Yum! Brands
Security Engineer
Yum! Brands, Plano, Texas, us, 75086
As a member of our Yum! Global Technology Risk Management team (GTRM), you will serve as a trusted advisor to business leaders, providing guidance, expertise, and support to ensure the effective implementation of security measures and compliance with regulatory and organization security requirements. You will partner with Yum!’s divisions and brands to identify and evaluate cyber risks and support the implementation of established security services. You will have the opportunity to be involved in securing Digital and eCommerce platforms for our Global business and positively engaging interactions with members of the Digital and Technology team and constructively collaborate with other highly regarded security professionals from the Global Technology Risk Management team.
While working in a dynamic, global environment, you will be responsible for researching and tracking of information security technologies and processes. Your primary duties will allow you to use your technical knowledge to help enhance the security posture of our owned Digital and eCommerce platforms. Occasional outside normal business hours and on-call duties may be required.
Salary Range: $112,000 - $120,000 annually + bonus eligibility. This is the expected salary range for this position. Ultimately, in establishing pay, we'll consider the successful candidate’s location, experience, and other job-related factors.
ResponsibilitiesPartner with business leaders and stakeholders to understand their strategic objectives, priorities, and security needs.Aligning with a risk-based approach, work with product teams to evaluate and clearly communicate security risks and remediations to business and technology stakeholders.Lead and oversee IT systems risk assessments and control validation.Provide guidance and support on security-related matters, including data protection, access controls, incident response, and compliance requirements (e.g., GDPR, NIST, PCI-DSS).Assist in coordinating stakeholders to socialize and drive change regarding IT compliance, IT risk management and data privacy.Leverage experience to provide security architectural advice and guidance.Participate in threat modelling to ensure the right security services are implemented against the right risks, and effectively communicate risks to appropriate stakeholders.Monitor and analyze security metrics and key performance indicators (KPIs), identifying trends, issues, and areas for improvement, and recommending remedial actions as needed.Conduct regular security audits of our digital platforms, applications, and network infrastructure to identify vulnerabilities, risks, and areas for improvement.Prepare IT security reports, trackers, and dashboards.
RequirementsBachelor's degree preferred and/or minimum 5 years of working experience in relevant cybersecurity disciplines with multiple teams/projects concurrently.Maintain at least one internationally recognized cybersecurity certification, to include but not limited to CISSP, CISM, CEH, or Security+ etc.Able to successfully communicate with technical and non-technical partners.Experience working in a global team spanning multiple locations preferred.
Technical QualificationsKnowledge of cloud environment topics including secrets management, infrastructure as code, and serverless technologies.Experience in designing and deploying common enterprise security services and processes, including, but not limited to:Identity and Access Management, Privileged Access Management, Network and Firewall Security, Endpoint Protection, Certificate and Key Management, Data Protection/Privacy, Website Security, SOC/SEIM, and Vulnerability Management.Knowledge of Web Application Firewalls and HTTP communication.
Employment eligibility to work with Yum! in the U.S. is required as the company will not pursue visa sponsorship for this position.
Benefits
: Employees (and their eligible family members) may enroll in the following types of insurance coverage: medical, dental, vision, legal, and accidental death, and dismemberment, as well as FSA/HSA (depending on enrolled medical plan). Yum! also provides short-term disability, long-term disability, and life insurance. Employees may enroll in our 401(k) plan. Yum! provides 4 weeks of vacation, paid sick leave, 10 paid holidays, and 2 paid days for volunteer time each calendar year.
At Yum!, one of our core values is to Believe in ALL People. This means seeing the value in everyone and unlocking their full potential to be their best self. YUM! Brands, Inc. (including its subsidiaries Yum Restaurant Services Group, LLC (“YRSG”) and Yum Connect, LLC (“Yum Digital and Technology”)(collectively, “Yum”) is proud to be an equal opportunity employer and is committed to equity, inclusion, and belonging for all dimensions of diversity. We do not discriminate based on race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, disability status, age, or any other protected characteristic. Yum! is committed to working with and providing reasonable accommodation to applicants with disabilities or special needs.#J-18808-Ljbffr
While working in a dynamic, global environment, you will be responsible for researching and tracking of information security technologies and processes. Your primary duties will allow you to use your technical knowledge to help enhance the security posture of our owned Digital and eCommerce platforms. Occasional outside normal business hours and on-call duties may be required.
Salary Range: $112,000 - $120,000 annually + bonus eligibility. This is the expected salary range for this position. Ultimately, in establishing pay, we'll consider the successful candidate’s location, experience, and other job-related factors.
ResponsibilitiesPartner with business leaders and stakeholders to understand their strategic objectives, priorities, and security needs.Aligning with a risk-based approach, work with product teams to evaluate and clearly communicate security risks and remediations to business and technology stakeholders.Lead and oversee IT systems risk assessments and control validation.Provide guidance and support on security-related matters, including data protection, access controls, incident response, and compliance requirements (e.g., GDPR, NIST, PCI-DSS).Assist in coordinating stakeholders to socialize and drive change regarding IT compliance, IT risk management and data privacy.Leverage experience to provide security architectural advice and guidance.Participate in threat modelling to ensure the right security services are implemented against the right risks, and effectively communicate risks to appropriate stakeholders.Monitor and analyze security metrics and key performance indicators (KPIs), identifying trends, issues, and areas for improvement, and recommending remedial actions as needed.Conduct regular security audits of our digital platforms, applications, and network infrastructure to identify vulnerabilities, risks, and areas for improvement.Prepare IT security reports, trackers, and dashboards.
RequirementsBachelor's degree preferred and/or minimum 5 years of working experience in relevant cybersecurity disciplines with multiple teams/projects concurrently.Maintain at least one internationally recognized cybersecurity certification, to include but not limited to CISSP, CISM, CEH, or Security+ etc.Able to successfully communicate with technical and non-technical partners.Experience working in a global team spanning multiple locations preferred.
Technical QualificationsKnowledge of cloud environment topics including secrets management, infrastructure as code, and serverless technologies.Experience in designing and deploying common enterprise security services and processes, including, but not limited to:Identity and Access Management, Privileged Access Management, Network and Firewall Security, Endpoint Protection, Certificate and Key Management, Data Protection/Privacy, Website Security, SOC/SEIM, and Vulnerability Management.Knowledge of Web Application Firewalls and HTTP communication.
Employment eligibility to work with Yum! in the U.S. is required as the company will not pursue visa sponsorship for this position.
Benefits
: Employees (and their eligible family members) may enroll in the following types of insurance coverage: medical, dental, vision, legal, and accidental death, and dismemberment, as well as FSA/HSA (depending on enrolled medical plan). Yum! also provides short-term disability, long-term disability, and life insurance. Employees may enroll in our 401(k) plan. Yum! provides 4 weeks of vacation, paid sick leave, 10 paid holidays, and 2 paid days for volunteer time each calendar year.
At Yum!, one of our core values is to Believe in ALL People. This means seeing the value in everyone and unlocking their full potential to be their best self. YUM! Brands, Inc. (including its subsidiaries Yum Restaurant Services Group, LLC (“YRSG”) and Yum Connect, LLC (“Yum Digital and Technology”)(collectively, “Yum”) is proud to be an equal opportunity employer and is committed to equity, inclusion, and belonging for all dimensions of diversity. We do not discriminate based on race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, disability status, age, or any other protected characteristic. Yum! is committed to working with and providing reasonable accommodation to applicants with disabilities or special needs.#J-18808-Ljbffr