Job responsibilities:
- Lead the design, development, planning and implementation of a best-in-class cyber security vulnerability management program specific to US restaurant technology.
- Lead efforts to integrate observability tools, threat intelligence sources, and ticketing systems with a consolidated vulnerability management tracking system.
- Manage the day-to-day identification and tracking of vulnerabilities, communicating, and collaborating with key stakeholders as they work to prioritize and mitigate vulnerabilities affecting their product or service.
- Build collaborative relationships with product owners, educating them about vulnerability management and risk processes.
- Conduct and manage regular vulnerability scans of restaurants using the market’s scanning solution, synthesizing the results, and ensuring findings are imported into a VM tracking tool.
- Working with product owners to prioritize, plan and execute remediation or mitigation of known threats.
- Ensuring remediation plans are properly documented, updated, or replaced as product owner priorities change over time.
- Working with product owners to create risk management responses or treatment execution plans for critical and high vulnerabilities that can’t be easily mitigated.
- Ensuring appropriate RATEs and risks are logged by product owners with the Global Security team to properly document vulnerabilities that have the potential to impact restaurant operations.
- Developing appropriate vulnerability management processes and metrics for measuring and tracking progress over time.
- Partner with global teams and market security leads in the sharing of ideas and knowledge that enhances the US market vulnerability management processes while promoting greater awareness and adoption throughout the organization.
- Work with team members and global teams to identify additional sources of vulnerabilities and input these into a VM tracking tool.
- Promote secure coding best practices throughout the organization, working to embed security into the DNA of McDonald’s culture.
- As needed, assist team members with creating appropriately targeted messages that educate, engage, and enable key organizational stakeholders to embrace and support security initiatives that protect the brand and reduce cyber risk.
- Assist the Market Incident Manager during security events and incidents to document vulnerabilities and inputting into VM tracking tool.
- Work with team members to document quarterly Incident Response tabletop exercises and any vulnerabilities identified during the exercises.
- Assist team members in identifying and documenting daily operational security checks of team tools (Nessus, Sentinel One, New Relic, AppLocker) for new threats and vulnerabilities.
- Ability to effectively partner and collaborate with technical product teams about known vulnerabilities for restaurant technologies.
- Perform technical writing and procedures documentation as needed.
Cognizant is recognized as a Military Friendly Employer and is a coalition member of the Veteran Jobs Mission. Our Cognizant Veterans Network welcomes Veterans in building and growing a career at Cognizant that allows them to demonstrate the leadership, loyalty, integrity, and dedication to excellence instilled in them through participation in military service.
We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.
Equal Opportunity Employer M/F/D/V