Manager, Governance, Risk, & Compliance

M

McDonald's Corporation

Manager, Governance, Risk, & Compliance

Chicago, IL
Full Time
Paid
  • Responsibilities

    Job Description

    McDonald’s is seeking a Manager of Governance, Risk, & Compliance to support our growing Governance, Risk, and Compliance Team within the Global Cyber Security organization as we protect the world’s most iconic brand. You will closely collaborate with Global Technology, Global Cyber Security, suppliers, vendors, and business leaders to ensure compliance to policies and standards, assess technology risk across McDonald’s, and help build a more secure culture through security awareness.

    McDonald’s is investing heavily in technology to drive our growth. We’re looking at how to use technology to improve the customer experience while protecting our iconic brand. We’re also exploring technologies that can help us reduce or eliminate repetitive tasks and make employees’ jobs more exciting and rewarding. With all the new projects and initiatives, it is an exciting time to be on the Global Cyber Security Team to help secure McDonald’s!

    The Manager of Governance, Risk, & Compliance will lead a team of global professionals and will work with partners to oversee the functioning of the processes and people dedicated to the organization. Overall, the position will ensure alignment between business objectives, compliance requirements, and risk management practices to protect the organization while enabling growth.

    • Partner with global stakeholders to ensure successful delivery of security & business objectives.
    • Lead stakeholder discussions related to risk, control, and compliance to security policies, standards, procedures, and guidelines.
    • Analyze the most complex risk issues, resolve their cause, and impact on the business, and identify the corrective action needed to eliminate and prevent the events in the future.
    • Integrate GRC systems with cross-functional stakeholder systems to ensure accuracy and consistency.
    • Maintain a working knowledge of applicable compliance drivers
    • Work with cross-functional teams to identify and implement value and risk-reducing opportunities.
    • Develop and maintain a program roadmap to ensure our supply chain remains protected among the constantly evolving threat environment.
    • Translate technical risks to senior leadership to help them better understand how they will affect their business objectives.
    • Develop cases and lead resource prioritization to deliver projects on time and on budget.
    • Continuously collaborate with other cybersecurity leaders to improve our programs and add new value.

    Identifies developmental needs of members assigned to project teams and develops suggestions to address those needs. Acts as a mentor to team members on projects and provides on-the-job training. Schedules work, assigns responsibility, and delegates authority for assigned projects

    Benefits eligible : Yes
    Bonus eligible : Yes
    Long term incentive eligible : Yes
    The expected salary range for this role is $ _ 1 29,800– $165,490_/per year

    The above represents the expected salary range for this job requisition. Ultimately, in determining your pay, we may also consider your experience, and other job-related factors.

  • Qualifications

    Qualifications

    • Bachelor’s degree from an accredited university
    • 4+ years’ experience with proven track record of success and growth, within Risk Management, Internal Audit, Third Party Risk Management, Compliance, Cybersecurity, Engineering, Computer Science, or other related fields.
    • Prior experience within Risk Management and IT Security governance a plus.
    • Excellent written & verbal communication
    • Ability to translate messaging between technical teams and business partners
    • Eagerness to join the ranks of an impactful team

    Desired skills:

    • Familiarity with complex multinational companies and distributed business models.
    • Strong ability to develop and communicate strategic direction and long-term objectives without supervision.
    • Eagerness to build relationships with supply chain partners and those who support them.
    • Experience with Information/Technology Risk Management, Supply Chain Risk Management, Third Party Risk Management, and/or Global Regulatory Compliance.
    • Proficient in technical writing and demonstrating various creative mechanisms to communicate to diverse audiences.
    • Strong ability to assess urgency and prioritization and make good decisions based upon situational circumstances.
    • Demonstrable ability to quickly identify project objectives and define optimal project approach to align security controls with overall program success.
    • Relevant professional certifications a plus (e.g. CISA, CISSP, CTPRP, CRISC)

    Understanding of key compliance, risk, and control frameworks such as NIST, PCI, ISO, COBIT, etc.

    Additional Information

    Benefits eligible: This position offers health and welfare benefits, a 401(k) plan, adoption assistance program, educational assistance program, flexible ways of working, and time off policies (including sick leave, parental leave, and vacation/PTO). Eligibility requirements apply to some benefits and may depend on job classification and length of employment.

    Bonus eligible: This position is eligible for a bonus, calculated based on individual and company performance.

    Long term Incentive eligible: This position is eligible for stock or other equity grants pursuant to McDonald’s long-term incentive plan.

    McDonald’s is an equal opportunity employer committed to the diversity of our workforce. We promote an inclusive work environment that creates feel-good moments for everyone. McDonald’s provides reasonable accommodations to qualified individuals with disabilities as part of the application or hiring process or to perform the essential functions of their job. If you need assistance accessing or reading this job posting or otherwise feel you need an accommodation during the application or hiring process, please contact mcdhrbenefits@us.mcd.com. Reasonable accommodations will be determined on a case-by-case basis.

    McDonald’s provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to sex, sex stereotyping, pregnancy (including pregnancy, childbirth, and medical conditions related to pregnancy, childbirth, or breastfeeding), race, color, religion, ancestry or national origin, age, disability status, medical condition, marital status, sexual orientation, gender, gender identity, gender expression, transgender status, protected military or veteran status, citizenship status, genetic information, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

    Nothing in this job posting or description should be construed as an offer or guarantee of employment.