IAM Architect III – Identity Governance & Administration

at  McDonalds Corporation

Company Description
McDonald’s new growth strategy, Accelerating the Arches, encompasses all aspects of our business as the leading global omni-channel restaurant brand. As the consumer landscape shifts we are using our competitive advantages to further strengthen our brand. One of our core growth strategies is to Double Down on the 3Ds (Delivery, Digital and Drive Thru). McDonald’s will accelerate technology innovation so 65M+ customers a day will experience a fast, easy experience, whether at one of our 25,000 and growing Drive Thrus, through McDelivery, dine-in or takeaway.
Leading this tech revolution is McDonald’s Global Technology organization made up of intrapreneurs who get to build really cool tech with scary smart people using the latest innovations like AI, IOT, and edge computing. We do this working along diverse, global teams who are always hungry for a challenge. It’s bonus points when you get to see your family and friends use the tech you build at their favorite McD restaurant.
This role will collaborate closely with cybersecurity experts, market leads, project managers, and Global Technology Solutions teams to ensure the reliable and efficient operation of McDonald’s security services. In addition, this role will be responsible for managing and collaborating with the support teams that handle tickets and other operational tasks for McDonald’s security services. This person will work closely with others in Global Technology Risk Management and other areas of Global Technology to ensure that our services are meeting the needs of markets, application teams, and other stakeholders.
Check out the Global Technology Technical Blog to learn how technology is directly enabling the Accelerating the Arches strategy.
Job Description

Qualifications

• 5+ years professional experience as an IAM Architect or similar role, designing and implementing enterprise-level IAM solutions.
• Solid understanding of IAM concepts, protocols, and technologies, including but not limited to identity provisioning, authentication, authorization, RBAC, SSO, and federation.
• Deep technical experience with Entra ID, Active Directory, SailPoint, Saviynt, and/or other related technologies.
• In-depth understanding of identity lifecycle management concepts and processes including account management, access governance, and access control is a must-have.
• Experience in Governance, Risk, Compliance and Sarbanes Oxley (SOX) Audit support.
• Understanding of industry frameworks and standards such as OAuth, SAML, OpenID Connect, and LDAP.
• Familiarity with cybersecurity principles and standard processes, including risk management, access controls, and secure coding.
• Strong analytical and problem-solving skills, with the ability to assess complex business requirements and translate them into practical IAM solutions.
• Relevant certifications such as CISSP, CISM, or vendor-specific IAM certifications are helpful

• Architect and design IGA solutions that align with the organization’s security policies, compliance requirements, and business objectives.
• Develop identity lifecycle management processes and procedures for managing the entire identity lifecycle, including provisioning, authorization, and de-provisioning.
• Define access control policies and enforce least privilege principles to ensure that users have appropriate access rights based on their roles and responsibilities.
• Provide technical leadership in the areas of identity and access management and ensure alignment with best practices and security standards.
• Applies analytical and detailed approaches in the resolution of problems of workflow, organization, and planning and directs and assists junior engineers in the application of system engineering principles to the solution of secure systems design problems.
• Strong problem-solving skills and the ability to compile, analyze complex issues and recommend effective solutions.
• Work with teams to perform security assessments and tool evaluations on all application onboarding and integration requirements based on optimal enterprise architecture and design.
• Conducts workshops and integrates solutions for Identity Management platform as developed by IAM architect.
• Collaborate with teams, including developers, engineers, and project managers, to deliver successful IGA implementations.
• Prepare comprehensive user documentation, including architecture diagrams, system configurations, and operational procedures. Generate reports on IAM system performance, compliance status, and security incidents.
• Collaborate with other IT teams, collaborators, and vendors to deliver effective IAM solutions. Provide technical guidance and mentorship to junior team members.

Qualifications

• 5+ years professional experience as an IAM Architect or similar role, designing and implementing enterprise-level IAM solutions.
• Solid understanding of IAM concepts, protocols, and technologies, including but not limited to identity provisioning, authentication, authorization, RBAC, SSO, and federation.
• Deep technical experience with Entra ID, Active Directory, SailPoint, Saviynt, and/or other related technologies.
• In-depth understanding of identity lifecycle management concepts and processes including account management, access governance, and access control is a must-have.
• Experience in Governance, Risk, Compliance and Sarbanes Oxley (SOX) Audit support.
• Understanding of industry frameworks and standards such as OAuth, SAML, OpenID Connect, and LDAP.
• Familiarity with cybersecurity principles and standard processes, including risk management, access controls, and secure coding.
• Strong analytical and problem-solving skills, with the ability to assess complex business requirements and translate them into practical IAM solutions.
• Relevant certifications such as CISSP, CISM, or vendor-specific IAM certifications are helpful.

Additional Information
All your information will be kept confidential according to EEO guidelines