Job Description

McDonald’s is seeking an Engineer II – Application Security to join our cybersecurity team and take ownership of building and optimizing application security solutions. This role is deeply technical and focuses on building, configuring, and optimizing security tools and frameworks, automating security testing, and designing secure data flows across applications and services. This position emphasizes hands‑on development, automation, and integration of security into the software development lifecycle.

McDonald’s is investing heavily in technology to drive our growth. We’re looking at how to use technology to improve customer experience and build new customer experiences. We’re also exploring technologies that can help us reduce or eliminate repetitive tasks and make employees’ jobs ultimately exciting. With all the new projects and initiatives, it is a dynamic era in our cybersecurity growth, helping to make a safer and better McDonald's!

The Engineer II – Application Security will play a hands‑on role in implementing and optimizing application security controls across the organization. This position will focus on integrating security into the software development lifecycle. The role requires close collaboration with developers, architects, and DevOps teams to integrate security controls into CI/CD pipelines, develop automation scripts, and verify security measures at scale.

Responsibilities & Accountabilities

  • Application Security Program Development:
    - Design, implement, and maintain application security processes aligned with organizational standards and industry best practices.
  • Secure Development Lifecycle (SDLC):
    Integrate security controls and testing into the SDLC, ensuring security is embedded from design through deployment.
  • SAST/DAST Tooling:
    Manage and optimize Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) tools. Continuously improve security workflows, reduce false positives, and enhance developer experience.
  • Collaboration:
    Partner with DevOps engineers, developers, architects, and product teams to provide guidance on implementing security gates and automated checks within CI/CD pipelines.
  • Continuous Improvement:
    Stay current with emerging threats, tools, and techniques; recommend enhancements to security processes and technologies.

#J-18808-Ljbffr

Apply for this Position

Ready to join ? Click the button below to submit your application.

Submit Application