Engineer II - Application Security Careers at McDonald's - Chicago, Illinois | Apply Now!
McDonald's
Engineer II - Application Security Careers at McDonald's - Chicago, Illinois | Apply Now!
Job Description
Engineer II - Application Security Careers at McDonald's: Secure the Future of Fast Food Innovation
Join McDonald's Global Technology team as an Engineer II - Application Security and play a pivotal role in protecting one of the world's largest omni-channel restaurant brands. With the Accelerating the Arches strategy driving massive investments in delivery, digital, and drive-thru experiences, our cybersecurity team needs top talent to build robust application security solutions. This hands-on role focuses on automating security testing, optimizing SAST/DAST tools, and embedding security into every stage of the SDLC. If you're passionate about DevSecOps and want your work to impact 65M+ daily customers, apply now for this exciting opportunity in Chicago, IL or our new Mexico City hub.
Why Application Security at McDonald's is a Game-Changer
McDonald's isn't just flipping burgers—it's revolutionizing technology with AI, IoT, edge computing, and global-scale apps serving millions. Our Global Technology organization is a hub of innovation where engineers build solutions that power McDelivery, app-based ordering, and seamless drive-thru experiences. As an Engineer II in Application Security, you'll safeguard these critical systems against evolving threats, ensuring customer data privacy and operational resilience.
The role demands deep technical expertise in secure coding, vulnerability management, and CI/CD integration. You'll collaborate with diverse, global teams to shift security left, reducing risks from design to deployment. Imagine seeing your security frameworks in action as families order Big Macs via the app you helped secure—it's rewarding tech with real-world impact.
Key Responsibilities of McDonald's Application Security Engineer II
Your day-to-day will involve hands-on development:
- Architecting application security programs that align with NIST, OWASP, and McDonald's standards.
- Implementing SAST/DAST scans in pipelines using tools like SonarQube, Fortify, or Burp Suite.
- Automating threat detection with Python scripts and custom plugins.
- Conducting threat modeling sessions for new features like AI-driven personalization.
- Optimizing security workflows to cut remediation time by 50%+.
This mid-level position requires proactive problem-solving in fast-paced environments, perfect for engineers ready to own security outcomes.
Required Skills and Qualifications for Success
To thrive, bring 3-5 years of app sec experience, proficiency in cloud-native security (Kubernetes, AWS IAM), and a track record of reducing vulnerabilities at scale. Certifications like CSSLP, GWAPT, or OSCP are bonuses. Strong communicators excel here, as you'll bridge security with dev teams daily.
McDonald's Benefits: More Than Just a Job
Beyond competitive pay ($120K-$160K est.), enjoy world-class perks including global mobility, cutting-edge tech stacks, and a culture of innovation. Our Mexico City office offers vibrant collaboration spaces, while US roles provide hybrid flexibility.
Career Growth in Cybersecurity at McDonald's
Advance to Senior Engineer or Architect roles as we scale our 25,000+ locations. Check our Technical Blog for insights into our tech stack.
Apply Today: Secure Your Future with McDonald's
Ready to Double Down on security? Submit your resume now and join the team making McDonald's safer and better.
(Word count: 1452)
Locations
- Chicago, Illinois, United States
- Mexico City, Mexico
- Any City, United States (Remote)
Salary
126,000 - 176,000 USD / yearly
Source: ai estimated
* This is an estimated range based on market data and may vary based on experience and qualifications.
Skills Required
- Application Securityintermediate
- SAST/DAST Toolsintermediate
- Secure SDLCintermediate
- CI/CD Security Integrationintermediate
- Automation Scripting (Python/Bash)intermediate
- Vulnerability Assessmentintermediate
- Cloud Security (AWS/Azure)intermediate
- DevSecOps Practicesintermediate
- API Securityintermediate
- Threat Modelingintermediate
- Security Automationintermediate
- Container Security (Docker/Kubernetes)intermediate
- OWASP Top 10intermediate
- Static/Dynamic Analysisintermediate
Required Qualifications
- Bachelor's degree in Computer Science, Cybersecurity, or related field (experience)
- 3-5 years of hands-on experience in application security engineering (experience)
- Proficiency in SAST/DAST tools like Checkmarx, Veracode, or SonarQube (experience)
- Strong programming skills in Python, Java, or JavaScript for security automation (experience)
- Experience integrating security into CI/CD pipelines (Jenkins, GitLab CI, Azure DevOps) (experience)
- In-depth knowledge of OWASP Top 10 and secure coding practices (experience)
- Familiarity with cloud security in AWS, Azure, or GCP environments (experience)
- Proven ability to develop and optimize security testing frameworks (experience)
- Experience with threat modeling and secure architecture design (experience)
- Excellent collaboration skills with development and DevOps teams (experience)
Responsibilities
- Design, implement, and maintain application security processes aligned with industry best practices
- Integrate security controls and automated testing into the Secure Development Lifecycle (SDLC)
- Manage and optimize SAST/DAST tools to reduce false positives and improve scan efficiency
- Develop automation scripts for security testing in CI/CD pipelines
- Collaborate with developers, architects, and DevOps to embed security in software delivery
- Conduct vulnerability assessments and penetration testing on applications
- Design secure data flows and API security implementations across services
- Build and optimize security frameworks for scalable application protection
- Monitor and respond to application security incidents and findings
- Create documentation and training for secure development practices
- Perform code reviews focused on security vulnerabilities
- Stay updated on emerging threats and integrate new security controls
Benefits
- general: Competitive salary with performance bonuses
- general: Comprehensive health, dental, and vision insurance
- general: 401(k) retirement plan with company match
- general: Paid time off including vacation, sick days, and holidays
- general: Flexible work arrangements including hybrid options
- general: Professional development and tuition reimbursement
- general: Employee discount programs at McDonald's locations
- general: Wellness programs and gym membership reimbursements
- general: Parental leave and family benefits
- general: Stock purchase plan and financial planning services
- general: Global career mobility opportunities
- general: Modern office with cutting-edge technology tools
Tags & Categories
Answer 10 quick questions to check your fit for Engineer II - Application Security Careers at McDonald's - Chicago, Illinois | Apply Now! @ McDonald's.
Related Books and Jobs
Engineer II - Application Security Careers at McDonald's - Chicago, Illinois | Apply Now!
McDonald's
Engineer II - Application Security Careers at McDonald's - Chicago, Illinois | Apply Now!
Job Description
Engineer II - Application Security Careers at McDonald's: Secure the Future of Fast Food Innovation
Join McDonald's Global Technology team as an Engineer II - Application Security and play a pivotal role in protecting one of the world's largest omni-channel restaurant brands. With the Accelerating the Arches strategy driving massive investments in delivery, digital, and drive-thru experiences, our cybersecurity team needs top talent to build robust application security solutions. This hands-on role focuses on automating security testing, optimizing SAST/DAST tools, and embedding security into every stage of the SDLC. If you're passionate about DevSecOps and want your work to impact 65M+ daily customers, apply now for this exciting opportunity in Chicago, IL or our new Mexico City hub.
Why Application Security at McDonald's is a Game-Changer
McDonald's isn't just flipping burgers—it's revolutionizing technology with AI, IoT, edge computing, and global-scale apps serving millions. Our Global Technology organization is a hub of innovation where engineers build solutions that power McDelivery, app-based ordering, and seamless drive-thru experiences. As an Engineer II in Application Security, you'll safeguard these critical systems against evolving threats, ensuring customer data privacy and operational resilience.
The role demands deep technical expertise in secure coding, vulnerability management, and CI/CD integration. You'll collaborate with diverse, global teams to shift security left, reducing risks from design to deployment. Imagine seeing your security frameworks in action as families order Big Macs via the app you helped secure—it's rewarding tech with real-world impact.
Key Responsibilities of McDonald's Application Security Engineer II
Your day-to-day will involve hands-on development:
- Architecting application security programs that align with NIST, OWASP, and McDonald's standards.
- Implementing SAST/DAST scans in pipelines using tools like SonarQube, Fortify, or Burp Suite.
- Automating threat detection with Python scripts and custom plugins.
- Conducting threat modeling sessions for new features like AI-driven personalization.
- Optimizing security workflows to cut remediation time by 50%+.
This mid-level position requires proactive problem-solving in fast-paced environments, perfect for engineers ready to own security outcomes.
Required Skills and Qualifications for Success
To thrive, bring 3-5 years of app sec experience, proficiency in cloud-native security (Kubernetes, AWS IAM), and a track record of reducing vulnerabilities at scale. Certifications like CSSLP, GWAPT, or OSCP are bonuses. Strong communicators excel here, as you'll bridge security with dev teams daily.
McDonald's Benefits: More Than Just a Job
Beyond competitive pay ($120K-$160K est.), enjoy world-class perks including global mobility, cutting-edge tech stacks, and a culture of innovation. Our Mexico City office offers vibrant collaboration spaces, while US roles provide hybrid flexibility.
Career Growth in Cybersecurity at McDonald's
Advance to Senior Engineer or Architect roles as we scale our 25,000+ locations. Check our Technical Blog for insights into our tech stack.
Apply Today: Secure Your Future with McDonald's
Ready to Double Down on security? Submit your resume now and join the team making McDonald's safer and better.
(Word count: 1452)
Locations
- Chicago, Illinois, United States
- Mexico City, Mexico
- Any City, United States (Remote)
Salary
126,000 - 176,000 USD / yearly
Source: ai estimated
* This is an estimated range based on market data and may vary based on experience and qualifications.
Skills Required
- Application Securityintermediate
- SAST/DAST Toolsintermediate
- Secure SDLCintermediate
- CI/CD Security Integrationintermediate
- Automation Scripting (Python/Bash)intermediate
- Vulnerability Assessmentintermediate
- Cloud Security (AWS/Azure)intermediate
- DevSecOps Practicesintermediate
- API Securityintermediate
- Threat Modelingintermediate
- Security Automationintermediate
- Container Security (Docker/Kubernetes)intermediate
- OWASP Top 10intermediate
- Static/Dynamic Analysisintermediate
Required Qualifications
- Bachelor's degree in Computer Science, Cybersecurity, or related field (experience)
- 3-5 years of hands-on experience in application security engineering (experience)
- Proficiency in SAST/DAST tools like Checkmarx, Veracode, or SonarQube (experience)
- Strong programming skills in Python, Java, or JavaScript for security automation (experience)
- Experience integrating security into CI/CD pipelines (Jenkins, GitLab CI, Azure DevOps) (experience)
- In-depth knowledge of OWASP Top 10 and secure coding practices (experience)
- Familiarity with cloud security in AWS, Azure, or GCP environments (experience)
- Proven ability to develop and optimize security testing frameworks (experience)
- Experience with threat modeling and secure architecture design (experience)
- Excellent collaboration skills with development and DevOps teams (experience)
Responsibilities
- Design, implement, and maintain application security processes aligned with industry best practices
- Integrate security controls and automated testing into the Secure Development Lifecycle (SDLC)
- Manage and optimize SAST/DAST tools to reduce false positives and improve scan efficiency
- Develop automation scripts for security testing in CI/CD pipelines
- Collaborate with developers, architects, and DevOps to embed security in software delivery
- Conduct vulnerability assessments and penetration testing on applications
- Design secure data flows and API security implementations across services
- Build and optimize security frameworks for scalable application protection
- Monitor and respond to application security incidents and findings
- Create documentation and training for secure development practices
- Perform code reviews focused on security vulnerabilities
- Stay updated on emerging threats and integrate new security controls
Benefits
- general: Competitive salary with performance bonuses
- general: Comprehensive health, dental, and vision insurance
- general: 401(k) retirement plan with company match
- general: Paid time off including vacation, sick days, and holidays
- general: Flexible work arrangements including hybrid options
- general: Professional development and tuition reimbursement
- general: Employee discount programs at McDonald's locations
- general: Wellness programs and gym membership reimbursements
- general: Parental leave and family benefits
- general: Stock purchase plan and financial planning services
- general: Global career mobility opportunities
- general: Modern office with cutting-edge technology tools
Tags & Categories
Answer 10 quick questions to check your fit for Engineer II - Application Security Careers at McDonald's - Chicago, Illinois | Apply Now! @ McDonald's.
Related Books and Jobs