McDonald's

Company Name: McDonald's
Job Title: Cloud Platform Engineer II (AWS & GCP)
Job Description: **Job title** Cloud Platform Engineer II (AWS & GCP) **Role Summary** Design, implement, and sustain enterprise‑wide DevOps pipelines for AWS and Google Cloud Platform. Automate cloud environment provisioning, enforce policy‑as‑code, and lead the modernization of CI/CD tooling. Partner with cross‑functional teams to prototype, validate technical feasibility, and deliver secure, scalable, and cost‑efficient cloud solutions. **Expactations** - 4+ years hands‑on experience with AWS or GCP cloud services. - Strong background in IaC (Terraform, Chef, Puppet) and pipeline engineering. - Proficiency in Kubernetes (EKS & GKE) and container orchestration. - Advanced scripting or application development (Python, PowerShell, C#/.NET). - Proven capability to manage multiple projects in an agile environment. - Excellent written and verbal communication and stakeholder management skills. - Self‑starter with a passion for automation and continuous improvement. **Key Responsibilities** - Automate cloud provisioning and infrastructure lifecycle using IaC tools. - Research, design, develop, and support high‑quality automation workflows aligned with business strategy. - Build and maintain CI/CD pipelines, ensuring best practices for quality and security. - Drive proof‑of‑concepts and technical feasibility studies for new initiatives. - Lead compliance automation and policy‑as‑code initiatives to streamline governance. - Communicate project status, risks, and issues to stakeholders and escalations. - Create design documentation, system diagrams, and data flow models. - Stay current on emerging cloud and DevOps technologies and recommend adoption. - Deliver world‑class service to internal and external customers. **Required Skills** - Infrastructure‑as‑Code: Terraform, Chef, Puppet, Git, CI/CD tools (Jenkins, GitHub Actions, Azure DevOps). - Cloud platforms: AWS services (EC2, S3, VPC, IAM, CloudFormation) and/or GCP services (Compute Engine, Cloud Storage, GKE, IAM). - Kubernetes: GKE & EKS, Helm, Kubernetes API, container networking. - Programming/scripting: Python, PowerShell, C#, .NET Core. - SDLC knowledge: requirements, design specs, test plans, release management. - Policy‑as‑Code: OPA, AWS Config, GCP organization policies. - Agile project delivery: backlog grooming, sprint ceremonies, cross‑team collaboration. - Strong analytical, problem‑solving, and communication skills. **Required Education & Certifications** - Bachelor’s degree in Computer Science, Engineering, or related field (or equivalent 3 years experience). - Master’s degree desirable. - Professional certifications: AWS DevOps Engineer – Professional, Google Cloud Kubernetes Professional, or equivalent. - Associate‑level certifications (AWS Developer, AWS Solutions Architect, AWS SysOps Administrator, GCP Associate) preferred.

Chicago, United states

Hybrid

Junior

28-01-2026

Company Name: McDonald's
Job Title: Sr Director, Cyber Defense
Job Description: **Job Title** Senior Director – Cyber Defense **Role Summary** Lead the global Cyber Defense organization, delivering a unified, 24/7 detection, response, and threat‑hunting capability across corporate, market, and restaurant environments. Bridge executive strategy with operational execution, scaling the function as a managed security service provider for McDonald’s global markets, affiliates, and franchise owners. **Expectations** - Build a mature, multi‑domain cyber defense capability that protects brand integrity and stakeholder confidence. - Deliver measurable service metrics, operational excellence, and continuous improvement in a federated, highly regulated environment. - Serve as the primary executive spokesperson during incidents, board dealings, and critical communications. - Mentor a global team of directors, managers, analysts, and engineers toward a culture of accountability and inclusion. **Key Responsibilities** 1. **Strategic Leadership** – Define, articulate, and execute the global cyber defense strategy, aligning with enterprise risk, brand protection, and Accelerating the Arches vision. 2. **Operational Excellence** – Oversee the Global Security Operations Center (GSOC) to ensure 24/7 threat detection, containment, and mitigation across SaaS, cloud, network, and on‑premise environments. 3. **Incident Response & Forensics** – Lead enterprise‑wide IR, forensic analysis, and after‑action reviews, driving rapid remediation and lessons‑learned integration. 4. **Threat Intelligence & Insider Threat** – Manage threat intel programs to prioritize emerging risks; develop and supervise insider threat programs balancing risk and privacy. 5. **Offensive Security & Red Team** – Direct penetration testing and red‑team exercises to validate security posture across all technology stacks that power the business. 6. **Detection & Automation** – Design and tune global detection & response content, telemetry pipelines, and automation across endpoint, network, and cloud. 7. **Managed Service Delivery** – Scale cyber defense as a shared service to markets, owners/operators, and affiliates; create onboarding frameworks, service level agreements, and playbooks tailored to market maturity and regulatory constraints. 8. **Team & Culture Leadership** – Recruit, develop, and retain a global cyber defense workforce; foster a continuous improvement mindset; champion diversity, inclusion, and corporate values. **Required Skills** - 12+ years in cyber security operations, incident response, or threat management. - 5+ years in senior leadership roles within global or federated enterprises. - Proven ability to build and deliver 24/7 SOC, IR, and threat intel programs. - Deep knowledge of cloud, endpoint, and network detection engineering, automation frameworks, and red‑team tactics. - Strong executive presence and communication skills for senior leadership, board, and non‑technical audiences. - Experience delivering managed security services or shared services to diverse global markets or franchise ecosystems. - Excellent stakeholder management, collaboration, and cross‑functional coordination. **Required Education & Certifications** - Bachelor’s degree in Computer Science, Information Technology, Cyber Security, or related field (advanced degree preferred). - CISSP and CISM mandatory; additional certifications such as GPEN, GCIH, CRISC, CompTIA PenTest+, or TOGAF may be preferred. ---

Chicago, United states

Hybrid

Senior

02-02-2026

Company Name: McDonald's
Job Title: Cyber Defense Analyst
Job Description: **Job Title** Cyber Defense Analyst – L2 Response Analyst **Role Summary** The Cyber Defense Analyst operates within the Security Operations Center (SOC), monitoring and analysing security events across the organization’s cloud and on‑premise environments. The role supports Incident Response by identifying, containing, and mitigating cyber threats, providing actionable insights to strengthen the overall security posture. **Expectations** - Deliver timely, accurate threat detection and incident handling. - Maintain high situational awareness through continuous monitoring. - Collaborate across global cross‑functional teams to validate events and refine playbooks. - Contribute to long‑term security improvements and threat intelligence. **Key Responsibilities** - Continuously monitor system activity with SOC tools to detect malicious behaviour. - Characterise and analyse network traffic, logs, and alerts to identify potential threats. - Conduct root‑cause analysis of alerts, distinguishing attacks from benign events. - Perform event correlation and situational awareness reporting. - Assist in creating and tuning signatures for defense tools. - Support eDiscovery and forensic investigations. - Monitor external threat feeds and communicate significant findings to leadership. - Provide cybersecurity recommendations and validate security events with Incident Response and SOC teams. **Required Skills** - Strong knowledge of computer networking, protocols, and network security methodologies. - Ability to analyse cyber threats, vulnerabilities, and attack stages. - Proficiency in authentication, authorisation, and access control. - Skilled in intrusion detection for host and network environments. - Experience with Windows, macOS, and Linux operating systems. - Familiarity with adversarial TTPs and incident response frameworks. - Expertise in event correlation, threat hunting, and signature development. - Excellent analytical, communication, and collaboration skills. **Required Education & Certifications** - Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or related field. - Industry certifications (e.g., CompTIA Security+, CISSP, GCIH, GCIH, or equivalent) preferred.

London, United kingdom

Hybrid

19-02-2026

Company Name: McDonald's
Job Title: Data Privacy Officer – 12 month Fixed Term Contract
Job Description: Job title: Data Privacy Officer – 12 month Fixed Term Contract Role Summary: Lead the privacy programme for McDonald’s UK & Ireland during a maternity cover, acting as the senior authority on data protection, developing strategy, embedding privacy‑by‑design, and ensuring compliance with UK, EU, and global data protection laws. Expectations: - Deliver strategic privacy leadership at a fast‑moving consumer‑facing organisation. - Maintain a robust privacy culture, policy framework, and compliance posture. - Manage privacy incidents, audits, and remediation in a fast‑paced environment. Key Responsibilities: - Manage and evolve the UK&I data privacy strategy. - Lead the UK privacy function and serve as first point of contact for all privacy queries. - Prepare, review, and deliver policies and procedures to support governance. - Conduct Legitimate Interest Assessments (LIAs), Data Protection Impact Assessments (DPIAs), and maintain Article 30 processing records. - Embed Privacy by Design across all initiatives and support teams in implementing it. - Oversee privacy activities of all departments and monitor compliance with data privacy law. - Support AI initiatives with robust policies and procedures. - Perform annual audits of privacy practices, including Data Processing Agreements, and ensure remediation actions. - Deliver organisation‑wide data privacy training. - Manage regulatory, customer, and employee data‑related enquiries and incident responses. - Collaborate with stakeholders at all levels and provide regular updates to senior management and global functions. Required Skills: - UK qualified solicitor with a minimum of 10 years PQE and deep expertise in data privacy. - IAPP certification and current privacy qualifications. - Proficient with privacy compliance tools such as OneTrust, adaptable to new systems. - Extensive knowledge of UK DPA, UK GDPR, EU GDPR, PECR, Children’s Code, EU AI Act, and the Data Use and Access Act; able to apply these in a large, consumer‑facing context. - Experienced advisor on data privacy compliance for businesses. - Strong judgement, strategic decision‑making support, and clear communication skills for all stakeholder levels. - Ability to work independently in a complex, fast‑paced environment; proactive, solution‑focused, with strong problem‑solving and continuous learning mindset. Required Education & Certifications: - UK qualified solicitor. - IAPP certification. - Up‑to‑date privacy qualifications.

London, United kingdom

Hybrid

Senior

24-02-2026

About the Company

Listed Jobs