Manager, Operations Excellence (Audit)

McDonald's Corporation

Manager, Operations Excellence (Audit)

Chicago, IL
Full Time
Paid
  • Responsibilities

    Job Description

    This role will be a part of _Operations Excellence function and Tech Excellence team and will report to Sr. Manager – Service Delivery. The Audit Manager for SOX Compliance will lead all aspects of the management and governance of SOX-related IT applications, focusing on Access Management, Change Management, Segregation of Duties (SOD), and remediation of deficiencies identified by internal and external audits. The role requires a strong understanding of SOX requirements, IT controls, and audit methodologies, as well as the ability to provide strategic recommendations and implement corrective actions to ensure compliance and mitigate risks.

    Responsibilities & Accountabilities:

    • Lead and handle the compliance efforts for SOX-relevant IT applications, ensuring adherence to established SOX requirements and internal control frameworks.
    • Supervise the access management process, including the implementation and review of user access controls to ensure accurate segregation of duties and minimize unauthorized access.
    • Lead and Coordinate Cybersecurity controls and standards set by the McDonalds Global Security team
    • Lead, control and coordinate across teams within EPP on the following actions –
    • Data Security (data scanning, data security posture management, etc), Global Security Operations Center (threat detection), Software/resource clarity, Vulnerability Management (High or Critical issues), Identity & Entitlements assessments/issues, Configuration
    • Conduct periodic user access reviews for SOX in-scope applications and address any identified deficiencies
    • Ensure that all changes stay in sync with SOX requirements and that any deviations are identified and remediated.
    • Evaluate and make sure SOD controls within IT applications to prevent conflicts of interest and reduce the risk of fraud or errors.
    • Identify and assess IT deficiencies reported by internal and external auditors, particularly those related to SOX compliance.
    • Develop and implement remediation plans to address identified deficiencies, ensuring timely resolution and communication with relevant partners.
    • Serve as the primary point of contact for SOX-related audits, coordinating with internal and external auditors to facilitate audit activities.
    • Continuously assess and improve IT controls, processes, and procedures to enhance SOX compliance and reduce the likelihood of deficiencies.
    • Stay up-to-date with regulatory changes, industry standard methodologies, and emerging risks to ensure the organization’s SOX compliance framework remains effective.
    • Provide training and mentorship to IT and business teams on SOX compliance requirements and standard methodologies.
    • Prepare and present audit reports, findings, and remediation plans to Director/senior management and audit committees if needed.
    • Review and recommend improvements for the SOX strategy initiative by examining current IT policies and procedures related to IT SOX processes, such as change management and access management.

    Benefits eligible : Yes
    Bonus eligible : Yes
    Long term incentive eligible : Yes
    The expected salary range for this role is $112,860 - $143,900 per year
    The above represents the expected salary range for this job requisition. Ultimately, in determining your pay, we may also consider your experience, and other job-related factors.

  • Qualifications

    Qualifications

    • 5+ years of proven experience in IT audit, SOX compliance, or a related field, with at least 2 years in a managerial role
    • Shown understanding of SOX requirements, IT general controls, and audit methodologies.
    • Experience with audit tools (Audit dashboard) and software, as well as ERP systems, is a plus.
    • Excellent communication and presentation skills

    Preferred Qualifications

    • Professional certifications such as CPA, CIA, CISA, or equivalent are helpful.

    Additional Information

    Benefits eligible: This position offers health and welfare benefits, a 401(k) plan, adoption assistance program, educational assistance program, flexible ways of working, and time off policies (including sick leave, parental leave, and vacation/PTO). Eligibility requirements apply to some benefits and may depend on job classification and length of employment.

    Bonus eligible: This position is eligible for a bonus, calculated based on individual and company performance.

    Long term Incentive eligible: This position is eligible for stock or other equity grants pursuant to McDonald’s long-term incentive plan.

    McDonald’s is an equal opportunity employer committed to the diversity of our workforce. We promote an inclusive work environment that creates feel-good moments for everyone. McDonald’s provides reasonable accommodations to qualified individuals with disabilities as part of the application or hiring process or to perform the essential functions of their job. If you need assistance accessing or reading this job posting or otherwise feel you need an accommodation during the application or hiring process, please contact mcdhrbenefits@us.mcd.com. Reasonable accommodations will be determined on a case-by-case basis.

    McDonald’s provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to sex, sex stereotyping, pregnancy (including pregnancy, childbirth, and medical conditions related to pregnancy, childbirth, or breastfeeding), race, color, religion, ancestry or national origin, age, disability status, medical condition, marital status, sexual orientation, gender, gender identity, gender expression, transgender status, protected military or veteran status, citizenship status, genetic information, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

    Nothing in this job posting or description should be construed as an offer or guarantee of employment.