Publicerade inlägg i: Övriga Jobb i Chicago | Posted: |
Job Description
McDonald’s is seeking a Manager – Application Security to support our cybersecurity team as we protect our customers and the McDonald’s brand. You will develop and lead an application security program that is designed to ensure that all developed software meets exacting McDonald’s standards while enabling continued innovation to meet customers’ needs.
McDonald’s is investing heavily in technology to drive our growth. We’re looking at how to use technology to improve the customer experience and build new customer experiences. We’re also exploring technologies that can help us reduce or eliminate repetitive tasks and make employees’ jobs ultimately exciting. With all the new projects and initiatives, it is a dynamic era in our cybersecurity growth, helping to make a safer and Better McDonald's!
The Manager of Application Security must set high-level strategy and direction for those performing these daily activities and clear expectations, goals, and requirements that must be acquired as a measure of success. This position will work closely with cybersecurity authorities, Global Technology teams, suppliers, and business leaders to define cybersecurity controls that protect McDonald’s assets and critical technology.
Responsibilities
Mentor and lead a distributed team of application security experts.
Collaborate with internal and external product and development teams to integrate security tools, standards, and processes into the Secure Software Development Lifecycle (SSDLC).
Partner with our front-end digital channel development teams (mobile, web, etc.), back-end platform development teams (Point-of-Sale, eCommerce Platform, etc.), and security service delivery teams to triage and develop plans for remediation of application threats and vulnerabilities, at a global scale.
Create and maintain documentation pertaining to integrated security processes and controls.
Provide recommendations on Information Security policies and defining governance procedures for secure application development.
Craft and deploy application security tools, processes, and documentation to support alignment with OWASP Top 10, Industry Standards, Current Events, and Best-Practices.
Ensure that developers and QA personnel have the appropriate level of security knowledge and support to perform their daily activities.
Develop and maintain a technical roadmap to ensure the platform remains relevant among the constantly evolving threat environment.
Translate the technical roadmap to product leadership to help them better understand how security threats and control technology will affect their business objectives.
Support the development and testing of playbooks that prepare Application Security to respond to possible security incidents.
Stay up to date on emerging threats and potential impact to our cyber ecosystem