Vulnerability Management specialist

Job responsibilities

• Lead the design, development, planning and implementation of a best-in-class cyber security vulnerability management program specific to US restaurant technology.
• Lead efforts to integrate observability tools, threat intelligence sources, and ticketing systems with a consolidated vulnerability management tracking system.
• Manage the day-to-day identification and tracking of vulnerabilities, communicating, and collaborating with key stakeholders as they work to prioritize and mitigate vulnerabilities affecting their product or service.
• Build collaborative relationships with product owners, educating them about vulnerability management and risk processes.
• Conduct and manage regular vulnerability scans of restaurants using the market's scanning solution, synthesizing the results, and ensuring findings are imported into a VM tracking tool.
• Working with product owners to prioritize, plan and execute remediation or mitigation of known threats.
• Ensuring remediation plans are properly documented, updated, or replaced as product owner priorities change over time.
• Working with product owners to create risk management responses or treatment execution plans for critical and high vulnerabilities that can't be easily mitigated.
• Ensuring appropriate RATEs and risks are logged by product owners with the Global Security team to properly document vulnerabilities that have the potential to impact restaurant operations.
• Developing appropriate vulnerability management processes and metrics for measuring and tracking progress over time.
• Partner with global teams and market security leads in the sharing of ideas and knowledge that enhances the US market vulnerability management processes while promoting greater awareness and adoption throughout the organization.
• Work with team members and global teams to identify additional sources of vulnerabilities and input these into a VM tracking tool.
• Promote secure coding best practices throughout the organization, working to embed security into the DNA of McDonald's culture.
• As needed, assist team members with creating appropriately targeted messages that educate, engage, and enable key organizational stakeholders to embrace and support security initiatives that protect the brand and reduce cyber risk.
• Assist the Market Incident Manager during security events and incidents to document vulnerabilities and inputting into VM tracking tool.
• Work with team members to document quarterly Incident Response tabletop exercises and any vulnerabilities identified during the exercises.
• Assist team members in identifying and documenting daily operational security checks of team tools (Nessus, Sentinel One, New Relic, AppLocker) for new threats and vulnerabilities.
• Ability to effectively partner and collaborate with technical product teams about known vulnerabilities for restaurant technologies.

Perform technical writing and procedures documentation as needed.

Application will be accepted until 5/2/2024.

The annual salary for this position is between $52k - $139k depending on experience and other qualifications of the successful candidate.

This position is also eligible for Cognizant's discretionary annual incentive program, based on performance and subject to the terms of Cognizant's applicable plans.

Benefits: Cognizant offers the following benefits for this position, subject to applicable eligibility requirements:

• Medical/Dental/Vision/Life Insurance
• Paid holidays plus Paid Time Off
• 401(k) plan and contributions
• Long-term/Short-term Disability
• Paid Parental Leave
• Employee Stock Purchase Plan

Disclaimer: The salary, other compensation, and benefits information is accurate as of the date of this posting. Cognizant reserves the right to modify this information at any time, subject to applicable law

Cognizant is recognized as a Military Friendly Employer and is a coalition member of the Veteran Jobs Mission. Our Cognizant Veterans Network welcomes Veterans in building and growing a career at Cognizant that allows them to demonstrate the leadership, loyalty, integrity, and dedication to excellence instilled in them through participation in military service.

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

Employee Status : Full Time Employee

Shift : Day Job

Travel : No

Job Posting : Apr 02 2024

About Cognizant

Applicants may be required to attend interviews in person or by video conference. In addition, candidates may be required to present their current state or government issued ID during each interview.

Cognizant is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by law.

If you have a disability that requires a reasonable accommodation to search for a job opening or submit an application, please email with your request and contact information.