for a GTRMService or solution could be a technical Service Manager, a peer group in ITSolutions, or any consumer of IT Services in the greater McDonald’s enterprise including the Markets which can and do consume technology with local decision power.

The Sr. Security Engineer leverages the personnel and resources of their team to deliver security services that are essential to the operations and security of the business solutions. The position must understand the high level strategy and direction of leadership and lead the team in the execution of daily activities and set clear expectations, goals, and requirements that must be obtained as a measure of success. This position will work closely with the Service Managers and Security Engineers and ensure the solutions provided to GTRM customers are performing to expectation. The position will be required to manage external vendor partnerships which must be available 24x7 and will be required to instill a sense of urgency surrounding the activities of the group. Key responsibilities include: * Manage strategic vendor partnerships with a focus on identifying and countering infrastructure security risks and threats in a timely manner and with an extreme level of attention to urgency and thoroughness. * Apply an understanding of digital commerce to identify and introduce necessary technical controls to protect consumer data, the integrity of systems, and prevent current fraud/abuse trends. * Drive strategic design, implementation, and support deployment processes and proactively develop and implement regular improvement priorities. * Lead the adoption of the security strategy through the documentation of a transparent business capability roadmap that is developed through close relationships with key business partners. * Be a creative solution provider with the ability to translate customer/business needs into technical solutions. * Develop and/or enhance the systems and processes which ensure accurate and timely monitoring, reporting, and actions in the countermeasure process. * Occasionally represent the organization to senior leadership through briefings reports, planning sessions and other personal interactions The main accountabilities of the Sr. Security Engineer are to interpret and implement the direction, vision, and expectations for the group as prescribed by senior leadership. The position must closely partner with stakeholders and peer groups to ensure that the GTRM security services are providing adequate protection to the information assets of the organization. The individual must have a working knowledge of the current industry risks and trends as well as clear understanding of the McDonald’s business and technical strategies in order to be accountable for identifying gaps and preparing security solutions. Other accountabilities also include: * Participate in the design or enhancement stages of product development adding input or offering technical or process driven suggestions to ensure product teams understand any potential security risks and comply with current security standards. * Work with peers in GTRM as well as other IT groups and third parties to identity upcoming business or technical needs and develop solutions within a transparent platform roadmap. * Advise and influence IT and business management regarding security best practices, risk analysis, and risk mitigation. * Develop, enhance, and deliver relevant security services that focus on ease of customer integration and improving the overall security posture of the environment. * Ensure the organization has the necessary security capabilities to comply with all laws, regulations and internally developed Standards or Policies surrounding the confidentiality, availability, and integrity of our information assets. * Maintain healthy and measured accountability between McDonald’s and its security suppliers and ensure proper service support documentation is in place to facilitate this accountability.

* 4 year degree or equivalent work experience * Experience in multi-national / global organizations. * 5-10 years of direct information security experience and strong history of growing and managing vendor partnerships. * Familiarity with complex multi-national companies and distributed business models is a plus. * Strong ability to develop strategic direction and long term objectives without supervision. * Proven communication skills with the ability to translate complex technical issues or concepts to non-technical audiences in a clear and concise manner that focuses on business value. * Ability to interpret and understand business needs and translate into technology solutions. * Proficient in technical writing and creation of policies, standards, procedures and guidelines. * Familiarity with the ITIL operating model, other operational skills such as Six Sigma a plus. * Strong ability to assess urgency and prioritization and make good decision based upon situational circumstances. * Technical understanding of current industry trends.