McDonald's Corporation is hiring: Cybersecurity Engineer III – Governance, Risk

Cybersecurity Engineer III – Governance, Risk & Compliance

McDonald’s new growth strategy, Accelerating the Arches, encompasses all aspects of our business as the leading global omnichannel restaurant brand. As the consumer landscape shifts, we are using our competitive advantages to further strengthen our brand. One of our core growth strategies is to Double Down on the 3Ds (Delivery, Digital, and Drive Thru).

We are seeking a highly skilled Cybersecurity Engineer III to join our GRC team. In this role, you will play a pivotal part in ensuring the security, compliance, and risk management of our organization. You will provide technical support, maintain our GRC platform, and implement and engineer innovative solutions to enhance our security posture.

Key Responsibilities

• Platform Support: Provide technical support and fixing for our GRC platform, currently OneTrust GRC.
• User Management: Run user access and permissions within the GRC platform, ensuring appropriate authorization levels.
• Solution Development: Design, develop, engineer and configure GRC solutions, such as TPRM, Risk & Control, Privacy Risk Assessments and Compliance Automation.
• Automation: Automate routine tasks and processes to improve efficiency and reduce manual effort.
• Integration: Integrate the GRC platform with other systems and applications using APIs and other technologies.
• Reporting and Analytics: Develop and maintain detailed reports and dashboards to monitor important data and recognize patterns.
• Continuous Improvement: Find opportunities to improve GRC platform automation and implement improvements.

Qualifications

• 3+ years of experience in information security, cybersecurity, privacy, risk management, or compliance fields.
• Strong understanding of GRC concepts, architectures, and standard processes.
• Hands-on experience with OneTrust GRC and/or ServiceNow GRC, Archer GRC platforms.
• Proficiency in scripting languages (e.g., Python, PowerShell) and API integrations.
• Strong analytical and problem-solving skills.
• Excellent communication and interpersonal skills.
• Ability to work independently and as part of a team.
• Relevant certifications such as CISSP, CRISC, CISA, CISM, or ServiceNow/OneTrust certifications are a plus.

If you are a highly motivated and skilled cybersecurity engineer with a passion for GRC, we encourage you to apply.