Cyber Security & Data Manager

Company Description

McDonald’s has run its business in the UK since 1974 and currently operates over 1500 restaurants across the UK and Ireland, serving almost four million customers each day. McDonald’s is one of the UK’s largest private sector employers, employing over 170,000 people.

Hybrid Working
This role is based in our East Finchley office working 3 days in the office and 2 days remotely

Job Description

The Opportunity 
This role will join the Leadership Team of the Technology Function to lead the Cyber Security and Data capability. The role will act as a strategic leader as part of Running Great Restaurant Technology (RGRT), responsible for:

• Management of a broad range of technical and process security controls whilst leading a programme of continuous improvement in response to changing security threats and risk.
• Implementing a UK&I market and Globally aligned Cyber Security and Data Strategy and operating model.
• Provide advice and direction to the McDonald’s Technology senior leadership team as well as the broader organisation as required, in the integration of security practices into the McDonald’s strategic and operational processes.

A highly visible role across the UK&I business which will be expected to interact with a broad range of functional leadership and on occasion Franchisees, whilst actively contributing to leadership initiatives, plans and roadmaps.

What will my accountabilities be?

• Provide leadership within the RGRT and broader Technology teams to foster a high-performing culture aligned with the company values.
• Accountable for the development and maintenance of a business-aligned Information and Cyber Security strategy and operating model.
• Responsible for technology GDPR compliance and escalation, in conjunction with the UK&I Legal team.
• Develop closer collaboration with other lead McDonalds markets as well as our Global Risk function to embed policies and frameworks within the scope of role.
• Provide ongoing coaching and mentoring to all team members, ensuring that the team have strong development plans as well as career progression and succession plans.
• Provide consultancy and guidance in support of Major Incident security events.
• Accountable for a 24/7 offshore Cyber Security Operations Centre (SOC) capability.
• Budget responsibility for cyber and data TFA accounts, as well as G&A compliance as required.
• Accountable for IT SOX and PCI DSS Audit compliance for the UK&I market, delivering on agreed actions in conjunction with Global Compliance.
• Project sponsor to all key cyber, data, and risk-based projects.
• Maintain full compliance to all PMO processes and governance for all project related work.
• Build and maintain strong vendor partner relationships with McDonald’s suppliers, to explore future innovation opportunities while also ensuring appropriate management of third party risk.
• Represent McDonald’s UK&I on national and international external consortium groups and boards and engage effectively in appropriate external networks to stay close to local legislation and ensure that McDonald’s are well positioned to anticipate, meet and respond to new Risk and Security challenges and threats.
• Ensure market alignment to McDonalds Global Technology and Cyber Security ways of working.
• Support delivery of market data enablement projects and provide data consultancy to large scale enterprise projects.
• Support the Director of Technology on developing forward plans, strategies, and roadmaps.
• Provide broader leadership support to drive the Technology team culture, prioritisation, and facilitate town halls.

What Team will I be a part of?

This role will operate within the Running Great Restaurant Technology (RGRT) Leadership team, whilst also sitting on the broader Leadership Team for UK&I Technology.

Who are my customers?
The role will report to the Director of Technology in the Running Great Restaurant Technology Team (RGRT) and will have working relationships with several functional Department Heads; Global & Segment Risk, Legal, Cyber and Data management teams. The role will also engage with Franchisees as required.

Qualifications

What background do I need to have?

• Extensive knowledge and experience in enterprise information security management.
• Bachelor’s degree in information technology, cyber or information security, or a related field.
• Relevant professional certifications relating to information security or technology risk management (e.g. CISA, CISSP, CISM, CTPRP, CRISC)
• Proven experience at managing complex budgets and resources with a track record of identifying and securing approval for business cases at enterprise level.
• A collaborative leader with strategic acumen and problem-solving skills, able to inspire and motivate colleagues.
• Proven experience at engaging, influencing, and managing senior stakeholders, up to and including executive level.
• Excellent communication skills, both written and verbal. Ability to present complex or highly technical issues in simple and easy-to-understand formats.

Additional Information

Company Vision and Culture…

Our Global vision is to build a better McDonald’s and in the UK and Ireland we are working hard to be the UK & Irelands best-loved restaurant company.

McDonald’s is defined by its culture. Our culture shapes and informs everything we think and everything we do. Our culture influences the way we interact with each other, and how we interact with customers, franchisees and suppliers. Our culture motivates and inspires us to attract and retain great talent, creating positive, energising, exceptional working environment for us all.

Our values drive our culture and shape our beliefs, our priorities and our actions. They influence the decisions we make, how we treat one another and how we show up as a brand to the world.

Serve: We put our customers and our people first
Inclusion: We open our doors to everyone
Integrity: We do the right thing
Community: We are good neighbours
Family: We get better together

At McDonald’s we are People from all Walks of Life... 

People are at the heart of everything we do, and they make the McDonald’s experience. We embrace diversity and are committed to creating an inclusive culture that means people can be their best authentic self in our restaurants and offices, which helps us to better serve our customers. We have a strong heritage of diversity and representation within our communities, which we are proud of. The diversity of our people, customers, Franchisees and suppliers gives us strength.

We do not tolerate inequality, injustice or discrimination of any kind.  These are hugely important issues and a brand with our reach and relevance means we have a very meaningful role to play.

We also recognise our responsibility as a large employer to continue being active in our communities, helping to develop skills and drive aspirations that will help people to be more aware of the world of work and more successful within it, whether with McDonald’s or elsewhere.”

#LI-Hybrid