Job Information
McDonald's CyberSecurity Engineer III in Chicago, Illinois
Company Description:
McDonald's evolving Accelerating the Arches growth strategy puts our customers and people first and demonstrates our competitive advantages to strengthen our brand. We are recognized on lists like Fortune’s Most Admired Companies and Fast Company’s Most Innovative Companies.
Doubling Down on the 4Ds (Delivery, Digital, Drive Thru, and Development)
Our growth pillars emphasize the critical role technology plays as the best-in-class, global omni-channel restaurant brand. Technology enables the organization through digital technologies, and improving the customer, crew and employee experience each and every day!
Global Technology forging the way
Leading the digitization of our business is the Technology organization made up of innovation specialists who build industry defining tech using the latest innovations and platforms, like AI and edge computing to deliver on the next set of groundbreaking opportunities for the business. We take on technology innovation challenges at an incredible scale, and work across global teams who are always hungry for a challenge! This provides access to compelling career paths for technologists. It’s bonus points when you get to see your family and friends use the tech you build at their favorite McD restaurant.
Job Description:
The Cybersecurity Data Protection team is committed to secure and protect McDonald’s information anywhere, on any device, and at all times. We are seeking the most driven and ambitious cybersecurity professionals to partner with us in continuing to build our culture of security. We strive to find the balance of security with productivity but will never compromise on the quality and effectiveness of our data protection controls. We are looking for tenacious individuals to bring clarity to ambiguous situations by synthesizing information from various sources and merging it into a plan that will bring quantifiable results towards our goals.
The McDonald’s Cybersecurity Data Protection team is growing. We are seeking a Sr Engineer, Database Access Management, to manage the database activity monitoring policy compliance and services.
Responsibilities:
Design controls for protecting sensitive data specifically relating to data at rest and database activity monitoring
Direct or coordinate with technology teams to implement Database Activity Monitoring enabling technologies, logs, and sys-tems/services
Advise cloud peers on role-based policy optimization to protect data sources
Develop alerting and incident response process for over-privileged sources and potential access policy violation attempts
Seek systems and services to automate the application of database policy and detect violations as well as report on compliance
Leads Database Activity Monitoring systems and automation
Assists in developing Database Activity Monitoring reports to highlight KRIs / critical metrics, along with raising risks, issues, concerns to leader-ship
Collaborates with Application Data Director for reporting on Database Activity Monitoring
Collaborates with Enterprise data governance and privacy teams to provide consistency of database access governance across the MCD environment
Submits recommendations to Application Data Protection Director for improvements to Database Activity Monitoring services
Reviews and reports on Database Activity Monitoring effectiveness
Qualifications:
Basic Qualification:
8+ years of demonstrated ability in areas of IT and/or cybersecurity
2+ years’ experience completing enterprise-wide database operations, activity, and maintenance
4+ years’ leadership experience up to C suite; influential communicator who inspires their team, has ability to influence without authority, and builds sustainable relationships with C-level executives and partners
Demonstrated competency in developing effective solutions to diverse and sophisticated business problems
Program/Portfolio management experience implementing global processes and technology platforms
Ability to work independently and multi-functionally with strong leadership skills to drive organizational change to efficiently meet strategic and tactical goals
Excellent judgment and the ability to make quick decisions and think creatively when working with sophisticated situations
Ability to successfully adjust to changing needs in a fast paced, multifaceted environment
Forward thinking and possesses solid discernment
Excellent time management and related organizational skills including appropriate sense of urgency and a proactive approach
Exhibit a high level of integrity, trustworthiness and confidence, and represents the company and its management team at the highest level of professionalism
Experience with database operations and access rights management/review for popular database technologies such as MySQL, MongoDB, Azure RDS and SQL, and DynamoDB.
Preferred:
Knowledge and experience with various cybersecurity control frameworks, and standards such as NIST CSF, CIS Controls, SOC II, and security regulations/directives including GPDR, SOX, PCI, CCPA, etc
Professional certifications such as CISSP, CISM, or similar.
Familiarity with sophisticated multinational companies and distributed business models.·
Additional Information:
McDonald’s is committed to providing qualified individuals with disabilities reasonable accommodations to perform the essential functions of their jobs. Additionally, if you (or another applicant of whom you are aware) require assistance accessing or reading this job posting or otherwise seek assistance in the application process, please contact recruiting.supportteam@us.mcd.com
McDonald’s provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to sex, sex stereotyping, pregnancy (including pregnancy, childbirth, and medical conditions related to pregnancy, childbirth, or breastfeeding), race, color, religion, ancestry or national origin, age, disability status, medical condition, marital status, sexual orientation, gender, gender identity, gender expression, transgender status, protected military or veteran status, citizenship status, genetic information, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.
Nothing in this job posting or description should be construed as an offer or guarantee of employment.
Requsition ID: REF7293X_743999994965760