4,730 Information Security Developer jobs in the United States

Sr Information Security Analyst Developer

Location: Texas City, TX, United States

Job ID:

Date Posted:Sep 10, 2025

POSTING DEADLINE

This position is posted until filled.

DEPARTMENT

Department: Information Security

JOB DESCRIPTION

Sr Information Security Analyst Developer

Salary Grade: G06

Minimum Midpoint Maximum

$78,537 - $06,024 - 133,511

Personnel in this job title may be covered by NERC CIP cyber security standards. If the position is covered, prior to being hired, promoted, or transferred into the position, the candidate must successfully pass a Personnel Risk Assessment, which includes identity verification and a criminal background check. Prior to being granted unescorted access to cyber secure areas, the candidate must attend cyber security training. Annual cyber security training is also required.

SUMMARY:

Acts as an IT security subject matter expert and technical consultant for security initiatives. Functions as technical engineer, system architect and operational support for the Identity Management (IDM) suite of products. Analyzes the security of systems and applications, and develops security baselines to protect information against unauthorized access. Conducts forensic investigations including investigations done in coordination with other departments.

ESSENTIAL DUTIES AND RESPONSIBILITIES:

Assesses, designs, and recommends security access requirements for systems and applications; creates ad hoc reports for review

Collaborates with enterprise architecture on the development of system and application security standards and baselines

Provisions electronic access for supported systems and applications in accordance with the Enterprise Access Provisioning Program

Ensures all access issues are handled in a timely manner and that supported systems are functioning properly

Creates, modifies and deletes profiles and other access controls as part of Role Based Access Control (RBAC) program

Provides routine reaccreditation of existing users and associated entitlements

Produces evidence in support of Company policies and regulatory requirements, such as Sarbanes-Oxley (SOX) and North American Electric Reliability Corporation (NERC) Critical Infrastructure Protection (CIP)

Participates in projects as a subject matter expert in support of business initiatives; ensures project work is completed in a timely manner in accordance with Information Security policies, programs and standards; oversees and continuously improves the Enterprise Access Provisioning Program

Performs user access reviews supporting Company investigation needs; assists with data preservation requests for litigation holds; conducts digital forensics in support of the Information Security program

Ensures teamwork to reduce security exposures

COMPETENCIES:

Strong knowledge of Company business practices and familiarity with Company products and services

Strong knowledge of digital forensic steps and incident response

Ability to develop and make recommendations for complex security processes, procedure improvements and management level security standards

Ability to identify best practices for security risk assessments, policies, standards and processes

Extensive policy, process, and standard development experience

Ability to demonstrate leadership skills and provide guidance to less experienced team members

QUALIFICATIONS

MINIMUM EDUCATION AND/OR EXPERIENCE:

Bachelor's degree from a four-year college or university in Information Resource Management, Business Computer Systems, Computer Science or Computer Security with five to seven years related experience, or equivalent combination of education and/or experience related to the discipline.

COMMUNICATION SKILLS:

Ability to maintain positive and productive working relationships with various individuals and groups

Ability to recognize and initiate complex tasks without direction

Ability to read and interpret technical manuals and reports, instructional documents, and procedure manuals

Ability to write procedural documentation and user instructions

Ability to speak effectively with various individuals, groups, and vendors

MATHEMATICAL SKILLS:

Ability to calculate figures and amounts such as discounts, interest, commissions, proportions, percentages, area, circumference, and volume

Ability to apply concepts of basic algebra and geometry

COMPUTER SKILLS:

In-depth knowledge and experience with Linux/UNIX servers, client & server applications and information security issues

In-depth knowledge of Microsoft, Linux and UNIX server security functionality

In-depth knowledge of related security software

In-depth knowledge of database product security technology, specifically Oracle and SQL, and general knowledge of physical security methods

ANALYSIS AND PROBLEM-SOLVING ABILITY:

Ability to understand and assimilate complex technical information. Ability to solve partial problems and deal with a variety of concrete variables in situations where only limited standardization exists. Ability to interpret a variety of instructions furnished in written, oral, diagram or schedule form.

DECISION MAKING:

Ability to make access management and provisioning decisions without direction, in accordance with Company policies, procedures and programs. Examines potential areas for service improvement and makes recommendations for changes to senior staff or management.

PHYSICAL DEMANDS:

While performing the duties of this job, the employee is regularly required to sit up to 2/3 of the time and talk and listen for long periods of time.

WORK ENVIRONMENT:

Office environment.

SAFETY AND ADA STATEMENT

Safety Statement:

Safety is a core value at (TXNM Energy/PNM/TNMP) and our vision, "everyone goes home safe", reflects our commitment to promoting an environment conducive to learning, improving and building safety practices. Our safety value is built upon the belief that every employee deserves to work in an environment free from harm.

Americans with Disabilities Act (ADA) Statement:

If you require assistance with the job application process due to a disability, please contact HR ADA Analyst, at .

About Glean:

Founded in 2019, Glean is an innovative AI-powered knowledge management platform designed to help organizations quickly find, organize, and share information across their teams. By integrating seamlessly with tools like Google Drive, Slack, and Microsoft Teams, Glean ensures employees can access the right knowledge at the right time, boosting productivity and collaboration. The company's cutting-edge AI technology simplifies knowledge discovery, making it faster and more efficient for teams to leverage their collective intelligence.

Glean was born from Founder & CEO Arvind Jain's deep understanding of the challenges employees face in finding and understanding information at work. Seeing firsthand how fragmented knowledge and sprawling SaaS tools made it difficult to stay productive, he set out to build a better way - an AI-powered enterprise search platform that helps people quickly and intuitively access the information they need. Since then, Glean has evolved into the leading Work AI platform, combining enterprise-grade search, an AI assistant, and powerful application- and agent-building capabilities to fundamentally redefine how employees work.

About the Role:

Glean is looking for an experienced Application Security Engineer with a primary focus on ensuring that our entire technology stack is free of software vulnerabilities (CVEs). This role is responsible for securing our base OS images, ensuring all open-source software (OSS) dependencies are scanned and patched, and integrating cutting-edge security tools into our CI/CD pipeline. The ideal candidate will drive the adoption of solutions like Google's Assured Open Source Software (OSS) and explore alternative approaches to enhance software security.

This role will lead the vulnerability management charter at Glean, identifying, evaluating, and implementing new security technologies and processes to proactively protect our infrastructure.
You will:

• Own and lead the vulnerability management lifecycle , ensuring our entire tech stack is free from known CVEs.
• Implement and manage secure base OS images , ensuring all underlying systems remain hardened against security threats.
• Continuously scan, monitor, and patch OSS dependencies to mitigate supply chain risks and enforce best practices for dependency management.
• Research and evaluate trusted open-source security solutions like Google's Assured Open Source Software and recommend their adoption where applicable.
• Work closely with engineering teams to integrate state-of-the-art SAST, DAST, and dependency scanning tools into the CI/CD pipeline to detect and remediate vulnerabilities early.
• Define and maintain best practices for secure coding to ensure all code developed by Glean engineers is free from vulnerabilities.
• Develop automated security validation tests to enforce vulnerability-free deployments across the stack.
• Lead the adoption and, if necessary, develop custom security solutions to manage and mitigate security risks at scale.
• Provide security guidance, training, and mentorship to engineering teams to foster a security-first culture at Glean.

About you:

• BA/BS in Computer Science, Cybersecurity, or a related field (or equivalent industry experience).
• 5+ years of experience in application security and vulnerability management.
• Deep understanding of software security vulnerabilities , including CVEs, OWASP Top 10, and supply chain risks.
• Experience with SAST, DAST, dependency scanning, and vulnerability management tools (e.g., Snyk, GitHub Dependabot, Trivy, Clair, Burp Suite, OWASP ZAP).
• Strong familiarity with package managers (npm, pip, Maven, Go modules) and securing open-source dependencies.
• Coding experience in languages such as Go, Python, Java, or C++ to develop security test cases and tooling.
• Hands-on experience with cloud-native security best practices across AWS, GCP, or Azure.
• Knowledge of container security, Kubernetes security, and securing microservices architectures.
• Ability to lead cross-functional initiatives and drive security adoption within engineering teams.

Key Knowledge & Skills:

• A strong proactive approach to security, identifying risks before they become problems.
• Excellent problem-solving skills and the ability to balance security with performance and usability.
• Experience working in fast-paced, highly collaborative environments where security is a shared responsibility.
• Passion for open-source security and keeping up with the latest trends in software vulnerability management.

Why Join Us?

At Glean, we believe in empowering individuals to do their best work in an inclusive and diverse environment. We do not discriminate based on gender, ethnicity, sexual orientation, religion, civil or family status, age, disability, or race. We're building a culture that values curiosity, collaboration, and impact.

If you're excited about leading the charge in securing a cutting-edge AI-powered search platform, we'd love to hear from you!

Benefits

• Competitive compensation
• Medical, Vision and Dental coverage
• Flexible work environment and time-off policy
• 401k
• Company events
• A home office improvement stipend when you first join
• Annual education stipend
• Wellness stipend
• Healthy lunches and dinners provided daily

Location:

• This role is hybrid (3-4 days a week in one of our SF Bay Area offices)

For California based applicants:

The standard base salary range for this position is $185,000 - $280,000 annually. Compensation offered will be determined by factors such as location, level, job-related knowledge, skills, and experience. Certain roles may be eligible for variable compensation, equity, and benefits.

We are a diverse bunch of people and we want to continue to attract and retain a diverse range of people into our organization. We're committed to an inclusive and diverse company. We do not discriminate based on gender, ethnicity, sexual orientation, religion, civil or family status, age, disability, or race.

#LI-HYBRID

Job Description:

Company Description:

McDonald's growth strategy, Accelerating the Arches, encompasses all aspects of our business as the leading global omni-channel restaurant brand. As the consumer landscape shifts we are using our competitive advantages to further strengthen our brand. One of our core growth strategies is to Double Down on the 3Ds (Delivery, Digital and Drive Thru). McDonald's will accelerate technology innovation so 65M+ customers a day will experience a fast, easy experience, whether at one of our 25,000 and growing Drive thrus, through McDelivery, dine-in or takeaway?

McDonald's Global Technology is here to power tomorrow's feel-good moments?

That's why you'll find us at the forefront of transformative technology, exploring new and innovative ways to serve our millions of customers and spread happiness one delicious Hot Fudge Sundae-dipped fry at a time?Using AI, robotics and emerging tech, we're digitizing the Golden Arches. Combine that with our unparalleled global scale, and we're reshaping all areas of the business, industry and every community that is home to a McDonald's restaurant?We face complex tech challenges every day. But that's where our diverse and talented teams come in. They're made up of the best and brightest from all over the globe, and they thrive in the space where feel-good meets fast-paced?

Check out the McDonald's ?Global Technology Technical Blog ( ?to learn how technology and our global team are directly enabling the Accelerating the Arches strategy?

Department Overview

We are seeking a Manager - Application Security to support our cybersecurity team as we protect our customers and the brand. You will develop and lead an application security program that is designed to ensure that all developed software meets exacting company standards while enabling continued innovation to meet customers' constantly evolving needs. Furthermore, this role partners with multi-functional regional teams to understand the business and technology needs of product teams and to support the implementation of solutions that can be applied globally through common frameworks, deployment guidelines and standards.

We are investing heavily in technology to drive our growth. We're looking at how to use technology to improve the customer experience and build new customer experiences. We're also exploring technologies that can help us reduce or eliminate repetitive tasks and make employees' jobs more exciting and rewarding. With all the new projects and initiatives, it is an exciting time to be on the cybersecurity team, helping to make a safer and better organization!

Responsibilties

The Manager of Application Security must set high-level strategy and direction for those performing these daily activities and clear expectations, goals, and requirements that must be obtained as a measure of success. This position will work closely with cybersecurity experts, Global Technology teams, suppliers, and business leaders to define cybersecurity controls that protect our assets and critical technology.

• Mentor and lead a global team of application security professionals.

• Collaborate with internal and external product and development teams to integrate security tools, standards, and processes into the Secure Software Development Lifecycle (SSDLC).

• Partner with our front-end digital channel development teams (mobile, web, etc.), back-end platform development teams (Point-of-Sale, eCommerce Platform, etc.), and security service delivery teams to triage and develop plans for remediation of application threats and vulnerabilities, at a global scale.

• Create and maintain documentation pertaining to integrated security processes and controls.

• Provide recommendations on Information Security policies and defining governance procedures for secure application development.

• Craft and deploy application security tools, processes, and documentation to support alignment with OWASP Top 10, Industry Standards, Current Events, and Best-Practices.

• You will ensure that developers and QA personnel have the appropriate level of security knowledge and support to perform their daily activities.

• Develop and maintain a technical roadmap to ensure the platform remains relevant among the ever changing threat environment.

• Translate the technical roadmap to product leadership to help them better understand how security threats and control technology will affect their business objectives.

• Support the development and testing of playbooks that prepare Application Security to respond to possible security incidents.

• Establish a governance framework to benchmark the state of said program and the performance of development teams against our current program.

• Stay up to date on the latest threats and the impacts to the ecosystem and lead brown-bag lunch-n-learns to share details on the latest threats and impacts to McD landscape.

Qualifications

• Bachelor's degree in Systems, Engineering, Computer Science, or other related fields. Preference will be given to an MBA from an accredited university along with an undergraduate degree or equivalent experience in technical area.

• Must have experience with SAST, DAST and SCA

• Leadership experience with IT Security management.

• 4+ years of professional experience in Application Security or Application Architecture.

Desired Skills:

• Familiarity with complex multinational companies and distributed business models.

• Strong ability to develop strategic direction and long-term objectives without supervision.

• Confirmed interpersonal skills with the ability to translate complex technical issues or concepts to non-technical audiences in a clear and concise manner that focuses on business value.

• Proficient in technical writing and creation of policies, standards, procedures and guidelines.

• Experience in any of the following tools & languages would be helpful: SonarQube, BurpSuite, Veracode (very important), JFrog Xra, and Snyk // Languages: Java, C#, C++, Visual Basic, Kotlin, Swift, React

• Demonstrable ability to quickly identify project objectives and define optimal project approach to align security controls with overall program success.

Compensation

Bonus Eligible: Yes

Long - Term Incentive: Yes

Benefits Eligible: Yes

Salary Range

Salary Ranges-$129,800.00 - $165,490.00

Additional Information:

Benefits eligible: This position offers health and welfare benefits, a 401(k) plan, adoption assistance program, educational assistance program, flexible ways of working, and time off policies (including sick leave, parental leave, and vacation/PTO). Eligibility requirements apply to some benefits and may depend on job classification and length of employment?

Bonus eligible: This position is eligible for a bonus, calculated based on individual and company performance.

Long term Incentive eligible: This position is eligible for stock or other equity grants pursuant to McDonald's long-term incentive plan.

McDonald's is an equal opportunity employer committed to the diversity of our workforce. We promote an inclusive work environment that creates feel-good moments for everyone. McDonald's provides reasonable accommodations to qualified individuals with disabilities as part of the application or hiring process or to perform the essential functions of their job. If you need assistance accessing or reading this job posting or otherwise feel you need an accommodation during the application or hiring process, please contact Reasonable accommodations will be determined on a case-by-case basis.

McDonald's provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to sex, sex stereotyping, pregnancy (including pregnancy, childbirth, and medical conditions related to pregnancy, childbirth, or breastfeeding), race, color, religion, ancestry or national origin, age, disability status, medical condition, marital status, sexual orientation, gender, gender identity, gender expression, transgender status, protected military or veteran status, citizenship status, genetic information, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

Nothing in this job posting or description should be construed as an offer or guarantee of employment.

Requsition ID: 889

Description
We're looking for a cyber security specialist to help validate penetration test results, contribute creative ideas to purple team and red team backlogs, and support the early phases of red team campaigns. In this role, you'll collaborate closely with offensive and defensive security teams to uncover vulnerabilities, simulate adversary behaviors, and strengthen our detection and response capabilities. Your work will directly contribute to improving our overall security posture in a high-impact, fast-paced environment. As a key member of the offensive security team, you will validate findings, help design attack scenarios, and partner with threat intelligence, detection engineering, and incident response teams. You'll get hands-on exposure to real-world attack techniques across applications, cloud environments, and enterprise systems, while continuously sharpening your skills in adversary simulation and ethical hacking. If you enjoy thinking like an attacker, supporting red team operations, and collaborating across security disciplines, we'd love to have you on our team. Key Responsibilities: - Validate penetration testing results to ensure accuracy, reproducibility, and actionable business impact. - Contribute to red team and purple team backlogs with new attack, detection, and testing ideas. - Support initial phases of red team campaigns, including reconnaissance, scoping, and infrastructure setup. - Collaborate with blue team counterparts to improve detection, monitoring, and incident response. - Stay current with emerging threats, vulnerabilities, and adversary TTPs to inform testing approaches. - Document methodologies, findings, and lessons learned for internal knowledge sharing. - Assist operators during red team campaigns and gradually take on more independent testing tasks
Skills
Penetration test, Application security, API Security
Pay and Benefits
The pay range for this position is $60.00 - $65.00/hr.
Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following:
- Medical, dental & vision - Critical Illness, Accident, and Hospital - 401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available - Life Insurance (Voluntary Life & AD&D for the employee and dependents) - Short and long-term disability - Health Spending Account (HSA) - Transportation benefits - Employee Assistance Program - Time Off/Leave (PTO, Vacation or Sick Leave)
Workplace Type
This is a hybrid position in Chicago,IL.
Application Deadline
This position is anticipated to close on Oct 10, 2025.
h4>About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.
The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
About TEKsystems and TEKsystems Global Services
We're a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We're a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We're strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We're building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com.
The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.

At U.S. Bank, we're on a journey to do our best. Helping the customers and businesses we serve to make better and smarter financial decisions and enabling the communities we support to grow and succeed. We believe it takes all of us to bring our shared ambition to life, and each person is unique in their potential. A career with U.S. Bank gives you a wide, ever-growing range of opportunities to discover what makes you thrive at every stage of your career. Try new things, learn new skills and discover what you excel at-all from Day One.
**Job Description**
Implements and supports security solutions and technologies to protect data/assets from unauthorized access, use, disclosure, destruction, modification, or disruption. Provides project leadership, security oversight, and risk management on security projects. Sets security design guidelines, frameworks, and models. Works to identify new security issues and risks and is involved in developing mitigation plans. Helps identify and document security objectives. Participates in projects that develop new intellectual property. Trains/mentors members of the team. Builds relationships and trust across the organization. Evaluates and recommends new and emerging security products and technologies. Works to develop and interpret security policies and procedures. Supports acquisition and vendor risk assessment due diligence. Leads the building, deployment, and maintenance of security tools utilized by the insider threat program. Proactively seeks solutions to mitigate risk and clearly communicate risks to the appropriate stakeholders.
**_The role offers a hybrid/flexible schedule, which means there's an in-office expectation of 3 or more days per week and the flexibility to work outside the office location for the other days at one of the following locations:_**
+ Cincinnati, OH
+ Minneapolis, MN
+ Charlotte, NC
+ Irving, TX
+ Washington D.C.
+ Atlanta, GA
+ Denver, CO
**Preferred Skills/Experience**
+ Typically a Bachelor's degree, or equivalent work experience
+ Typically five or more years of relevant experience
+ Advanced technical and functional subject matter expert knowledge across security domain areas
The ideal candidate is going to have a well rounded Cyber Security background with an emphasis on Cloud Security and experience with DevOps for automation in a Azure Cloud environment.
**Additional Required Skills/Experience**
+ **8+ years of senior cloud security experience**
+ 8+ years experience in an IT environment including service-oriented and IT architecture, industry trends and direction, system and technology integration, and IT standards, procedures and policies, and emerging technologies
+ 3+ years Data security and privacy
+ 3+ years working in Cloud Computing (AWS, Azure, GCP)
+ 8+ years experience with information security technologies and administration
+ 2+ years of experience in IT infrastructure management, application architecture, risk management, middleware technology, and IT project management
+ 2+ years demonstrated experience using techniques for protecting data stored in a SaaS environment.
+ 5+ years demonstrated experience performing technical troubleshooting and technical documentation
+ 2+ years of experience working in IT systems management including change control, software process improvement
+ 4+ years crafting technical designs that are clear, well thought out, and considers dependencies, failure states, maintainability, testability and ease of support
+ 5+ years working in an Agile software development lifecycle and DevOps principles
+ 5+ years experience in an environment focused on continuous improvement with the ability to focus on the bigger picture, identifying and prioritizing initiatives with the aim to consider more than one domain in this analysis
+ Ability to work cooperatively and professionally with co-workers, customers and management
+ Considers scalability, reliability and performance of systems/contexts affected when defining technical designs
+ Strong verbal and written skills with the ability to communicate technical solutions to leadership and lines of business
+ Identifying opportunities to simplify product and technical design
+ Ability to work cooperatively and professionally with co-workers, customers and management
+ Strong verbal and written communication skills
**Preferred Skills/Experience**
- CISSP, Azure, AWS, or GCP Certification would be a plus
- DevSecOps
If there's anything we can do to accommodate a disability during any portion of the application or hiring process, please refer to our disability accommodations for applicants ( .
**Benefits:**
Our approach to benefits and total rewards considers our team members' whole selves and what may be needed to thrive in and outside work. That's why our benefits are designed to help you and your family boost your health, protect your financial security and give you peace of mind. Our benefits include the following (some may vary based on role, location or hours):
+ Healthcare (medical, dental, vision)
+ Basic term and optional term life insurance
+ Short-term and long-term disability
+ Pregnancy disability and parental leave
+ 401(k) and employer-funded retirement plan
+ Paid vacation (from two to five weeks depending on salary grade and tenure)
+ Up to 11 paid holiday opportunities
+ Adoption assistance
+ Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law
U.S. Bank is an equal opportunity employer. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, and other factors protected under applicable law.
**E-Verify**
U.S. Bank participates in the U.S. Department of Homeland Security E-Verify program in all facilities located in the United States and certain U.S. territories. The E-Verify program is an Internet-based employment eligibility verification system operated by the U.S. Citizenship and Immigration Services. Learn more about the E-Verify program ( .
The salary range reflects figures based on the primary location, which is listed first. The actual range for the role may differ based on the location of the role. In addition to salary, U.S. Bank offers a comprehensive benefits package, including incentive and recognition programs, equity stock purchase 401(k) contribution and pension (all benefits are subject to eligibility requirements). Pay Range: $111,605.00 - $131,300.00
U.S. Bank will consider qualified applicants with arrest or conviction records for employment. U.S. Bank conducts background checks consistent with applicable local laws, including the Los Angeles County Fair Chance Ordinance and the California Fair Chance Act as well as the San Francisco Fair Chance Ordinance. U.S. Bank is subject to, and conducts background checks consistent with the requirements of Section 19 of the Federal Deposit Insurance Act (FDIA). In addition, certain positions may also be subject to the requirements of FINRA, NMLS registration, Reg Z, Reg G, OFAC, the NFA, the FCPA, the Bank Secrecy Act, the SAFE Act, and/or federal guidelines applicable to an agreement, such as those related to ethics, safety, or operational procedures.
Applicants must be able to comply with U.S. Bank policies and procedures including the Code of Ethics and Business Conduct and related workplace conduct and safety policies.
**Posting may be closed earlier due to high volume of applicants.**

Job Description:
Company Description:
McDonald's growth strategy, Accelerating the Arches, encompasses all aspects of our business as the leading global omni-channel restaurant brand. As the consumer landscape shifts we are using our competitive advantages to further strengthen our brand. One of our core growth strategies is to Double Down on the 3Ds (Delivery, Digital and Drive Thru). McDonald's will accelerate technology innovation so 65M+ customers a day will experience a fast, easy experience, whether at one of our 25,000 and growing Drive thrus, through McDelivery, dine-in or takeaway. 
McDonald's Global Technology is here to power tomorrow's feel-good moments.  
That's why you'll find us at the forefront of transformative technology, exploring new and innovative ways to serve our millions of customers and spread happiness one delicious Hot Fudge Sundae-dipped fry at a time. Using AI, robotics and emerging tech, we're digitizing the Golden Arches. Combine that with our unparalleled global scale, and we're reshaping all areas of the business, industry and every community that is home to a McDonald's restaurant. We face complex tech challenges every day. But that's where our diverse and talented teams come in. They're made up of the best and brightest from all over the globe, and they thrive in the space where feel-good meets fast-paced.  
Check out the McDonald's  Global Technology Technical Blog (  to learn how technology and our global team are directly enabling the Accelerating the Arches strategy. 
Department Overview
We are seeking a Manager - Application Security to support our cybersecurity team as we protect our customers and the brand. You will develop and lead an application security program that is designed to ensure that all developed software meets exacting company standards while enabling continued innovation to meet customers' constantly evolving needs. Furthermore, this role partners with multi-functional regional teams to understand the business and technology needs of product teams and to support the implementation of solutions that can be applied globally through common frameworks, deployment guidelines and standards.
We are investing heavily in technology to drive our growth. We're looking at how to use technology to improve the customer experience and build new customer experiences. We're also exploring technologies that can help us reduce or eliminate repetitive tasks and make employees' jobs more exciting and rewarding. With all the new projects and initiatives, it is an exciting time to be on the cybersecurity team, helping to make a safer and better organization!
Responsibilties
The Manager of Application Security must set high-level strategy and direction for those performing these daily activities and clear expectations, goals, and requirements that must be obtained as a measure of success. This position will work closely with cybersecurity experts, Global Technology teams, suppliers, and business leaders to define cybersecurity controls that protect our assets and critical technology.
+ Mentor and lead a global team of application security professionals.
+ Collaborate with internal and external product and development teams to integrate security tools, standards, and processes into the Secure Software Development Lifecycle (SSDLC).
+ Partner with our front-end digital channel development teams (mobile, web, etc.), back-end platform development teams (Point-of-Sale, eCommerce Platform, etc.), and security service delivery teams to triage and develop plans for remediation of application threats and vulnerabilities, at a global scale.
+ Create and maintain documentation pertaining to integrated security processes and controls.
+ Provide recommendations on Information Security policies and defining governance procedures for secure application development.
+ Craft and deploy application security tools, processes, and documentation to support alignment with OWASP Top 10, Industry Standards, Current Events, and Best-Practices.
+ You will ensure that developers and QA personnel have the appropriate level of security knowledge and support to perform their daily activities.
+ Develop and maintain a technical roadmap to ensure the platform remains relevant among the ever changing threat environment.
+ Translate the technical roadmap to product leadership to help them better understand how security threats and control technology will affect their business objectives.
+ Support the development and testing of playbooks that prepare Application Security to respond to possible security incidents.
+ Establish a governance framework to benchmark the state of said program and the performance of development teams against our current program.
+ Stay up to date on the latest threats and the impacts to the ecosystem and lead brown-bag lunch-n-learns to share details on the latest threats and impacts to McD landscape.
Qualifications
+ Bachelor's degree in Systems, Engineering, Computer Science, or other related fields. Preference will be given to an MBA from an accredited university along with an undergraduate degree or equivalent experience in technical area.
+ Must have experience with SAST, DAST and SCA
+ Leadership experience with IT Security management.
+ 4+ years of professional experience in Application Security or Application Architecture.
Desired Skills:
+ Familiarity with complex multinational companies and distributed business models.
+ Strong ability to develop strategic direction and long-term objectives without supervision.
+ Confirmed interpersonal skills with the ability to translate complex technical issues or concepts to non-technical audiences in a clear and concise manner that focuses on business value.
+ Proficient in technical writing and creation of policies, standards, procedures and guidelines.
+ Experience in any of the following tools & languages would be helpful: SonarQube, BurpSuite, Veracode (very important), JFrog Xra, and Snyk // Languages: Java, C#, C++, Visual Basic, Kotlin, Swift, React
+ Demonstrable ability to quickly identify project objectives and define optimal project approach to align security controls with overall program success.
Compensation
Bonus Eligible: Yes
Long - Term Incentive: Yes
Benefits Eligible: Yes
Salary Range
Salary Ranges-$129,800.00 - $165,490.00
Additional Information:
Benefits eligible: This position offers health and welfare benefits, a 401(k) plan, adoption assistance program, educational assistance program, flexible ways of working, and time off policies (including sick leave, parental leave, and vacation/PTO). Eligibility requirements apply to some benefits and may depend on job classification and length of employment. 
Bonus eligible: This position is eligible for a bonus, calculated based on individual and company performance.
Long term Incentive eligible: This position is eligible for stock or other equity grants pursuant to McDonald's long-term incentive plan.
McDonald's is an equal opportunity employer committed to the diversity of our workforce. We promote an inclusive work environment that creates feel-good moments for everyone. McDonald's provides reasonable accommodations to qualified individuals with disabilities as part of the application or hiring process or to perform the essential functions of their job. If you need assistance accessing or reading this job posting or otherwise feel you need an accommodation during the application or hiring process, please contact Reasonable accommodations will be determined on a case-by-case basis.
McDonald's provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to sex, sex stereotyping, pregnancy (including pregnancy, childbirth, and medical conditions related to pregnancy, childbirth, or breastfeeding), race, color, religion, ancestry or national origin, age, disability status, medical condition, marital status, sexual orientation, gender, gender identity, gender expression, transgender status, protected military or veteran status, citizenship status, genetic information, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.
Nothing in this job posting or description should be construed as an offer or guarantee of employment.
Requsition ID: 889

At U.S. Bank, we're on a journey to do our best. Helping the customers and businesses we serve to make better and smarter financial decisions and enabling the communities we support to grow and succeed. We believe it takes all of us to bring our shared ambition to life, and each person is unique in their potential. A career with U.S. Bank gives you a wide, ever-growing range of opportunities to discover what makes you thrive at every stage of your career. Try new things, learn new skills and discover what you excel at-all from Day One.
**Job Description**
Implements and supports security solutions and technologies to protect data/assets from unauthorized access, use, disclosure, destruction, modification, or disruption. Provides project leadership, security oversight, and risk management on security projects. Sets security design guidelines, frameworks, and models. Works to identify new security issues and risks and is involved in developing mitigation plans. Helps identify and document security objectives. Participates in projects that develop new intellectual property. Trains/mentors members of the team. Builds relationships and trust across the organization. Evaluates and recommends new and emerging security products and technologies. Works to develop and interpret security policies and procedures. Supports acquisition and vendor risk assessment due diligence. Leads the building, deployment, and maintenance of security tools utilized by the insider threat program. Proactively seeks solutions to mitigate risk and clearly communicate risks to the appropriate stakeholders.
**_The role offers a hybrid/flexible schedule, which means there's an in-office expectation of 3 or more days per week and the flexibility to work outside the office location for the other days at one of the following locations:_**
+ Cincinnati, OH
+ Minneapolis, MN
+ Charlotte, NC
+ Irving, TX
+ Washington D.C.
+ Atlanta, GA
+ Denver, CO
**Preferred Skills/Experience**
+ Typically a Bachelor's degree, or equivalent work experience
+ Typically five or more years of relevant experience
+ Advanced technical and functional subject matter expert knowledge across security domain areas
The ideal candidate is going to have a well rounded Cyber Security background with an emphasis on Cloud Security and experience with DevOps for automation in a Azure Cloud environment.
**Additional Required Skills/Experience**
+ **8+ years of senior cloud security experience**
+ 8+ years experience in an IT environment including service-oriented and IT architecture, industry trends and direction, system and technology integration, and IT standards, procedures and policies, and emerging technologies
+ 3+ years Data security and privacy
+ 3+ years working in Cloud Computing (AWS, Azure, GCP)
+ 8+ years experience with information security technologies and administration
+ 2+ years of experience in IT infrastructure management, application architecture, risk management, middleware technology, and IT project management
+ 2+ years demonstrated experience using techniques for protecting data stored in a SaaS environment.
+ 5+ years demonstrated experience performing technical troubleshooting and technical documentation
+ 2+ years of experience working in IT systems management including change control, software process improvement
+ 4+ years crafting technical designs that are clear, well thought out, and considers dependencies, failure states, maintainability, testability and ease of support
+ 5+ years working in an Agile software development lifecycle and DevOps principles
+ 5+ years experience in an environment focused on continuous improvement with the ability to focus on the bigger picture, identifying and prioritizing initiatives with the aim to consider more than one domain in this analysis
+ Ability to work cooperatively and professionally with co-workers, customers and management
+ Considers scalability, reliability and performance of systems/contexts affected when defining technical designs
+ Strong verbal and written skills with the ability to communicate technical solutions to leadership and lines of business
+ Identifying opportunities to simplify product and technical design
+ Ability to work cooperatively and professionally with co-workers, customers and management
+ Strong verbal and written communication skills
**Preferred Skills/Experience**
- CISSP, Azure, AWS, or GCP Certification would be a plus
- DevSecOps
If there's anything we can do to accommodate a disability during any portion of the application or hiring process, please refer to our disability accommodations for applicants ( .
**Benefits:**
Our approach to benefits and total rewards considers our team members' whole selves and what may be needed to thrive in and outside work. That's why our benefits are designed to help you and your family boost your health, protect your financial security and give you peace of mind. Our benefits include the following (some may vary based on role, location or hours):
+ Healthcare (medical, dental, vision)
+ Basic term and optional term life insurance
+ Short-term and long-term disability
+ Pregnancy disability and parental leave
+ 401(k) and employer-funded retirement plan
+ Paid vacation (from two to five weeks depending on salary grade and tenure)
+ Up to 11 paid holiday opportunities
+ Adoption assistance
+ Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law
U.S. Bank is an equal opportunity employer. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, and other factors protected under applicable law.
**E-Verify**
U.S. Bank participates in the U.S. Department of Homeland Security E-Verify program in all facilities located in the United States and certain U.S. territories. The E-Verify program is an Internet-based employment eligibility verification system operated by the U.S. Citizenship and Immigration Services. Learn more about the E-Verify program ( .
The salary range reflects figures based on the primary location, which is listed first. The actual range for the role may differ based on the location of the role. In addition to salary, U.S. Bank offers a comprehensive benefits package, including incentive and recognition programs, equity stock purchase 401(k) contribution and pension (all benefits are subject to eligibility requirements). Pay Range: $111,605.00 - $131,300.00
U.S. Bank will consider qualified applicants with arrest or conviction records for employment. U.S. Bank conducts background checks consistent with applicable local laws, including the Los Angeles County Fair Chance Ordinance and the California Fair Chance Act as well as the San Francisco Fair Chance Ordinance. U.S. Bank is subject to, and conducts background checks consistent with the requirements of Section 19 of the Federal Deposit Insurance Act (FDIA). In addition, certain positions may also be subject to the requirements of FINRA, NMLS registration, Reg Z, Reg G, OFAC, the NFA, the FCPA, the Bank Secrecy Act, the SAFE Act, and/or federal guidelines applicable to an agreement, such as those related to ethics, safety, or operational procedures.
Applicants must be able to comply with U.S. Bank policies and procedures including the Code of Ethics and Business Conduct and related workplace conduct and safety policies.
**Posting may be closed earlier due to high volume of applicants.**

The Senior Application Security Architect is responsible for designing, implementing, and overseeing enterprise-wide application security architecture and standards. This role focuses on establishing security frameworks, conducting architecture reviews, developing security baselines, and leading strategic security initiatives that have broad impact across the organization. The position requires a blend of technical expertise, architectural thinking, and leadership to embed security throughout the software development lifecycle.
Top Skills:
Strong background in Development and Application Security Architecture and how Security is built in to Application Development
Threat Modeling experience with (Stride, OWASP, etc)
Cloud Security Experience
Nth Gen AI or any Ai experience
Job Responsibilities:
- Design and establish enterprise application security architecture frameworks and reference models aligned with business objectives and risk tolerance
- Lead architecture reviews of applications and systems to identify security gaps and recommend appropriate controls
- Develop and maintain security baselines, standards, and patterns for different technology stacks (web, mobile, API, microservices) and deployment models
- Create and evolve threat modeling methodologies (STRIDE, PASTA, OCTAVE) and facilitate threat modeling sessions with development teams
- Define secure coding standards and security requirements for different application types based on data classification and risk profile
- Architect security solutions for authentication, authorization, encryption, and secure communication channels
- Establish security guardrails for cloud-native applications, serverless architectures, and infrastructure-as-code implementations
- Design and implement API security strategies including OAuth/OIDC flows, API gateways, and rate limiting
- Integrate security architecture principles into CI/CD pipelines to support DevSecOps initiatives
- Evaluate and recommend security tools and technologies for the enterprise security tech stack
- Develop security architecture roadmaps and guide implementation of security capabilities
- Partner with development teams to design secure solutions that balance security requirements with business needs
- Lead strategic security initiatives with enterprise-wide impact
- Leverage GenAI technologies to enhance security architecture reviews and automate security analysis
- Maintain documentation of security architecture decisions, patterns, and reference implementations
- Develop and deliver security architecture training to raise security awareness among developers and architects
- Stay current with emerging security threats, technologies, and architectural approaches
- Perform security design reviews for new applications and major changes to existing applications
- Architect secure data handling practices including encryption at rest and in transit
Qualifications:
- Bachelor's degree in Computer Science, Information Security, or related technical field required
- 5+ years of experience in application security, with at least 2 years in security architecture roles
- Deep knowledge of secure design principles, threat modeling methodologies, and security patterns
- Experience designing security controls for cloud environments (AWS, Azure, GCP)
- Proficiency in evaluating and implementing application security tools (SAST, DAST, IAST, SCA)
- Hands-on experience with security testing tools such as Burp Suite, OWASP ZAP, and other proxy tools
- Experience with secure software development practices and DevSecOps implementation
- Strong understanding of OWASP Top 10, SANS CWE, and other security standards
- Knowledge of secure authentication mechanisms (MFA, SSO, OAuth 2.0, SAML, OIDC)
- Experience with secure API design and implementation of API security controls
- Knowledge of regulatory requirements (PCI-DSS, GDPR, SOX, etc.) and their architectural implications
- Experience with containerization, microservices, and API security
- Proficiency in one or more programming languages (Java, Python, JavaScript preferred)
- Experience with secure code review techniques and identifying common vulnerability patterns
- Knowledge of cryptographic protocols and implementations
- Experience with security requirements for modern application architectures (SPA, serverless, etc.)
- Excellent communication skills with ability to translate complex security concepts to technical and non-technical audiences
- Experience leading cross-functional security initiatives and influencing stakeholders
- Certifications such as CSSLP, CISSP, AWS Security Specialty are highly desirable
This position requires a strategic thinker who can balance security requirements with business objectives while driving the organization toward a more secure application ecosystem.
***Nice to have - Experience with securing Agentic AI or leveraging AI for security***
Architect exp:
Need: a lot of app teams and developers are spinning up.
Formalize a process for high priority applications (approval - provide security requirements).
Evaluate a biz perspective (functionality) look at technical understanding (read code, how things are deployed, coming in and applying these security controls) make sure security is being baked in.
Exp in threat modeling (STRIDE, OWASP, DREAD)
Pay and Benefits
The pay range for this position is $75.00 - $85.00/hr.
Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following:
- Medical, dental & vision - Critical Illness, Accident, and Hospital - 401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available - Life Insurance (Voluntary Life & AD&D for the employee and dependents) - Short and long-term disability - Health Spending Account (HSA) - Transportation benefits - Employee Assistance Program - Time Off/Leave (PTO, Vacation or Sick Leave)
Workplace Type
This is a hybrid position in Rockville,MD.
Application Deadline
This position is anticipated to close on Oct 11, 2025.
h4>About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.
The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
About TEKsystems and TEKsystems Global Services
We're a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We're a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We're strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We're building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com.
The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.

At U.S. Bank, we're on a journey to do our best. Helping the customers and businesses we serve to make better and smarter financial decisions and enabling the communities we support to grow and succeed. We believe it takes all of us to bring our shared ambition to life, and each person is unique in their potential. A career with U.S. Bank gives you a wide, ever-growing range of opportunities to discover what makes you thrive at every stage of your career. Try new things, learn new skills and discover what you excel at-all from Day One.
**Job Description**
Implements and supports security solutions and technologies to protect data/assets from unauthorized access, use, disclosure, destruction, modification, or disruption. Provides project leadership, security oversight, and risk management on security projects. Sets security design guidelines, frameworks, and models. Works to identify new security issues and risks and is involved in developing mitigation plans. Helps identify and document security objectives. Participates in projects that develop new intellectual property. Trains/mentors members of the team. Builds relationships and trust across the organization. Evaluates and recommends new and emerging security products and technologies. Works to develop and interpret security policies and procedures. Supports acquisition and vendor risk assessment due diligence. Leads the building, deployment, and maintenance of security tools utilized by the insider threat program. Proactively seeks solutions to mitigate risk and clearly communicate risks to the appropriate stakeholders.
**_The role offers a hybrid/flexible schedule, which means there's an in-office expectation of 3 or more days per week and the flexibility to work outside the office location for the other days at one of the following locations:_**
+ Cincinnati, OH
+ Minneapolis, MN
+ Charlotte, NC
+ Irving, TX
+ Washington D.C.
+ Atlanta, GA
+ Denver, CO
**Preferred Skills/Experience**
+ Typically a Bachelor's degree, or equivalent work experience
+ Typically five or more years of relevant experience
+ Advanced technical and functional subject matter expert knowledge across security domain areas
The ideal candidate is going to have a well rounded Cyber Security background with an emphasis on Cloud Security and experience with DevOps for automation in a Azure Cloud environment.
**Additional Required Skills/Experience**
+ **8+ years of senior cloud security experience**
+ 8+ years experience in an IT environment including service-oriented and IT architecture, industry trends and direction, system and technology integration, and IT standards, procedures and policies, and emerging technologies
+ 3+ years Data security and privacy
+ 3+ years working in Cloud Computing (AWS, Azure, GCP)
+ 8+ years experience with information security technologies and administration
+ 2+ years of experience in IT infrastructure management, application architecture, risk management, middleware technology, and IT project management
+ 2+ years demonstrated experience using techniques for protecting data stored in a SaaS environment.
+ 5+ years demonstrated experience performing technical troubleshooting and technical documentation
+ 2+ years of experience working in IT systems management including change control, software process improvement
+ 4+ years crafting technical designs that are clear, well thought out, and considers dependencies, failure states, maintainability, testability and ease of support
+ 5+ years working in an Agile software development lifecycle and DevOps principles
+ 5+ years experience in an environment focused on continuous improvement with the ability to focus on the bigger picture, identifying and prioritizing initiatives with the aim to consider more than one domain in this analysis
+ Ability to work cooperatively and professionally with co-workers, customers and management
+ Considers scalability, reliability and performance of systems/contexts affected when defining technical designs
+ Strong verbal and written skills with the ability to communicate technical solutions to leadership and lines of business
+ Identifying opportunities to simplify product and technical design
+ Ability to work cooperatively and professionally with co-workers, customers and management
+ Strong verbal and written communication skills
**Preferred Skills/Experience**
- CISSP, Azure, AWS, or GCP Certification would be a plus
- DevSecOps
If there's anything we can do to accommodate a disability during any portion of the application or hiring process, please refer to our disability accommodations for applicants ( .
**Benefits:**
Our approach to benefits and total rewards considers our team members' whole selves and what may be needed to thrive in and outside work. That's why our benefits are designed to help you and your family boost your health, protect your financial security and give you peace of mind. Our benefits include the following (some may vary based on role, location or hours):
+ Healthcare (medical, dental, vision)
+ Basic term and optional term life insurance
+ Short-term and long-term disability
+ Pregnancy disability and parental leave
+ 401(k) and employer-funded retirement plan
+ Paid vacation (from two to five weeks depending on salary grade and tenure)
+ Up to 11 paid holiday opportunities
+ Adoption assistance
+ Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law
U.S. Bank is an equal opportunity employer. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, and other factors protected under applicable law.
**E-Verify**
U.S. Bank participates in the U.S. Department of Homeland Security E-Verify program in all facilities located in the United States and certain U.S. territories. The E-Verify program is an Internet-based employment eligibility verification system operated by the U.S. Citizenship and Immigration Services. Learn more about the E-Verify program ( .
The salary range reflects figures based on the primary location, which is listed first. The actual range for the role may differ based on the location of the role. In addition to salary, U.S. Bank offers a comprehensive benefits package, including incentive and recognition programs, equity stock purchase 401(k) contribution and pension (all benefits are subject to eligibility requirements). Pay Range: $111,605.00 - $131,300.00
U.S. Bank will consider qualified applicants with arrest or conviction records for employment. U.S. Bank conducts background checks consistent with applicable local laws, including the Los Angeles County Fair Chance Ordinance and the California Fair Chance Act as well as the San Francisco Fair Chance Ordinance. U.S. Bank is subject to, and conducts background checks consistent with the requirements of Section 19 of the Federal Deposit Insurance Act (FDIA). In addition, certain positions may also be subject to the requirements of FINRA, NMLS registration, Reg Z, Reg G, OFAC, the NFA, the FCPA, the Bank Secrecy Act, the SAFE Act, and/or federal guidelines applicable to an agreement, such as those related to ethics, safety, or operational procedures.
Applicants must be able to comply with U.S. Bank policies and procedures including the Code of Ethics and Business Conduct and related workplace conduct and safety policies.
**Posting may be closed earlier due to high volume of applicants.**