Cybersecurity Engineer III

We are seeking an experienced Engineer III to join our Cybersecurity Endpoint Protection team, focused on building and sustaining enterprise-grade endpoint protection capabilities at global scale. This role emphasizes engineering rigor, platform reliability, and thoughtful implementation of endpoint security controls that reduce risk while enabling business operations. The Engineer III collaborates closely with Detection Engineering and other cybersecurity and technology teams to ensure endpoint controls generate high-fidelity telemetry and integrate effectively into detection and response workflows. This role contributes hands-on expertise, continuous improvement, and durable solutions across McDonald's endpoint ecosystem.

Duties

• Engineer, configure, and operate endpoint protection platforms and controls in alignment with established standards and architectures.
• Assist in the continuous improvement and operational stability of endpoint protection services.
• Collaborate closely with Detection Engineering to ensure endpoint telemetry supports high-quality detection use cases.
• Implement preventative and hardening controls that reduce endpoint risk while maintaining business usability.
• Contribute technical input into design discussions and improvement initiatives
• Develop and maintain automation, scripts, and tooling to improve consistency and operational efficiency.
• Troubleshoot complex endpoint protection issues and provide advanced technical support when escalated.
• Maintain technical documentation, runbooks, and standard operating procedures related to endpoint protection controls.
• Stay informed of emerging endpoint threats, trends, and technologies and share insights with the team.

• 5+ years of experience in cybersecurity with a strong focus on endpoint protection engineering or operations.
• Hands-on experience with enterprise endpoint protection or EDR/XDR platforms.
• Strong knowledge of Windows, macOS, and/or Linux endpoint operating systems.
• Experience implementing and operating security controls at enterprise scale.
• Proficiency in scripting or automation using tools such as PowerShell or Python.
• Solid understanding of cybersecurity frameworks and models such as NIST, CIS Controls, and MITRE ATT&CK.
• Ability to work effectively both independently and as part of cross-functional teams.
• Strong analytical, troubleshooting, and communication skills.
• Experience and ability to participate in a 24x7x365 team.
• Analyze sophisticated issues, detail their impact on the business, resolve their root causes, and identify corrective actions to prevent similar future events.
• Superb interpersonal skills, able to correspond with collaborators promptly and with attention to detail, vitality, and thoroughness to all levels of the organization.
• Self-starter who learns quickly on the job with minimal training.
• Forward thinking with solid business acumen.
• Exhibits excellent time management and interpersonal skills.
• Exhibits a high level of integrity, trustworthiness, and confidence, representing the organization and its management team at the highest level of professionalism.
• Experience handling third-party vendors and service providers., * 7+ years of experience designing, implementing, and operating enterprise scale endpoint protection and app control products across diverse global environments and operating systems.
• Demonstrated experience securing nontraditional and emerging endpoint platforms, including IoT devices, cloud hosted workloads, virtual machines, and containerized environments across major cloud providers (AWS, Azure, Google Cloud, OCI).
• Experience supporting or enabling blue, purple, or red team activities through endpoint control engineering, telemetry improvements, and detection enablement.
• Advanced proficiency in scripting and automation (e.g., Python, PowerShell) to operationalize controls, improve reliability, and reduce manual effort through engineering led solutions.

Benefits eligible: This position offers health and welfare benefits, including but not limited to comprehensive health insurance, which includes medical, prescription drug, mental health, dental and vision coverage, as well as, life insurance.

Bonus eligible: This position is eligible for a bonus, calculated based on individual and company performance.

Long term Incentive eligible: This position is eligible for stock or other equity grants pursuant to McDonald's long-term incentive plan.

McDonald's growth strategy, Accelerating the Arches, encompasses all aspects of our business as the leading global omni-channel restaurant brand. As the consumer landscape shifts we are using our competitive advantages to further strengthen our brand. One of our core growth strategies is to Double Down on the 3Ds (Delivery, Digital and Drive Thru). McDonald's will accelerate technology innovation so 65M+ customers a day will experience a fast, easy experience, whether at one of our 25,000 and growing Drive thrus, through McDelivery, dine-in or takeaway. McDonald's Global Technology is here to power tomorrow's feel-good moments. That's why you'll find us at the forefront of transformative technology, exploring new and innovative ways to serve our millions of customers and spread happiness one delicious Hot Fudge Sundae-dipped fry at a time. Using AI, robotics and emerging tech, we're digitizing the Golden Arches. Combine that with our unparalleled global scale, and we're reshaping all areas of the business, industry and every community that is home to a McDonald's restaurant. We face complex tech challenges every day. But that's where our diverse and talented teams come in. They're made up of the best and brightest from all over the globe, and they thrive in the space where feel-good meets fast-paced. Check out the McDonald's Global Technology Technical Blog (https://medium.com/mcdonalds-technical-blog) to learn how technology and our global team are directly enabling the Accelerating the Arches strategy.