Sr. Cybersecurity Engineer

At McCormick, we bring our passion for flavor to work each day. We encourage growth, respect everyone's contributions and do what's right for our business, our people, our communities and our planet. Join us on our quest to make every meal and moment better.

Founded in Baltimore, MD in 1889 in a room and a cellar by 25-year-old Willoughby McCormick with three employees, McCormick is a global leader in flavour. With over 14,000 employees around the world and more than $6 Billion in annual sales, the Company manufactures, markets, and distributes spices, seasoning mixes, condiments and other flavourful products to the entire food industry, retail outlets, food manufactures, food service businesses and consumers.

While our global headquarters are in the Baltimore, Maryland, USA area, McCormick operates and serves customers from nearly 60 locations in 25 countries and 170 markets in Asia-Pacific, China, Europe, Middle East and Africa, and the Americas, including North, South and Central America

Sr. Security Engineer –Technology and Engineering 

McCormick & Company, Inc., a world leader in the spice, flavor and seasonings industry, is seeking a full time Sr. Security Engineer – Technology and Engineering. This position will report to the Sr. Manager Cybersecurity - Technology and Engineering. 

Position Overview: 

The Sr. Security Engineer role serves as a technical leader within the security engineering team, responsible for driving the design, implementation and continuous improvement of enterprise security technologies. This role combines deep hands-on expertise with strategic oversight, ensuring that security tools and configurations are aligned with organizational goals, risk posture, and compliance requirements.  

As a senior-level contributor, the role provides guidance on tool architecture, leads complex incident investigations, and partners with infrastructure, cloud and endpoint teams to integrate security at every layer. The senior security engineer also supports the development of secure baselines, evaluates emerging technologies, and mentoring junior engineers and analysts.  

This potion offers the opportunity to influence security strategy, lead large scale technical initiatives, and play a key role in enhancing the organization’s overall security resilience in a dynamic and collaborative environment.  

Key Responsibilities: 

Description 

• Contribute to the development and execution of the cybersecurity engineering strategy and roadmap, participating in quarterly and annual planning cycles (roadmaps, OKRs, resource modeling), tracking emerging business demands, and adjusting plans to maintain agility and alignment with strategic objectives across IT, OT, and cloud environments. 
• Oversee large-scale cybersecurity initiatives end-to-end, coordinating cross-functional teams to deliver on timelines and security outcomes; anticipate and mitigate risks, close execution gaps, promote innovation across project lifecycles, and serve as the escalation point during critical incidents, providing strategic direction and SME leadership in high pressure situation.  
• Own enterprise-wide cybersecurity technology posture management, including identification and response to systemic risks; design and operationalize threat exposure reduction strategies aligned to NIST, ISO, ISA/IEC and/ or CIS controls; lead compliance engineering efforts and partner with audit teams to ensure continuous audit readiness.  
• Contribute to cybersecurity solution architecture and reference model development aligned with SABSA and TOGAF, ensuring security-by-design across all infrastructure, application, and service rollouts; evaluate and integrate emerging technologies (e.g. zero-trust, micro-segmentation, identity federation) and proactively mitigate operational risks introduced by technology shifts. 
• Direct the design, deployment and lifecycle management of core security technologies (firewalls, EDR, cloud security posture management, remote access etc), ensuring uptime, scalability and effectiveness while championing automation, orchestration, AI-enhanced security operations and continuous optimization of ITSM workflows, tooling and standardized processes (e.g rule reviews, least privilege, baseline remediation).  
• Drive operational excellence and engineering maturity through process design, documentation, KPI tracking and continuous improvement initiatives; maintain strong partnership with IT, service providers and application steams to ensure resilient security service delivery, upskilling and mentoring team members and participate into roadmap development 

Preferred Qualifications: 

• Bachelor’s degree in information technology, Computer Science or relevant field. 
• Three or More of: GIAC Certified, CCSK, OCSP, CISSP (Certified Information Systems Security Professional), Cloud Certified (AWS (Amazon Web Services), GCP Azure), CEH, ITIL, CCNS, CISC, CPFA, RHCE, Microsoft Certification, Security+, Checkpoint CCSE or other related security certification 
• 8-12 years’ experience in a cyber security engineer or architecture role 
• Broad and in-depth knowledge of cyber security technologies 
• Strong experience with security technologies such as Microsoft environment, Checkpoint firewalls, Ivanti VPN (or similar), Zscaler, and cloud security technologies. 
• 8 years’ experience working in a 24x7 global enterprise environment. 
• 5 years’ experience in cyber security solutions 
• Proficiency with hybrid IT/OT environments and cloud-native security tools. 
• Extensive experience planning and deploying both business and IT initiatives and experience with architecture and implementations of IT/OT Security solutions. 
• Proven ability to drive security processes, remediation, and standards within a complex business environment while maintaining continuity of business operations. 
• Comprehensive technical knowledge of all areas within IT plus a comprehensive understanding of all business functions and how their processes and resources interact is required. 

Other skills and competencies: 

• Must be able to multi-task and set priorities 
• Must have experience leading and working in a collaborative, multi-disciplined, globally diverse team environment. 
• Effective communication skills and the ability to communicate appropriately at all levels of the organization; this includes written and verbal communications as well as visualizations 
• Strong consultative skills 
• Positive approach to customer service with demonstrated ability to handle high pressure support needs in a calm, respectful, and efficient manner 
• Must be able to provide sound, convincing arguments based on qualitative data. 
• Conflict resolution skills.  
• Attention to detail and follow through. 
• Demonstrated ability to manage both technical and business relationships and liaise on the information needs of the business to IT and system constraints back to the business. 
• Ability to maintain confidential and personal information. 
• Demonstrated leader of continuous improvement ideas and implementations 
• Ability to operate a multi-cultural and multi-lingual environment both with team members and internal customers (critical) 
• Ability to discuss technical information with non-technical individuals across multiple cultures in multiple countries. (critical) 
• English fluency (critical) 

At McCormick, we have over a 100-year legacy based on our “Power of People” principle. This principle fosters an unusually dedicated workforce requiring a culture of respect, recognition, inclusion and collaboration based on the highest ethical value