Cybersecurity Engineer III - Governance, Risk & Compliance (ServiceNow GRC Developer)
About The Position
McDonald’s is accelerating technology innovation as part of its Accelerating the Arches growth strategy, focusing on Delivery, Digital, and Drive Thru to enhance customer experience. McDonald’s Global Technology aims to power future feel-good moments by leveraging AI, robotics, and emerging tech to digitize the Golden Arches and reshape the business globally. The company faces complex tech challenges, addressed by diverse and talented teams. The Cybersecurity Engineer III will join the GRC team, playing a pivotal role in ensuring the organization's security, compliance, and risk management. This involves GRC module development in ServiceNow, technical support, platform maintenance, and implementing innovative solutions to enhance security posture. This is a hybrid role based in Chicago and reports to the Sr. Manager – Governance, Risk & Compliance.
Requirements
- 5+ years of experience in information security, cybersecurity, privacy, risk management, or compliance fields.
- Strong understanding of GRC concepts, architectures, and best practices.
- Hands-on experience with ServiceNow GRC.
- Proficiency in scripting languages (e.g., Python, PowerShell) and API integrations.
- Strong analytical and problem-solving skills.
- Excellent communication and interpersonal skills.
- Ability to work independently and as part of a team.
Nice To Haves
- Relevant certifications such as CISSP, CRISC, CISA, CISM, or ServiceNow certifications are a plus.
Responsibilities
- Design, develop, engineer and configure GRC solutions in ServiceNow, such as TPRM, Risk & Control Assessments, Privacy Risk Assessments and Compliance Automation.
- Demonstrate GRC thought leadership with the ability to influence end‑to‑end GRC architectures and solutions, translating complex risk, compliance, and control requirements into scalable, platform‑based implementations.
- Provide technical support and troubleshooting for our ServiceNow GRC platform.
- Manage user access and permissions within the GRC platform, ensuring appropriate authorization levels. Perform periodic user access reviews.
- Automate routine tasks and processes to improve efficiency and reduce manual effort. Improve overall user experience on the GRC platform.
- Integrate the GRC platform with other systems and applications using APIs and other technologies.
- Develop and maintain comprehensive reports and dashboards to track key risks, controls, and performance metrics, and identify trends.
- Identify opportunities to enhance GRC platform automation and implement improvements.
Benefits
- Health and welfare benefits
- Comprehensive health insurance (includes medical, prescription drug, mental health, dental and vision coverage)
- Life insurance
- 401(k) plan
- Adoption assistance program
- Educational assistance program
- Flexible ways of working
- Time off policies (including sick leave, parental leave, and vacation/PTO)
- Bonus eligible (calculated based on individual and company performance)
- Long term Incentive eligible (stock or other equity grants pursuant to McDonald’s long-term incentive plan)
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed
