Sr Director, Cyber Third-Party Risk Management

McDonald’s Corporation

Actively hiring

Chicago, US Posted 34 days ago

View original post Log in to save

At a glance

AI generated

TL;DR

The Senior Director of Cyber Third-Party Risk Management at McDonald’s leads the modernization of a global TPRM program across a complex technology ecosystem, focusing on scalable, intelligence-driven assurance over third-party cyber risk. This role involves designing and executing a risk-based approach that integrates technical validation, continuous monitoring, and automation to move beyond traditional questionnaire methods. Key responsibilities include establishing a full lifecycle for third-party risk management, implementing continuous monitoring capabilities, and collaborating with cross-functional teams to standardize security requirements across markets. The ideal candidate has over 12 years of experience in cybersecurity, particularly in TPRM within large enterprises, and possesses strong technical fluency in cloud, APIs, identity, data flows, and integration architectures. Familiarity with NIST CSF, ISO 27001, GDPR, and CCPA is preferred, along with relevant certifications like CISSP or CISM.

Skills

CI/CD NIST CSF ISO 27001 GDPR CCPA Kubernetes AWS Azure GCP Terraform Python SQL PostgreSQL Docker Prometheus Grafana GitLab Jenkins

What you'll do

Own and evolve McDonald’s global TPRM strategy to be scalable and risk-based.
Implement continuous monitoring for real-time visibility into third-party cyber posture.
Design new approaches to third-party assurance using automation and AI-assisted techniques.
Maintain a centralized inventory of third-party engagements and risk tiers across the enterprise.
Provide clear reporting on third-party cyber risk posture, trends, and concentration risks.
Build and lead a high-performing team of TPRM professionals and technical reviewers.

What we're looking for

12+ years of experience in cybersecurity or information security with significant third-party cyber risk management.
Proven track record designing and leading a global TPRM program across the full lifecycle.
Experience modernizing TPRM by incorporating technical validation, automation, and continuous monitoring.
Strong technical expertise in cloud, APIs, identity, data flows, and integration architectures.
Ability to oversee deep technical assessments for high-risk third parties and work with security architects.
Demonstrated leadership in building high-performing teams and influencing senior stakeholders across departments.
Strong executive communication skills for reporting third-party cyber risk posture to senior leadership.

Market check

Salary context

This listing doesn't show a salary. Similar roles on FindRole typically pay $123,700–$201,596.

Peer median band

$123,700–$201,596

Median floor and ceiling across peers.

Typical midpoint (25–75%)

$139,500–$194,581

Middle half of comparable postings.

Based on 238 comparable postings.

* 240 is the maximum number of comparable postings sampled.

Employer

About McDonald’s Corporation

McDonald’s Corporation is the world's largest fast-food chain by revenue, operating over 40,000 locations in more than 100 countries.

McDonald’s Corporation currently has 60 open roles on FindRole.

Listed pay typically runs $138,207–$172,758 across 57 roles with salary data.

Most-posted roles

View all roles at McDonald’s Corporation

Similar roles

Director, Cybersecurity

Howard Hughes Medical Institute (HHMI)

Headquarters, US 101 days ago $213,319–$213,319

NIST CIS Controls Risk Management SOC Operations IAM Platforms Cloud Security Endpoint Protection Identity Governance Privileged Access Management Authentication Technologies AI/ML Security CI/CD Kubernetes AWS Python SQL Cyber Threat Intelligence Incident Response Disaster Recovery Planning

Sr. Director, Cyber Technical (Cyber Hunt, Logging and Threat Detection)

Capital One Financial

Mclean, Va, US 37 days ago $314,800–$359,300

AI/ML NIST CSF MITRE ATT&CK Splunk CrowdStrike Qualys AWS Security Hub CI/CD Kubernetes Docker Python Go PostgreSQL Multi-cloud Cyber Threat Intelligence Security Metrics Dashboards Incident Response

Sr. Analyst, Cybersecurity

Carmax

8901 - Corp Office West Crk, US 19 days ago

Sarbanes-Oxley GLBA HIPAA CFPB PCI NIST COSO OWASP ISO-27001 ITIL CRISC CISA CISM CISSP Terraform AWS Azure GCP Kubernetes Docker Python SQL PostgreSQL MongoDB Git Jira Confluence CI/CD

Cyber Infrastructure Specialist, Lead

Leidos

10182 San Antonio Tx, US 22 days ago

Linux Windows ServiceNow ElasticSIEM PaloAltoXSOAR Splunk DoDITIL CI/CD AWS Kubernetes Terraform Python PostgreSQL Git Docker

Director, Cyber Defense

Sony Group Corporation

Remote (Na / Reston 37.5, US) 17 days ago $220,000–$240,000

SIEM EDR SOAR AWS Azure Agile Kubernetes Docker CI/CD Python JavaScript PostgreSQL MongoDB Git Jira Terraform

Remote

Sr Analyst, Cyber Defense

McDonald’s Corporation

Chicago, Illinois, US 30 days ago $127,332–$159,165

SIEM EDR Python Autopsy Velociraptor Ghidra NIST Cybersecurity Framework Cyber Kill Chain SOAR Linux Windows MacOS CI/CD eDiscovery Forensics