Director of Information Risk Management and Governance

Overview:


Global Technology Risk Management (GTRM) is the team which is ultimately responsible for the securing of McDonald’s information assets at a global level. This role will directly manage the group within GTRM that is responsible for managing the IT risk posture of the company and facilitating key services which ensure our leadership is making informed risk based decisions. This individual will also be responsible for global information governance efforts including but not limited to GDPR.


The Director of Information Risk Management and Governance will lead a team of global professionals and will work with partners globally to oversee the day to day tactical functioning of the processes and people that are dedicated to the organizations. The position must set high level strategy and direction for those performing these daily activities and set clear expectations, goals, and requirements that must be obtained as a measure of success. This position will work closely with the Segment CIOs, ITS senior leadership, and other partners to ensure that at all times the daily activities upon which McDonald’s depends to reduce risk to the environment are functioning as designed, and providing the desired benefit.

· Bachelor’s degree in Engineering, Computer Science, Finance, Accounting or other related fields. Preference will be given to an MBA from an accredited university along with an undergraduate degree in technical area.


· 5+ years of experience of SR. LEADERSHIP (Sr. Manager or Director) experience with IT Security governance and risk.


· 5+ years of professional experience required in internal or external auditing, accounting, or compliance.


Desired skills:


· Experienced knowledge of key compliance and IT frameworks such as: Payment Card Industry (PCI), Sarbanes-Oxley, SAS-70s, HIPAA, FERC/NERC, BITS, ISO27001, COBIT, VALIT, RISKIT.


· Familiarity with complex multinational companies and distributed business models is a plus.


· Experience and willingness to lead a 24x7x365 team and work non regular hours.


· Deep experience in event / crisis management and reporting.


· Ability to interpret and understand business needs and convey such issues to information security teams.


· Proficient in technical writing and demonstrating various creative mechanisms to communicate to diverse audiences.


· Strong ability to assess urgency and prioritization and make good decision based upon situation circumstances.


· Professional certification such as CPA, CA, CIA, CISA, CISSP, PMP.


We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

· Assess the strategic and practical needs of McDonald’s globally to help ensure that the Company has a world-class IT Risk Management and Information Governance Program.


· Ensure the visibility, value, security, integrity and availability of electronic data and information throughout the Company.


· Devise a program that helps ensure that all data and information is properly categorized, controlled, protected and retained in accordance with its value and risk, and retained pursuant to applicable legal and regulatory requirements.


· Work with cross-functional teams to identify and implement cost and risk reducing opportunities for IT Risk.


· Perform functions in a timely manner and with an acute level of attention to detail, urgency and thoroughness.


· Drive strategic deployment process within Risk Management and own development and implementation of regular improvement priorities. (Continuous improvement methodology).


· Facilitation of risk, control and security policies, standards, procedures, and guidelines.


· Perform and deliver analytics of the Risk Management program and creation and distribution of reporting / dash-boarding in form of the Technology Risk Report and other mechanisms.


· Remediation and risk mitigation planning, execution and oversight as facilitated by the RA/RA (Risk Assessment / Risk Acceptance.


· Lead the McDonald's risk management team in the development and deployment of a security awareness program.


· Identifies developmental needs of members assigned to project teams and develops suggestions to address those needs. Acts as mentors to team members on projects and provides on the job training. Schedules work, assigns responsibility, and delegates authority for assigned projects.


· Ability to analyze the most complex risk issues, determine its cause and impact to the business and identify the corrective action needed to eliminate and prevent the event for the future


· Develop strategies and procedures to ensure the classification, confidentiality, privacy, security, retention and lawful disposal of Company information.


· Develop and oversee the implementation of a strategic program applying industry-leading practices and methodologies to support the achievement of short, medium and long-term goals.


· Develop and implement appropriate policies, SOPs, training and guidelines for the management of all information.


· Work to identify, categorize, lead and protect personal data.


· Collaborate with key business unit and capability partners, including, but not limited to, Privacy, IT, Internal Audit, InfoSec and Compliance to develop and implement the company's IG and RIM programs.


· Work closely with the information management program vendors and consultants to improve programs.


· Support business units and capabilities (e.g., IT, Law Department, HR, Finance) day-to-day business needs and special projects.


· Lead and mentor team.


· Lead third party vendors, as applicable.


· Leading the annual departmental budget and capital requirements.


· Perform risk assessments, document results and maintain reports of significant risks and recommendations.


· Partner on actions to be taken to address identified risks and track progress.


· Build policies, standards, guidelines, and procedures in response to identified risks.


· Provide training and technical support to management and employees regarding risk management strategies and programs.

Read Full Job Description

Technology we use

  • Engineering
  • Product
    • .NETLanguages
    • C#Languages
    • C++Languages
    • JavaLanguages
    • JavascriptLanguages
    • SqlLanguages
    • SwiftLanguages
    • CustomLanguages
    • jQuery UILibraries
    • ReactLibraries
    • CustomLibraries
    • AngularJSFrameworks
    • ASP.NETFrameworks
    • ExpressFrameworks
    • HadoopFrameworks
    • Node.jsFrameworks
    • SparkFrameworks
    • SpringFrameworks
    • TensorFlowFrameworks
    • CustomFrameworks
    • CassandraDatabases
    • HBaseDatabases
    • Microsoft SQL ServerDatabases
    • OracleDatabases
    • RedisDatabases
    • SQLiteDatabases
    • TeradataDatabases
    • CustomDatabases
    • CustomAnalytics
    • CustomDesign
    • Custom Management

Location

In the heart of the West Loop, a vibrant and rapidly growing tech neighborhood. Our new HQ is accessible by all forms of transportation.

An Insider's view of McDonald's Technology

What’s the vibe like in the office?

The entrepreneurial spirit at McDonald’s is noticeable at all levels. People inspire; people are nimble; people are team-driven; people are focused on evolving and improving. When you walk around the space, you can feel the energy that comes from collaboration and problem-solving. I am motivated to push myself every day.

Jen

Product Manager, Global Mobile App

What kinds of technical challenges do you and your team face?

We are providing insights and real time event data for decision making and marketing activation at a scale very few other companies can compare to. We are moving from a 1 to many CRM strategy to a 1 to 1 contextual and personalized experience for our customers and are watching our data drive the direction of feature development within McDonald’s.

Eric

Sr. Manager, Digital Analytics

What does career growth look like on your team?

Working at a company of this Global scale has stretched my skills like never before. The sheer number and variety of customers using the product I work on every day is both challenging and exhilarating; developing my skillset in a way that would be hard to match elsewhere

Jade

Sr. Product Manager, Kiosk

What's the biggest problem your team is solving?

McDonald’s has a few consistent challenges that we’re always solving for - scale and flexibility are critical. Every piece of technology that we build has to be scalable to 30,000+ restaurants! The second challenge is flexibility –we need to provide a consistent and reliable experience, and every restaurant is unique!

Whitney

Product Capabilities and Innovation

What are McDonald's Technology Perks + Benefits

Culture
Volunteer in local community
Open office floor plan
Health Insurance & Wellness Benefits
Disability Insurance
McDonald's provides both short and long term disability benefits at no cost to you.
Dental Benefits
McDonald’s Dental Plans allows you to see the dentist of your choice and provides coverage for preventive, basic, major and orthodontic care at 100%.
Vision Benefits
McDonald's Vision Plan provides eye exam coverage and benefits that reduce your costs for prescription eyewear, contact lenses and laser vision correction.
Health Insurance Benefits
McDonald’s offers medical plan options to help pay for the cost of health care when you need it. During enrollment, you can sign up for the insurance and pick which plan is best for you.
Life Insurance
McDonald’s automatically gives you basic life, dependent life, accidental death and dismemberment (AD&D) and Business Travel Accident Insurance (BTA) at no cost to you.
Onsite Gym
We have an 8000 square foot gym on our 9th floor with best-in-class equipment, classes, personal training, and magnificent views of the city!
Retirement & Stock Options Benefits
401(K) Matching
Once you’re eligible for the company match, McDonald’s will match your contributions with $1 for each $1 you contribute up to a maximum of 6% of your annual pay, up to IRS limits.
Performance Bonus
Match charitable contributions
McDonald’s Matching Gifts Program encourages employee support of not-for-profit organizations. Under this program, McDonald’s gives $1 for every $1 you contribute, up to $5,000 a year.
Child Care & Parental Leave Benefits
Child Care Benefits
McDonald’s has agreements for employee child care discounts to help you with the cost of child care while you work.
Generous Parental Leave
McDonald’s provides four types of Parental Leave, and you may be eligible for one or more of the types of leave listed: Paid Parental Leave, Maternity Leave, Adoption Leave, Unpaid Parental Leave.
Flexible Work Schedule
McDonald's provides employees with a flexible work schedule that includes Summer hours, Core hours, Compressed week, Flexible start and end times.
Family Medical Leave
The Family and Medical Leave Act (FMLA) and certain state laws allow you to take unpaid leave to care for yourself and your qualified family members, as long as you are eligible.
Adoption Assistance
McDonald’s Adoption Assistance Program helps with the costs of adopting a child. The child must be under age 18 and not related to you by blood or marriage.
Vacation & Time Off Benefits
Generous PTO
McDonald's employees receive between 15 and 25 days per year of paid time off based on years of service.
Sabbatical
Eligible employees get 40 days of paid sabbatical after their first 10 years of working at McDonald's
Paid Holidays
Paid Sick Days
McDonald's employees receive 100 hours per year of paid sick leave.
Perks & Discounts
Casual Dress
Commuter Benefits
Happy Hours
Happy hours are hosted on Thursdays in the summer, and twice a month on Thursdays during the remainder of the year.
Parking
McDonald's offers employees paid on-site garage parking.
Professional Development Benefits
Job Training & Conferences
Tuition Reimbursement
Diversity Program
Continuing Education stipend
Paid industry certifications
More Jobs at McDonald's Technology33 open jobs
All Jobs
Data + Analytics
Design + UX
Dev + Engineer
Operations
Product
Project Mgmt
Sales
Project Mgmt
new
Chicago
Developer
new
Chicago
Data + Analytics
new
Chicago
Sales
new
Chicago
Sales
new
Chicago
Data + Analytics
new
Chicago
Data + Analytics
new
Chicago
Project Mgmt
new
Chicago
Product
new
Chicago
Project Mgmt
new
Chicago
Project Mgmt
new
Chicago
Project Mgmt
new
Chicago
Operations
new
Chicago
Design + UX
new
Chicago
Data + Analytics
new
Chicago
Data + Analytics
new
Chicago
Data + Analytics
new
Chicago
Data + Analytics
new
Chicago
Operations
new
Chicago
Operations
new
Chicago
Operations
new
Chicago
Operations
new
Chicago