McDonald's
Global Cybersecurity Senior Domain Architect - Enterprise Systems
McDonald's, Chicago, Illinois, United States, 60290
Overview
Global Cybersecurity Senior Domain Architect – Enterprise Systems. The role is a technical authority for the Enterprise Systems cybersecurity architecture, leading the design and governance of security solutions across the enterprise. It ensures alignment with business objectives, enterprise architecture, and cybersecurity strategy while driving innovation and reducing risk. Department Overview
The Global Cybersecurity Senior Domain Architect – Enterprise Systems will serve as a technical authority for the Enterprise Systems cybersecurity architecture, leading the design and governance of security solutions across the enterprise. This position ensures alignment with business objectives, enterprise architecture, and cybersecurity strategy while driving innovation and reducing risk. The Domain Architect will participate in the Architecture Review Board for cybersecurity and collaborate with other domain architects to define and enforce security standards, reference architectures, and PSPGs (Policies, Standards, Procedures, and Guidelines). Accountabilities & Responsibilities
Own the Global Cyber Security Enterprise Systems architecture domain, ensuring end-to-end accountabilities for all initiatives. Make major architectural decisions and resolve domain-level technical challenges. Align security architecture with business objectives, enterprise architecture, technical strategy and cybersecurity strategy. Collaborate with management and additional experts in various subject areas to uphold a cohesive security posture. Advocate for secure-by-design and secure-by-default principles and influence adoption across teams. Establish and maintain a risk-weighted technical debt register for the Enterprise System domain; quantify impact and drive remediation with product leaders. Collaborate with engineering and product teams to ensure prioritization and secure implementation of solutions. Approve and ensure the production of architecture artifacts, security models, and design patterns. Co-create and maintain domain reference architectures and contribute to PSPGs using approved templates and governance lifecycle. Evangelize cybersecurity priorities and translate PSPGs/reference architectures into reusable patterns and guidance adopted by infrastructure, product and platform teams. Improve visibility of business risks by conducting threat modeling, mapping controls, and performing risk assessments. Provide architectural oversight for major initiatives from design through deployment. Act as a resident chair member, offering guidance on architectural decisions for cybersecurity initiatives. Stay current on emerging technologies, evolving threats, and industry trends to proactively shape and strengthen the security strategy. Mentor senior architects and engineers, improving security architecture practices. Conduct risk assessments and ensure compliance with frameworks like NIST CSF, ISO 27001, and PCI DSS. Qualifications
Bachelor’s or Master’s in Computer Science, Cybersecurity, or a related field with equivalent experience accepted. 8+ years in information security, with at least 3 years in security architecture roles. Certifications such as CISSP, CISM, SABSA, TOGAF, or equivalent. In-depth technical expertise in the Enterprise Systems domain areas, including Enterprise Application Security, Identity and Access Governance, Data Security and Privacy, and Third-Party Risk Management. Technical expertise with identity and access management, data protection, encryption, cloud security (AWS, Azure, GCP), platform security, endpoint security, IoT security, OT security, network security, and zero-trust architectures. Proven experience designing security for cloud, hybrid, and on-prem environments. Deep knowledge of security frameworks (NIST, ISO 27001) and the ability to translate frameworks into enforceable enterprise standards and measurable outcomes. Experience working in an Agile environment with Scrum practices; familiarity with JIRA and Confluence. Demonstrated results reducing risk and security technical debt while accelerating delivery. Outstanding communication and influence skills; ability to simplify complexity for senior leadership and guide distributed teams. Strong analytical skills and problem-solving abilities. Ability to conduct research into issues, solutions, and products and translate them into roadmaps and leadership materials. Ability to understand business challenges, drive process improvements and translate into solutions. Comfortable with ambiguity and ability to navigate uncertainty. Ability to elevate others and build a culture of belonging through high-performing teams. Compensation
Bonus Eligible:
Yes Long - Term Incentive:
Yes Benefits Eligible:
Yes Salary Range:
The expected salary range for this role is $149,260.00 - $190,310.00 per year. The above represents the expected salary range for this job requisition; final pay may reflect experience and other factors. Additional Information
Benefits eligible: This position offers health and welfare benefits, a 401(k) plan, adoption assistance program, educational assistance program, flexible ways of working, and time off policies (including sick leave, parental leave, and vacation/PTO). Eligibility requirements apply to some benefits and may depend on job classification and length of employment. Bonus eligible: This position is eligible for a bonus, calculated based on individual and company performance. Long term Incentive eligible: This position is eligible for stock or other equity grants pursuant to McDonald’s long-term incentive plan. McDonald’s is an equal opportunity employer committed to the diversity of our workforce and provides reasonable accommodations during the application or hiring process. If you need assistance, contact mcdhrbenefits@us.mcd.com. Reasonable accommodations will be determined on a case-by-case basis. McDonald’s provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type. This policy applies to all terms and conditions of employment.
#J-18808-Ljbffr
Global Cybersecurity Senior Domain Architect – Enterprise Systems. The role is a technical authority for the Enterprise Systems cybersecurity architecture, leading the design and governance of security solutions across the enterprise. It ensures alignment with business objectives, enterprise architecture, and cybersecurity strategy while driving innovation and reducing risk. Department Overview
The Global Cybersecurity Senior Domain Architect – Enterprise Systems will serve as a technical authority for the Enterprise Systems cybersecurity architecture, leading the design and governance of security solutions across the enterprise. This position ensures alignment with business objectives, enterprise architecture, and cybersecurity strategy while driving innovation and reducing risk. The Domain Architect will participate in the Architecture Review Board for cybersecurity and collaborate with other domain architects to define and enforce security standards, reference architectures, and PSPGs (Policies, Standards, Procedures, and Guidelines). Accountabilities & Responsibilities
Own the Global Cyber Security Enterprise Systems architecture domain, ensuring end-to-end accountabilities for all initiatives. Make major architectural decisions and resolve domain-level technical challenges. Align security architecture with business objectives, enterprise architecture, technical strategy and cybersecurity strategy. Collaborate with management and additional experts in various subject areas to uphold a cohesive security posture. Advocate for secure-by-design and secure-by-default principles and influence adoption across teams. Establish and maintain a risk-weighted technical debt register for the Enterprise System domain; quantify impact and drive remediation with product leaders. Collaborate with engineering and product teams to ensure prioritization and secure implementation of solutions. Approve and ensure the production of architecture artifacts, security models, and design patterns. Co-create and maintain domain reference architectures and contribute to PSPGs using approved templates and governance lifecycle. Evangelize cybersecurity priorities and translate PSPGs/reference architectures into reusable patterns and guidance adopted by infrastructure, product and platform teams. Improve visibility of business risks by conducting threat modeling, mapping controls, and performing risk assessments. Provide architectural oversight for major initiatives from design through deployment. Act as a resident chair member, offering guidance on architectural decisions for cybersecurity initiatives. Stay current on emerging technologies, evolving threats, and industry trends to proactively shape and strengthen the security strategy. Mentor senior architects and engineers, improving security architecture practices. Conduct risk assessments and ensure compliance with frameworks like NIST CSF, ISO 27001, and PCI DSS. Qualifications
Bachelor’s or Master’s in Computer Science, Cybersecurity, or a related field with equivalent experience accepted. 8+ years in information security, with at least 3 years in security architecture roles. Certifications such as CISSP, CISM, SABSA, TOGAF, or equivalent. In-depth technical expertise in the Enterprise Systems domain areas, including Enterprise Application Security, Identity and Access Governance, Data Security and Privacy, and Third-Party Risk Management. Technical expertise with identity and access management, data protection, encryption, cloud security (AWS, Azure, GCP), platform security, endpoint security, IoT security, OT security, network security, and zero-trust architectures. Proven experience designing security for cloud, hybrid, and on-prem environments. Deep knowledge of security frameworks (NIST, ISO 27001) and the ability to translate frameworks into enforceable enterprise standards and measurable outcomes. Experience working in an Agile environment with Scrum practices; familiarity with JIRA and Confluence. Demonstrated results reducing risk and security technical debt while accelerating delivery. Outstanding communication and influence skills; ability to simplify complexity for senior leadership and guide distributed teams. Strong analytical skills and problem-solving abilities. Ability to conduct research into issues, solutions, and products and translate them into roadmaps and leadership materials. Ability to understand business challenges, drive process improvements and translate into solutions. Comfortable with ambiguity and ability to navigate uncertainty. Ability to elevate others and build a culture of belonging through high-performing teams. Compensation
Bonus Eligible:
Yes Long - Term Incentive:
Yes Benefits Eligible:
Yes Salary Range:
The expected salary range for this role is $149,260.00 - $190,310.00 per year. The above represents the expected salary range for this job requisition; final pay may reflect experience and other factors. Additional Information
Benefits eligible: This position offers health and welfare benefits, a 401(k) plan, adoption assistance program, educational assistance program, flexible ways of working, and time off policies (including sick leave, parental leave, and vacation/PTO). Eligibility requirements apply to some benefits and may depend on job classification and length of employment. Bonus eligible: This position is eligible for a bonus, calculated based on individual and company performance. Long term Incentive eligible: This position is eligible for stock or other equity grants pursuant to McDonald’s long-term incentive plan. McDonald’s is an equal opportunity employer committed to the diversity of our workforce and provides reasonable accommodations during the application or hiring process. If you need assistance, contact mcdhrbenefits@us.mcd.com. Reasonable accommodations will be determined on a case-by-case basis. McDonald’s provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type. This policy applies to all terms and conditions of employment.
#J-18808-Ljbffr