Sr Manager Application Security

Company Description McDonald’s new growth strategy, Accelerating the Arches, encompasses all aspects of our business as the leading global omni-channel restaurant brand. As the consumer landscape shifts, we are using our competitive advantages to further strengthen our brand. One of our core growth strategies is to Double Down on the 3Ds (Delivery, Digital and Drive Thru). McDonald’s will accelerate technology innovation so 65M+ customers a day will experience a fast, easy experience, whether at one of our 25,000 and growing Drive Thrus, through McDelivery, dine-in or takeaway. Leading this revolution is McDonald’s Global Technology organization made up of intrapreneurs who get to build really cool tech with scary smart people using the latest innovations like AI, IOT, and edge computing. We do this working along diverse, global teams who are always hungry for a challenge. It’s bonus points when you get to see your family and friends use the tech you build at their favorite McD restaurant. We’re recruiting engineers to join our Global Technology team in Mexico City, Mexico as we open our McDonald’s Mexico office. Our Mexico City office will be a hub for technology innovation and operational support to help us build the solutions that will improve our customer, crew and employee experience each and every day. Job Description The Sr Manager – Application Security will lead the global application security program, combining strategic leadership with technical depth. This role oversees engineering and analyst teams to design, build, and optimize security solutions, manage vulnerabilities, and embed security into the software development lifecycle. The Sr Manager will champion DevSecOps adoption, oversee secure architecture design, and drive automation while providing leadership in prioritization, reporting, and remediation coordination. McDonald’s is investing heavily in technology to drive our growth. We’re looking at how to use technology to improve customer experience and build new customer experiences. We’re also exploring technologies that can help us reduce or eliminate repetitive tasks and make employees’ jobs ultimately exciting. With all the new projects and initiatives, it is a dynamic era in our cybersecurity growth, helping to make a safer and Better McDonald’s The Sr Manager – Application Security will play a strategic role in implementing and optimizing application security controls across the organization. This position requires strong technical expertise, leadership skills, and the ability to influence across development, product, and cybersecurity teams globally. Responsibilities & Accountabilities Program Leadership: Define and execute the global application security strategy, aligning with organizational goals and industry best practices. Engineering Oversight: Direct the build, configuration, and optimization of security tools (SAST, DAST, IAST, RASP, SCA), CI/CD integration, and automation frameworks. Architecture & Data Flows: Establish secure architecture patterns and data flow models for applications and APIs. Vulnerability Management: Oversee vulnerability identification, prioritization, and remediation across platforms. Testing & Validation: Ensure execution of advanced penetration testing, code reviews, and automated security checks. Reporting & Metrics: Deliver executive-level dashboards and reports on application security posture and risk trends. Collaboration: Partner with global technology teams, product owners, and business stakeholders to embed security into development processes. Team Leadership: Manage and mentor engineers and analysts, fostering a culture of continuous improvement and technical excellence. Continuous Improvement: Identify opportunities for process automation, tool enhancement, and emerging security practices. Qualifications Education Bachelor’s degree in Computer Science, Cybersecurity, or related field (Master’s preferred). Experience 8+ years in application security roles, including leadership experience. Expertise in secure SDLC, penetration testing, and security tooling (SAST, DAST, IAST, RASP, SCA). Strong knowledge of CI/CD pipelines, cloud-native security, and container security. Proven ability to lead global teams and influence senior stakeholders. Skills Excellent leadership and team management skills. Strong analytical and problem‑solving abilities. Effective communication and stakeholder engagement skills. Preferred certifications: CISSP, CSSLP, CCSP, CEH Master, AWS certifications. Additional Information McDonald’s is committed to providing qualified individuals with reasonable accommodations to perform the essential functions of their jobs. Additionally, if you (or another applicant of whom you are aware) require assistance accessing or reading this job posting or otherwise seek assistance in the application process, please contact recruiting.supportteam@us.mcd.com. Equal Employment Opportunity McDonald’s provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to sex, sex stereotyping, pregnancy (including pregnancy, childbirth, and medical conditions related to pregnancy, childbirth, or breastfeeding), race, color, religion, ancestry or national origin, age, disability status, medical condition, marital status, sexual orientation, gender, gender identity, gender expression, transgender status, protected military or veteran status, citizenship status, genetic information, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training. Nothing in this job posting or description should be construed as an offer or guarantee of employment. #J-18808-Ljbffr