Manager, Operations Excellence (Audit)

at  McDonalds Corporation

Company Description
McDonald’s evolving Accelerating the Arches growth strategy puts our customers and people first and demonstrates our competitive advantages to strengthen our brand. We are recognized on lists like Fortune’s Most Admired Companies and Fast Company’s Most Innovative Companies.

GLOBAL TECHNOLOGY FORGING THE WAY

Leading the digitization of our business is the Technology organization made up of innovation specialists who build industry defining tech using the latest innovations and platforms, like AI and edge computing to deliver on the next set of groundbreaking opportunities for the business. We take on technology innovation challenges at an incredible scale, and work across global teams who are always hungry for a challenge! This provides access to compelling career paths for technologists. It’s bonus points when you get to see your family and friends use the tech you build at their favorite McD restaurant.
Job Description
This role will be a part of _Operations Excellence function and Tech Excellence team and will report to Sr. Manager – Service Delivery. The Audit Manager for SOX Compliance will lead all aspects of the management and governance of SOX-related IT applications, focusing on Access Management, Change Management, Segregation of Duties (SOD), and remediation of deficiencies identified by internal and external audits. The role requires a strong understanding of SOX requirements, IT controls, and audit methodologies, as well as the ability to provide strategic recommendations and implement corrective actions to ensure compliance and mitigate risks.
.

BASIC QUALIFICATIONS

• 5+ years of proven experience in IT audit, SOX compliance, or a related field, with at least 2 years in a managerial role
• Shown understanding of SOX requirements, IT general controls, and audit methodologies.
• Experience with audit tools (Audit dashboard) and software, as well as ERP systems, is a plus.
• Excellent communication and presentation skills

PREFERRED QUALIFICATIONS

• Professional certifications such as CPA, CIA, CISA, or equivalent are helpful.
  Additional Information
  McDonald’s is committed to providing qualified individuals with disabilities reasonable accommodations to perform the essential functions of their jobs. Additionally, if you (or another applicant of whom you are aware) require assistance accessing or reading this job posting or otherwise seek assistance in the application process, please contact recruiting.supportteam@us.mcd.com
  McDonald’s provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to sex, sex stereotyping, pregnancy (including pregnancy, childbirth, and medical conditions related to pregnancy, childbirth, or breastfeeding), race, color, religion, ancestry or national origin, age, disability status, medical condition, marital status, sexual orientation, gender, gender identity, gender expression, transgender status, protected military or veteran status, citizenship status, genetic information, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.
  Nothing in this job posting or description should be construed as an offer or guarantee of employment

• Lead and handle the compliance efforts for SOX-relevant IT applications, ensuring adherence to established SOX requirements and internal control frameworks.
• Supervise the access management process, including the implementation and review of user access controls to ensure accurate segregation of duties and minimize unauthorized access.
• Lead and Coordinate Cybersecurity controls and standards set by the McDonalds Global Security team
• Lead, control and coordinate across teams within EPP on the following actions –
• Data Security (data scanning, data security posture management, etc), Global Security Operations Center (threat detection), Software/resource clarity, Vulnerability Management(High or Critical issues), Identity & Entitlements assessments/issues, Configuration
• Conduct periodic user access reviews for SOX in-scope applications and address any identified deficiencies
• Ensure that all changes stay in sync with SOX requirements and that any deviations are identified and remediated.
• Evaluate and make sure SOD controls within IT applications to prevent conflicts of interest and reduce the risk of fraud or errors.
• Identify and assess IT deficiencies reported by internal and external auditors, particularly those related to SOX compliance.
• Develop and implement remediation plans to address identified deficiencies, ensuring timely resolution and communication with relevant partners.
• Serve as the primary point of contact for SOX-related audits, coordinating with internal and external auditors to facilitate audit activities.
• Continuously assess and improve IT controls, processes, and procedures to enhance SOX compliance and reduce the likelihood of deficiencies.
• Stay up-to-date with regulatory changes, industry standard methodologies, and emerging risks to ensure the organization’s SOX compliance framework remains effective.
• Provide training and mentorship to IT and business teams on SOX compliance requirements and standard methodologies.
• Prepare and present audit reports, findings, and remediation plans to Director/senior management and audit committees if needed.
• Review and recommend improvements for the SOX strategy initiative by examining current IT policies and procedures related to IT SOX processes, such as change management and access management.
  Qualifications