Description:

Proactively identifies and resolves Cloud and in restaurant infrastructure Security issues before the restaurant operations or digital team experiences an incident. While focusing on the confidentiality, integrity, and availability across the entirety of the KFC US Digital and Data assets to ensure the business is aware of its overall risk posture and compliance gaps. •Monitoring - Utilize security monitoring tools (SIEM, Cloud Vulnerability, Code scanning, & WAF) to identify security and availability incidents with the infrastructure. Applying this knowledge to identify and remediate complex behaviors to increase infrastructure uptimes. •Support - Troubleshoot security incidents identified via available tools and escalation channels. This will include providing skilled escalation point for all functions within KFC. Some of these responsibilities will include but is not limited to, utilizing remote control applications and calling end users to assist with troubleshooting. The list of contacts this position will reach out to include but is not limited to, Cross-Functional business partners, Franchisees, Restaurant Managers, Above Restaurant Leaders, and Strategic Vendor partners. •Escalation – Serve as expert with in depth knowledge of restaurant infrastructure troubleshooting and incident response. Serve as escalation point for KFC US business on Information Security related matters or GTRM services. This role should be able to work autonomously with little support and only coordinate additional Security & Technology SMEs for the most complex incidents and problems. Provide both high level and detailed communication for various teams and senior leadership as necessary. This position will be expected to provide the KFC Technology Risk Manager with high in depth information technical information. From time to time, will need to serve as a back up to the Brand Technology Risk Manager and deliver high level details to senior leadership needed to make both tactical, and strategic decisions for continuous improvement. •Vendor Management – Engage in incident escalations with the YUM GTRM team regarding our strategic partners to ensure the highest level of Confidentiality, Integrity, and Availability levels are achieved across these partnerships. Communicate with the KFC Technology Risk Manager & senior leadership and escalate to senior personnel from vendors regarding chronic incidents and problems. Act as brand representative working complex problems to completion with little to no supervision. •Technology Deployment – Ensure that systems, network, in restaurant infrastructure, and cloud infrastructure resources are properly configured for physical and application changes that comply with the YUM! Technology Risk Policies and Standards. Failures in this area will result in regulatory violations and significant financial impact to KFC and our franchisees due to the inability of planned resources and vendors to execute their changes (i.e. installation rescheduling fees). •Mentoring – Provide mentoring to other IT staff interested in building their technology risk management and security know-how for future career objectives.

Requirements:

•Education/Certifications – Bachelor’s Degree Preferred •Experience •Years of Experience – 3-5 years of IT experience with focus in support, digital, or infrastructure •Completed or active pursuit of industry accepted certifications (ITIL, Cisco, ISC) •Excellent verbal communication and customer service skills •Proven ability to work autonomously focused on long-term results •Proven ability to drive results of projects on time and on budget. •Knowledge of Cloud terminologies and technologies. •Knowledge of information Security frameworks •Expert knowledge of industry standard implementation and support escalation standards. •Strong working knowledge of Microsoft Operating Systems & Network infrastructure •Strong working experience with Incident and Problem tracking systems (i.e. ServiceNow) •Working knowledge of Remote Control applications (i.e. pcAnywhere, Bomgar) •Expert knowledge of configuration and implementation of information security tools to track progress against key performance indicators. (i.e. SIEM, WAF, Vulnerability management)

Additional Info: