Cyber Security Engineer III – Email Security and OS Image Hardening

McDonald’s growth strategy, Accelerating the Arches, encompasses all aspects of our business as the leading global omni-channel restaurant brand. As the consumer landscape shifts we are using our competitive advantages to further strengthen our brand. One of our core growth strategies is to Double Down on the 3Ds (Delivery, Digital and Drive Thru). McDonald’s will accelerate technology innovation so 65M+ customers a day will experience a fast, easy experience, whether at one of our 25,000 and growing Drive thrus, through McDelivery, dine-in or takeaway. 

McDonald’s Global Technology is here to power tomorrow’s feel-good moments.That’s why you’ll find us at the forefront of transformative technology, exploring new and innovative ways to serve our millions of customers and spread happiness one delicious Hot Fudge Sundae-dipped fry at a time. Using AI, robotics and emerging tech, we’re digitizing the Golden Arches. Combine that with our unparalleled global scale, and we’re reshaping all areas of the business, industry and every community that is home to a McDonald’s restaurant. We face complex tech challenges every day. But that’s where our diverse and talented teams come in. They’re made up of the best and brightest from all over the globe, and they thrive in the space where feel-good meets fast-paced.  

Check out the McDonald’s  Global Technology Technical Blog to learn how technology and our global team are directly enabling the Accelerating the Arches strategy. 

Are you passionate about cybersecurity and ready to make a significant impact? We're looking for a dynamic Security Engineer to join our Cyber Security Architecture and Engineering team. In this role, you'll be at the forefront of securing endpoints, managing email security, and administering cutting-edge security tools. Your expertise in vulnerability management and cloud security will be crucial as you enhance endpoint security, harden OS images, and optimize email security configurations.

You'll play a key role in planning, designing, developing, and validating robust security solutions. Your collaborative nature will shine as you support risk assessment activities, including threat modeling and vulnerability analysis, and work closely with systems architects and developers to ensure secure solutions.

This position requires a blend of technical skills and organizational savvy. As part of our Global Cyber Security function, you'll report to the Senior Manager of Cyber Security Architecture and Engineering, contributing to our mission of enterprise-wide protection.

Join us and be part of a team that's dedicated to staying ahead of emerging threats and safeguarding our digital assets. If you're ready to take on this exciting challenge, we want to hear from you!

Responsibilities & Accountabilities

• Partner with End User Computing and cloud infrastructure teams to secure and harden OS images for client and server systems.
• Ensure compliance with security standards by developing and implementing secure OS hardening processes.
• Work with other security teams to maintain security standards. Provide reports and recommendations based on threat analysis.
• Perform vulnerability assessments on endpoint systems and remediate identified risks in gold images across end user devices and servers in multi-cloud environments (AWS, Azure, GCP).
• Design, deploy, and manage advanced email security solutions, including Proofpoint and O365.
• Establish and enforce email security policies, controls, and best practices to mitigate phishing and spam threats.
• Collaborate with the Global Security Operations Center and End User Computing teams to optimize email security settings and configurations.
• Integrate Microsoft Defender for O365 with Proofpoint to enhance email security posture.
• Conduct rigorous vulnerability analysis, identifying and remediating security gaps across endpoints and cloud platforms.
• Collaborate with cross-functional teams to integrate vulnerability findings into remediation plans and security programs.
• Manage and administrate security tools, including IriusRisk for threat modeling, automation workflows, and system customization.
• Troubleshoot IriusRisk issues, manage user access, and align tools with organizational security standards.
• Provide coaching and guidance on effective use of security tools and platforms.
• Support risk assessment activities such as threat modeling, vulnerability analysis, and mitigation planning.
• Coordinate with systems architects and developers to ensure secure design and implementation of solutions.
• · Partner with IT technical teams to foster collaboration and ensure security is incorporated into all processes.
• Continuously monitor emerging threats and trends to ensure security practices remain proactive and up to date.
• Craft and implement cybersecurity strategies aligned with industry best practices and company goals.

Benefits eligible: Yes
Bonus eligible: Yes
Long term incentive eligible: Yes
The expected salary range for this role is $129,800 - $165,490/ per year 
The above represents the expected salary range for this job requisition. Ultimately, in determining your pay, we may also consider your experience, and other job-related factors.

Basic Qualifications

• Bachelor's degree in computer science, information technology, or a related field or equivalent experience.
• 4+ years of experience in a technical role in the cybersecurity field.
• Strong collaboration skills for working with cross-functional teams, including architects and developers.
• Proven experience in vulnerability management and analysis in hybrid and cloud environments (AWS, Azure, GCP).
• Experience with performing vulnerability assessments on endpoint systems and remediating identified risks.
• Experience with development and implementation of secure OS hardening processes and ensure compliance with security standards.
• Hands-on experience managing security tools and solutions that enhance enterprise security posture.
• Excellent communication skills for explaining security to non-technical and technical stakeholders.
• Experience with Microsoft Defender products implementation.
• Familiarity with email security policies and solutions like Proofpoint and Microsoft O365.
• Experienced in cybersecurity processes and strategies within large organizations.

Preferred Qualifications

• Familiarity with administering and optimizing threat modeling tools like IriusRisk or similar tools.
• Experience with threat modeling, risk assessment, and mitigation planning.
• Provide guidance and coaching on effective threat modeling methodologies.
• Experience with security policy and controls, particularly with CSPM tools like Wiz or Prisma Cloud
• Proficient in developing and executing mitigation strategies to prevent security breaches and minimize potential damage.

Certifications

• Must have one or more of the certifications.
• CompTIA Security+
• CISSP
• CCSP
• GIAC
• CEH
• Or related security certification

Benefits eligible: This position offers health and welfare benefits, a 401(k) plan, adoption assistance program, educational assistance program, flexible ways of working, and time off policies (including sick leave, parental leave, and vacation/PTO). Eligibility requirements apply to some benefits and may depend on job classification and length of employment. 

Bonus eligible: This position is eligible for a bonus, calculated based on individual and company performance.

Long term Incentive eligible: This position is eligible for stock or other equity grants pursuant to McDonald’s long-term incentive plan.

McDonald’s is an equal opportunity employer committed to the diversity of our workforce. We promote an inclusive work environment that creates feel-good moments for everyone. McDonald’s provides reasonable accommodations to qualified individuals with disabilities as part of the application or hiring process or to perform the essential functions of their job. If you need assistance accessing or reading this job posting or otherwise feel you need an accommodation during the application or hiring process, please contact [email protected]. Reasonable accommodations will be determined on a case-by-case basis.

McDonald’s provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to sex, sex stereotyping, pregnancy (including pregnancy, childbirth, and medical conditions related to pregnancy, childbirth, or breastfeeding), race, color, religion, ancestry or national origin, age, disability status, medical condition, marital status, sexual orientation, gender, gender identity, gender expression, transgender status, protected military or veteran status, citizenship status, genetic information, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

Nothing in this job posting or description should be construed as an offer or guarantee of employment.