Sr Director, Cyber Third-Party Risk Management

McDonald's

Base: not specified; bonus/equity: eligible for bo...
On-site
Third-party cyber risk management
Global tprm program design
Continuous monitoring implementation
McDonald's is seeking a Senior Director of Cyber Third-Party Risk Management to lead and modernize its global third-party cyber risk management capabilities. The role demands extensive experience in cybersecurity and a strong ability to innovate risk management strategies in a complex, distributed environment

Job Summary

  • The role is accountable for leading and modernizing McDonald's global third-party cyber risk management capability across a highly distributed technology ecosystem.
  • This position requires transforming the TPRM process from questionnaire-driven approaches to a modern program blending survey efficiency with technical validation and continuous monitoring.
  • McDonald's offers outstanding benefits including a sabbatical program, tuition assistance, flexible work arrangements, and eligibility for bonuses and long-term incentives.

Matching Summary

Match Score: 85

McDonald's is seeking a Senior Director of Cyber Third-Party Risk Management to lead and modernize its global third-party cyber risk management capabilities. The role demands extensive experience in cybersecurity and a strong ability to innovate risk management strategies in a complex, distributed environment.

Salary

Base: Not specified; Bonus/Equity: Eligible for bonus and stock/equity grants; Benefits: Comprehensive health insurance, dental, vision, life insurance, sabbatical, tuition assistance

Skills & Requirements

Must-have

  • Third-party cyber risk management
  • Global TPRM program design
  • Continuous monitoring implementation
  • Technical validation of controls
  • Risk-based assessment lifecycle

Nice-to-have

  • AI-assisted risk scoring techniques
  • Franchise environment experience
  • Systemic concentration risk knowledge
  • Executive communication skills
  • Innovation in assurance models

Key Requirements

  • 12+ years in cybersecurity or technology risk
  • Proven experience designing global TPRM programs
  • Experience modernizing TPRM beyond questionnaires
  • Strong technical fluency in cloud and APIs
  • Leadership experience building high-performing teams

Work Rights

Not specified

Tailored Resume

Cover Letter