Sr Manager - Vulnerability Management jobs in United States
cer-icon
Apply on Employer Site
company-logo

McDonald's · 20 hours ago

Sr Manager - Vulnerability Management

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level
money$167K/yr - $209K/yr
date5+ years exp

McDonald's is a leading global omni-channel restaurant brand focused on technology innovation. The Sr Manager - Vulnerability Management will lead the Vulnerability Management team, driving remediation of security risks and developing new cybersecurity services to protect user, device, and application data.

Restaurants
check
H1B Sponsor Likelynote

Responsibilities

Establish strategic relationships with key McDonald’s stakeholders ensuring vulnerability and threat management principles are incorporated into their processes, applications, and products across the enterprise to develop a culture of security
Support the rapid response of high-profile vulnerabilities and exposure across the system. Lead the publication advisories providing targeted technical guidance, prioritizing asset lists, and deadlines that are commensurate with the level of risk to the business. Identify mitigating controls where full remediation is not feasible
Oversee vulnerabilities and threats, determine their impact on McDonald’s, collaborate with Threat Intelligence, and coordinate responses based on risk levels
Apply vulnerability assessment tools and process outputs to develop and implement methods for detecting and assessing security weaknesses. Incorporate the use of industry standards and frameworks such as CVSS, EPSS, KEV, CPE & CWE to prioritize remediation activities
Elevate the understanding of key vulnerabilities and their prominent presence throughout the company to effectively convey and encourage the vital steps to address or minimize risk
Develop strategies and tools for producing reports and metrics to automate demonstrating the efficiency and strength of the vulnerability management initiative. This includes using a variety of tools such as Python, PowerShell, Power Automate, SQL, different database technologies, Power BI, Tableau, as well as ServiceNow or O365 tools
Develop standards, and procedures that support the global vulnerability management program. Lead vulnerability and risk assessments to evaluate severity, exploitability and potential business impact. Collaborate with technical and business stakeholders to validate assessment results, recommend mitigation strategies, and communicate actionable insights

Qualification

Vulnerability managementCybersecurity techniquesVulnerability detection toolsInformation security certificationsSecurity regulations knowledgeProcess-orientedLeadership skillsCommunication skillsTeam collaboration

Required

5+ years of experience in information security technologies and processes, vulnerability management, security operations, security engineering, program development or similar experience
Experience with vulnerability detection and prioritization tools, such as Tenable, Qualys, Wiz, Tanium, Avalor, Nucleus, Service Now VR, etc
Bachelor's degree in Cybersecurity, Information Security, or a related field
Expert knowledge of cybersecurity vulnerability management techniques, as applied to infrastructure, cloud, data, applications, platforms, operating systems and networks
Demonstrate outstanding leadership, and interpersonal verbal and written communication skills
Is process-oriented and able to manage multiple concurrent work streams
Ensure timely communication and updates through designated work management tools and remote productivity platforms
Participate in virtual meetings and contribute to discussions using remote productivity tools (e.g., Slack, Microsoft Teams, WebEx)
Ability to support 24 x 7 x 365 stakeholders and work as part of a cohesive team
Ability to work within tight timeframes and a fast-paced environment with changing priorities
Ability to manage people and vendors to deliver a successful Vulnerability Management program
Information security certifications such as Security+, Network+, CISSP, CCNA, GSEC, GCIA, GPEN, CEH
Proficiency in security regulations including NIST and PCI-DSS is a must
Knowledge of laws, regulations, and standards relevant to Cybersecurity / privacy

Benefits

Health and welfare benefits
A 401(k) plan
Adoption assistance program
Educational assistance program
Flexible ways of working
Time off policies (including sick leave, parental leave, and vacation/PTO)
Bonus, calculated based on individual and company performance
Stock or other equity grants pursuant to McDonald’s long-term incentive plan

Company

McDonald's

twitter
Glassdoor3.6
company-logo
McDonald’s is the world’s leading global foodservice retailer with over 37,000 locations in over 100 countries.
dateFounded in 1955
location
Chicago, Illinois, US
people-size10001+ employees
web-link
https://corporate.mcdonalds.com/

H1B Sponsorship

McDonald's has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (61)
2024 (77)
2023 (37)
2022 (31)
2021 (60)
2020 (12)

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Darryl Webb
Multi Unit Franchise Owner - President / CEO
linkedin
leader-logo
Douglas Gehrig
CEO
linkedin

Recent News

Livemint.com
Legendary US market investor Peter Lynch reveals why he doesn't invest in AI stocks. Hint: ‘I couldn’t pronounce Nvidia’
2025-10-07
Syracuse.com
2 injured in explosion at McDonald’s in Upstate NY
2025-10-07
The Motley Fool
Prediction: This Trend Could Help Spark PepsiCo's Turnaround
2025-10-07
Company data provided by crunchbase