Cyber Security Officer

Company Description

About Us
McDonald’s has run its business in the UK since 1974 and currently operates over 1500 restaurants across the UK and Ireland, serving almost four million customers each day. McDonald’s is one of the UK’s largest private sector employers, employing over 170,000 people.

Hybrid Working
This role is based in our East Finchley office working 3 days in the office and 2 days remotely.

Job Description

The Opportunity 
As a Cyber Security Officer you will be responsible for implementing and upholding a framework that spans people, process and technology to ensure that McDonald’s information systems and data remains secure. The role holder will work extensively across a variety of computer systems, network devices and cyber security toolsets, as well as enforcing and improving key processes such as cyber security education, awareness and training.

What will my accountabilities be?

Responsibility for operating and maintaining existing cyber security processes and toolsets will be a fundamental part of this role, as well as research, design and implementation of future cyber security processes and toolsets that are most suited to McDonald’s environment. This could vary from being responsible for the maintenance and development of the organisation’s cyber security awareness programme, to the implementation and operation of exciting new solutions such as XDR or SOAR.. Executing incident response activities (both simulations and live) will be required, as well as overseeing and maintaining an outsourced SOC team and additional cyber security partners. Additionally, facilitating and overseeing audits, penetration tests and vulnerability assessments and driving remedial actions and improvements will form a large part of the role.

Other accountabilities will include:

• Review, recommend and or update policies, procedures and standards with respect to latest cyber security best practices
• Drive and deliver change to the McDonald’s Information and Cyber Security systems, processes and procedures by staying up to date with industry developments and best practice
• Supporting the ongoing change programme and maturity aligned to McDonald’s Global Technology approaches
• Providing subject matter expertise and acting as incident lead in support of cyber security incidents
• Provide regular cadence of management reporting that identifies trends, priorities and opportunities for improvements which demonstrates a practice of continuous improvement and aligns to segment KPIs for the function

What Team will I be a part?

The role is part of the Cyber Security and Data team within the Running Great Restaurant Technology function and will support the wider Technology and Change function. One of the Cyber Security and Data team’s primary objective is to keep McDonald’s systems up and secure; the role holder will work closely with counterparts in other LIOM markets and with Cyber Security professionals within the GTRM function.

Who are my customers?

A variety of business stakeholders will be the primary customers, notably project sponsors, project stakeholders and technology teams (internal and external) where security controls need to be addressed. Additionally, there will be key functional relationships with teams such as Legal, Finance and Marketing. Global Technology customers will include Global Cyber Security, Global Technology Infrastructure & Operations and Internal Audit.

Qualifications

What background do I need to have?

A successful candidate will have a bachelor’s degree or equivalent/higher in computer science, cyber security, information security or similar, or a professional certification such as SSCP. Additionally, experience operating within a cyber or information security team in an enterprise environment will be vital; evaluating and implementing security controls, operating cyber security toolsets, and improving governance procedures. Ideally 3+ years of experience and working towards or obtained CISSP.

• Strong experience in technical cyber security role such as security analysis or engineering
• Excellent knowledge in key cyber security domains such as identity and access management, risk management, network security and security operations
• Experience providing cyber subject-matter expertise for transformational security improvements in a complex Technology organisation
• Proven experience at engaging and influencing stakeholders across departmental and organisational and global/segment stakeholders
• An excellent understanding of best practice within cyber security and risk management including standards such as ISO/IEC 27001, Cyber Essentials and NIST CSF
• Demonstrable creativity and a commitment to future-proofing processes and security controls in a fast paced, ever-changing environment
• A self-starter with the ability to identify, lead and drive change through an organisation without being instructed to do so
• Highly organized and strong at planning and prioritizing
• Excellent written and verbal communication skills with the ability to interpret complex cyber and technical speak and translate into language that is well understood by the business
• Able to successfully influence amongst cross-functional teams with varying levels of technical expertise, as well as working independently with limited oversight

Additional Information

Company Vision and Culture…

Our Global vision is to build a better McDonald’s and in the UK and Ireland we are working hard to be the UK & Irelands best-loved restaurant company.

McDonald’s is defined by its culture. Our culture shapes and informs everything we think and everything we do. Our culture influences the way we interact with each other, and how we interact with customers, franchisees and suppliers. Our culture motivates and inspires us to attract and retain great talent, creating positive, energising, exceptional working environment for us all.

Our values drive our culture and shape our beliefs, our priorities and our actions. They influence the decisions we make, how we treat one another and how we show up as a brand to the world.

Serve: We put our customers and our people first
Inclusion: We open our doors to everyone
Integrity: We do the right thing
Community: We are good neighbours
Family: We get better together

At McDonald’s we are People from all Walks of Life... 

People are at the heart of everything we do, and they make the McDonald’s experience. We embrace diversity and are committed to creating an inclusive culture that means people can be their best authentic self in our restaurants and offices, which helps us to better serve our customers. We have a strong heritage of diversity and representation within our communities, which we are proud of. The diversity of our people, customers, Franchisees and suppliers gives us strength.

We do not tolerate inequality, injustice or discrimination of any kind.  These are hugely important issues and a brand with our reach and relevance means we have a very meaningful role to play.

We also recognise our responsibility as a large employer to continue being active in our communities, helping to develop skills and drive aspirations that will help people to be more aware of the world of work and more successful within it, whether with McDonald’s or elsewhere.”

#LI-Hybrid