Job Description

Company Description:

McDonald’s is proud to be one of the most recognized brands in the world, with restaurants in over 100 countries that serve 70 million customers daily. We continue to operate from a position of strength. Our updated growth strategy is focused on staying ahead of what our customers want and realizing further growth potential. Our relentless ambition is why McDonald’s remains one of the world’s leading corporations after almost 70 years. Joining McDonald's means thinking big and preparing for a career that can have influence around the world.

At McDonald’s, we see every day as a chance to create positive impact. We lead through our values centered on inclusivity, service, integrity, community and family. From support of Ronald McDonald House Charities to our Youth Opportunity project and sustainability initiatives, our values keep us dedicated to using our scale for good: good for our customers, people, industry and planet. We also offer a broad range of outstanding benefits including a sabbatical program, tuition assistance and flexible work arrangements.

We are enjoying the flexibility of a hybrid work model, in which employees spend part of their week connecting with co-workers in our state-of-the-art headquarters. Located in the booming West Loop of downtown Chicago, it's set up to be a global hub that cultivates collaboration:

  • Take a class at Hamburger University
  • Sample future items in our Test Kitchen
  • Utilize the latest technology to connect with your team around the globe

We are an equal opportunity employer committed to the diversity of our crew members, staff, operators, and suppliers. We promote an inclusive work environment that creates feel-good moments for everyone.

Job Description:

Do you have a passion for Technology? Are you comfortable with operating systems like Windows and Linux, cloud environments (e.g., Azure, AWS), databases, scripting, web programming, networking, and data analytics? Are you looking forward to learn, develop new skills and dive deep into new technology areas with your colleagues, onsite and offshore? We have an outstanding opportunity for a hardworking standout colleague to join our Technology and Digital Audit Team, concentrating on Cybersecurity audits within the Global Internal Audit function.

McDonald’s is pursuing major IT and digital initiatives that include new brand engagement, e-commerce, service delivery, cybersecurity, privacy, and digital content capabilities and we are seeking enthusiastic team members who want to thrive in this dynamic environment.

Based out of our headquarters in the West Loop of Chicago, the Audit Supervisor will be conducting technology-focused reviews in a variety of operational and cybersecurity areas, participating in regular risk discussions with leadership, and overseeing compliance audits. Technology risk assessments and compliance activities are conducted for third party partners and internal clients at our headquarters and at locations around the world.

Responsibilities

  • Participate in risk-based Cybersecurity & Data Privacy audits including but not limited to both internal and external penetration tests, mobile application testing, and GDPR compliance.
  • Assist with the development and refinement of risk and control matrices. Effectively leverage these matrices when executing audits to ensure projects are completed on-time and on-budget.
  • Partner with management to identify risks and improve the control environment.
  • Demonstrate knowledge of current and emerging technology topics including cybersecurity, DevOps, privacy compliance, and data governance.
  • Collaborate with, and assist in data analytics ideation, design, and development for Global Internal Audit projects.
  • Communicate progress of projects to IT Audit Director/Manager on a timely basis. Execute audits with appropriate planning activities and utilization of departmental tools.
Qualifications:
  • Bachelor's degree in Finance, Computer Science, Information Technology, or Business preferred
  • 2+ years of experience performing penetration testing, red teaming, or purple teaming and testing vulnerabilities against desktops, servers, applications, varying operating systems, and physical security mechanisms.
  • Previous experience leading all aspects of audit work and communicating effectively with various partners (e.g., external/internal audit, senior management, etc.) is highly preferred.
  • Highly proficient in writing reports and including presentation to senior management and leaders.
  • Strong organizational skills with ability to manage multiple projects and/or initiatives simultaneously under tight deadlines.
  • Strong rapport and relationship building skills with both internal departments and external suppliers.
  • Knowledge of penetration testing tools and techniques (Nmap, Burp Suite, Wireshark, Impacket Suite, LOLBAS, etc.) is preferred.
  • Understanding Windows/Active Directory/Linux systems administration and vulnerabilities is preferred.
  • Understanding networking and web fundamentals (I.E., TCP/UDP, SSL/TLS, ACLs, Wi-Fi protocols, routing, HTTP, HTTPS, REST/SOAP APIs, etc.), is preferred.
  • Experience with programming (Python, Powershell, Go, C, C++, C#, Javascript, etc.), scripting, data analytics, and other technical solution design and development preferred.
  • Familiarity with information technology, business processes and financial reporting audits and familiarity with control frameworks such as NIST, MITRE ATT&CK, COBIT, ITIL, PCI, ISO, SOX, and global data privacy laws (e.g., GDPR, CCPA).
  • Knowledge across a breadth of IT processes, including but not limited to: security operations, program management, security administration, system operations, change management, modern development (e.g., DevOps, Agile), data governance, privacy, and incident/problem management.
  • Ability to work independently and collaboratively in a team environment.
  • Attention to detail, high ethical standards, and a commitment to maintaining confidentiality.
  • Available to travel (domestic and international) up to 20%.
  • Professional credentials preferred (CISSP, CISSP Associate, CEH, CIPT, CDPSE, CISA, OSCP, OSCE, OSEP, OSWE, GWAPT, GPEN, CRTO, PNPT or comparable).
Additional Information:

McDonald’s is an equal opportunity employer committed to the diversity of our workforce. We promote an inclusive work environment that creates feel-good moments for everyone. McDonald’s provides reasonable accommodations to qualified individuals with disabilities as part of the application or hiring process or to perform the essential functions of their job. If you need assistance accessing or reading this job posting or otherwise feel you need an accommodation during the application or hiring process, please contact mcdhrbenefits@us.mcd.com. Reasonable accommodations will be determined on a case-by-case basis.

McDonald’s provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to sex, sex stereotyping, pregnancy (including pregnancy, childbirth, and medical conditions related to pregnancy, childbirth, or breastfeeding), race, color, religion, ancestry or national origin, age, disability status, medical condition, marital status, sexual orientation, gender, gender identity, gender expression, transgender status, protected military or veteran status, citizenship status, genetic information, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

Nothing in this job posting or description should be construed as an offer or guarantee of employment.

Application Instructions

Please click on the link below to apply for this position. A new window will open and direct you to apply at our corporate careers page. We look forward to hearing from you!

Apply Online