Sr Application Security

Apply Now
Back to Search

Company Description

Job Description

Job Description:

Company Description

McDonald’s growth strategy, Accelerating the Arches, encompasses all aspects of our business as the leading global omni-channel restaurant brand. As the consumer landscape shifts we are using our competitive advantages to further strengthen our brand. One of our core growth strategies is to Double Down on the 3Ds (Delivery, Digital and Drive Thru). McDonald’s will accelerate technology innovation so 65M+ customers a day will experience a fast, easy experience, whether at one of our 25,000 and growing Drive Thrus, through McDelivery, dine-in or takeaway. 

McDonald’s Global Technology is here to power tomorrow’s feel-good moments.  

That’s why you’ll find us at the forefront of transformative technology, exploring new and innovative ways to serve our millions of customers and spread happiness one delicious Hot Fudge Sundae-dipped fry at a time. Using AI, robotics and emerging tech, we’re digitizing the Golden Arches. Combine that with our unparalleled global scale, and we’re reshaping all areas of the business, industry and every community that is home to a McDonald’s restaurant. We face complex tech challenges every day. But that’s where our diverse and talented teams come in. They’re made up of the best and brightest from all over the globe, and they thrive in the space where feel-good meets fast-paced.

Our Global Mexico City Office will be a hub for technology innovation and operational support to help us build the solutions that will improve our customer, crew and employee experience each and every day. 

Department Overview

McDonald’s is seeking a Sr Analyst – Application Security to lead secure coding practices efforts and ensure secure applications are being develop across the enterprise. This role expands beyond standard analyst responsibilities by providing leadership in prioritization, advanced testing, and reporting, while mentoring junior analysts and coordinating remediation activities. The Sr Analyst will also engage with internal customers to provide strategic guidance on security findings and ensure timely resolution.

McDonald’s is investing heavily in technology to drive our growth. We’re looking at how to use technology to improve customer experience and build new customer experiences. We’re also exploring technologies that can help us reduce or eliminate repetitive tasks and make employees’ jobs ultimately exciting. With all the new projects and initiatives, it is a dynamic era in our cybersecurity growth, helping to make a safer and Better McDonald's!

This position emphasizes comprehensive reporting, oversight of code reviews for security issues, and execution of advanced testing activities to validate application security posture.

Duties

Application Security Program Development:

  • Design, implement, and maintain application security processes aligned with organizational standards and industry best practices.

Lead Vulnerability Management:

  • Oversee monitoring, tracking, and management of application security vulnerabilities across multiple platforms.
  • Evaluate risk and prioritize remediation efforts based on severity, business impact, and compliance requirements.
  • Work closely with developers, product teams, and cybersecurity stakeholders to communicate findings and drive remediation.
  • Support and mentor junior analysts in vulnerability management and testing best practices.

Advanced Scan & Test:

  • Execute and validate SAST/DAST scans, perform manual penetration testing, and oversee complex testing scenarios.
  • Guide and participate in code reviews to identify security vulnerabilities and enforce secure coding standards.

Customer Engagement:

  • Act as a primary point of contact for internal teams, providing strategic guidance and actionable recommendations.
  • Recommend process enhancements and automation opportunities to improve vulnerability management and testing efficiency.

Qualifications

  • Education:
    • Bachelor’s degree in computer science, Cybersecurity, or related field (or equivalent experience).
  • Experience:
    • 4+ years in application security, vulnerability management, or related cybersecurity roles.
    • Hands-on experience with application penetration testing methodologies and tools.
    • Proficiency with SAST and DAST tools.
    • Strong understanding of secure coding practices and common vulnerabilities (OWASP Top 10).
  • Skills:
    • Familiarity with CI/CD pipelines and operating security tools.
    • Excellent problem-solving, strong analytical and communication skills.
    • Ability to work collaboratively across technical and business teams.

Preferred Qualifications

  • Experience with container security and cloud-native application security.
  • Certifications such as OSCP, CEH, Security+.

Additional information
At McDonalds we are People from all Walks of Life...


People are at the heart of everything we do, and they make the McDonalds experience. We embrace diversity and are committed to creating an inclusive culture that means people can be their best authentic self in our restaurants and offices, which helps us to better serve our customers. We have a strong heritage of diversity and representation within our communities, which we are proud of. The diversity of our people, customers, Franchisees, and suppliers gives us strength.

We do not tolerate inequality, injustice, or discrimination of any kind. These are hugely important issues and a brand with our reach and relevance means we have a very meaningful role to play.

We also recognise our responsibility as a large employer to continue being active in our communities, helping to develop skills and drive aspirations that will help people to be more aware of the world of work and more successful within it, whether with McDonalds or elsewhere.

Qualifications

Additional Information