Senior Analyst - Cybersecurity Operations Vulnerability Management
Senior Analyst - Cybersecurity Operations Vulnerability Management
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Not Disclosed
Salary Not Disclosed
1 Vacancy
Job Description
McDonalds Global Cyber Security is looking for a highly motivated diligent and skilled analyst to join the Vulnerability Management Technology team. McDonalds Vulnerability Management team protects McDs customers data and brand by identifying vulnerabilities and threats to our organization and working to drive remediation of identified security risks. Vulnerability Management is a capability of Global Security Services within the larger Global Cyber Security Operations (GCS) function. Join us as Senior Security Analyst Vulnerability Management to support and improve our efforts to identify and reduce McDonalds attack surface and help our business continue to have remarkable impacts on our customers lives.
The Senior Security Analyst is a key member of the Vulnerability Management team and works with internal and external groups to identify and drive remediation of information security risks. In this role you will develop new Cybersecurity services and enhancing existing services to meet the increasing needs for protecting our users devices networks applications and data through vulnerability management. The ideal candidate will have prior experience analyzing vulnerabilities to determine applicability and impact reporting vulnerability and risk information to senior leadership and leading prioritization and remediation strategies in an enterprise environment.
Responsibilities:
- Maintain awareness of critical vulnerabilities and emerging threats that may impact McDonalds.
- Focus on developing processes and business relationships for the effective and timely remediation of vulnerabilities in McDonalds environment.
- Maintain key stakeholder relationships and communications to ensure agreed to SLAs are understood and exceptions escalated as required
- Utilize vulnerability management infrastructure that includes scanners sensors and agent configurations. (Tenable/Nessus Security Center Qualys Wiz ServiceNow and RBVM for vulnerability management.
- Serve as a Vulnerability Management Subject Matter Expert (SME) assisting operational teams in understanding criticality of detected vulnerabilities as well as providing remediation guidance.
- Focus on prioritization of vulnerabilities based on potential impact to McDonalds; exposure and likelihood of compromise based on Common Vulnerability Score System (CVSS); Tenable Vulnerability Priority Rating (VPR); external threats; and internal risk factors.
- Lead and manage VM projects with a focus on analytics and security.
- Assist in identifying gaps performance issues growth of usage and other metrics to show the health and effectiveness of vulnerability management platforms.
- Assist others with developing reporting and providing analysis around enterprise vulnerability data.
- Create modify and mature vulnerability management reports and metrics to drive remediation of vulnerabilities throughout McDonalds environments.
- Analyze large data sets to understand risks and trends and improve reporting maturity through riskbased prioritization automation and consolidation.
- Analyze large data sets to improve processes related to communication of vulnerabilities and actionable results to key stakeholders.
- Participate in the development of ongoing vulnerability data management strategies.
- Develop insights that lead to short term and longterm improvements in the enterprise vulnerability management program.
- Review and create technical documentation reports and policies.
- Partner with other security practitioners and technology leaders to share best practices and insights.
- Assist with cybersecurity risk assessments IT audits and/or vulnerability assessments
Benefits eligible: Yes
Bonus eligible: Yes
Long term incentive eligible: Yes
The expected salary range for this role is $112860 $143900 / per year
The above represents the expected salary range for this job requisition. Ultimately in determining your pay we may also consider your experience and other jobrelated factors.
Qualifications :
- Bachelors degree in Cybersecurity Information Security or a related field
- 2 years of experience in information technologies especially information security such as security operations and incident response regulatory compliance or audit vulnerability management security engineering or similar experience. (Required)
- 2 years of experience with vulnerability management technology process and programs. (Required)
- Experience with vulnerability management tools such as Tenable Wiz Qualys Rapid7 etc. (Required)
- Experience with analyzing output from vulnerability management tools and security penetration tests for the purposes of prioritizing remediation efforts. (Required)
- Familiarity with security standards and frameworks such as: NIST PCI DSS ISO etc. (Required)
- Information security certifications such as Security Network CCNA Security GSEC GCIA GCFA GPEN CEH. (Preferred)
Skills/Abilities:
- Demonstrated leadership interpersonal and verbal communication skills
- Demonstrated written communication skills
- Expert knowledge of cybersecurity Vulnerability Management techniques as applied to cloud data applications platforms operating systems and networks
- A strong working understanding of cybersecurity architectural principles
- Ability to understand technically challenging Common Vulnerability and Exposure (CVE) information and determine importance to McDonalds
- Organized processoriented and able to manage multiple concurrent work streams
- Ability to work within tight timeframes and a fastpaced environment with changing priorities
- Knowledge of laws regulations and standards relevant to the Cybersecurity / privacy.
Additional Information :
Benefits eligible: This position offers health and welfare benefits a 401(k) plan adoption assistance program educational assistance program flexible ways of working and time off policies (including sick leave parental leave and vacation/PTO). Eligibility requirements apply to some benefits and may depend on job classification and length of employment.
Bonus eligible: This position is eligible for a bonus calculated based on individual and company performance.
Long term Incentive eligible: This position is eligible for stock or other equity grants pursuant to McDonalds longterm incentive plan.
McDonalds is an equal opportunity employer committed to the diversity of our workforce. We promote an inclusive work environment that creates feelgood moments for everyone. McDonalds provides reasonable accommodations to qualified individuals with disabilities as part of the application or hiring process or to perform the essential functions of their job. If you need assistance accessing or reading this job posting or otherwise feel you need an accommodation during the application or hiring process please contact . Reasonable accommodations will be determined on a casebycase basis.
McDonalds provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to sex sex stereotyping pregnancy (including pregnancy childbirth and medical conditions related to pregnancy childbirth or breastfeeding) race color religion ancestry or national origin age disability status medical condition marital status sexual orientation gender gender identity gender expression transgender status protected military or veteran status citizenship status genetic information or any other characteristic protected by federal state or local laws. This policy applies to all terms and conditions of employment including recruiting hiring placement promotion termination layoff recall transfer leaves of absence compensation and training.
Nothing in this job posting or description should be construed as an offer or guarantee of employment.
Remote Work :
No
Employment Type :
Fulltime
Employment Type
Full-time
