Sr. Analyst, Automation Engineer
Indexed description
RBI owns four of the world's most prominent and iconic quick service restaurant brands – TIM HORTONS®, BURGER KING®, POPEYES®, and FIREHOUSE SUBS®. These independently operated brands have been serving their respective guests, franchisees and communities for decades. Through its Restaurant Brands for Good framework, RBI is improving sustainable outcomes related to its food, the planet, and people and communities.
RBI is committed to growing the TIM HORTONS®, BURGER KING®, POPEYES® and FIREHOUSE SUBS® brands by leveraging their respective core values, employee and franchisee relationships, and long track records of community support. Each brand benefits from the global scale and shared best practices that come from ownership by Restaurant Brands International Inc.
We are seeking a Lead Automation Engineer to lead the design, standardization, and scaling of automation across our cybersecurity and compliance ecosystem. This role serves as a hands-on technical leader responsible for building secure pipelines, enabling continuous monitoring, and improving operational security and efficiency across a global enterprise.
RBI follows a 5 day, in-office work schedule to support collaboration. Candidates should be comfortable working onsite 5 days per week out of our office in Miami, FL.
What You'll Do
- Lead security automation strategy, standards, and implementation across cloud, DevSecOps, and GRC engineering domains
- Design and implement automated controls, continuous monitoring, and evidence collection aligned to NIST, PCI, and SOX requirements
- Build and enhance secure CI/CD pipelines using GitHub and CircleCI for both traditional developers and emerging AI-enabled developer communities
- Implement Infrastructure as Code with Terraform and configuration management with Ansible to improve consistency, security, and scale
- Develop automation to improve operational security, detection, and response efficiency using platforms such as CrowdStrike, CrowdStrike SIEM, GitHub Advanced Security, Qualys, and Netskope
- Design and implement container and Kubernetes (EKS) security controls including image scanning and runtime protection
- Integrate application security testing (SAST, DAST, SCA, secrets scanning) into CI/CD pipelines
- Develop automation for secrets management and least-privilege identity enforcement
- Enhance observability and security telemetry pipelines to improve detection and response
- Support incident response automation, playbooks, and post-incident analysis
- Apply threat modeling and risk-based design principles to security automation solutions
- Integrate security findings, policy checks, code scanning, vulnerability data, and cloud controls into orchestrated engineering workflows
- Leverage AI-assisted development, intelligent automation, and developer guardrails where appropriate to improve engineering speed and security outcomes
- Partner with Infrastructure, Cloud, Cybersecurity, and Application teams to establish reusable automation patterns and self-service capabilities
- 3+ years of experience in DevSecOps, Security Engineering, or a related space, with a passion for building secure, scalable systems
- Strong Python skills and hands-on experience working with GitHub, CI/CD pipelines, and automation, you're someone who loves to streamline and improve how things get done
- Experience working in AWS environments, using tools like Terraform, and building secure-by-design infrastructure and application pipelines
- A track record of automating security, compliance, or operational processes to improve efficiency and reduce risk
- Familiarity with containerization and orchestration tools like Docker and Kubernetes (EKS is a plus)
- Experience implementing application security practices (SAST, DAST, SCA) and integrating them into the development lifecycle
- Solid understanding of identity, secrets management, and modern security best practices
- Exposure to observability, logging, and security telemetry, you know how to make systems visible and actionable
- Experience with threat modeling or thinking through systems from a risk-based security perspective
- Working knowledge of security and compliance frameworks (NIST, PCI, SOX, or similar)
- Ability to collaborate across teams and influence technical decisions, you’re comfortable working with engineers, product, and leadership
- Experience securing APIs and microservices architectures
- Industry certifications like AWS Security Specialty, CISSP, CISM, or CKS
- Experience with tools like Ansible, policy-as-code frameworks, or SOAR platforms
- Familiarity with security tools such as GitHub Advanced Security, CrowdStrike, Qualys, Netskope, or similar
- Interest or experience in applying AI/ML or GenAI to security, automation, or engineering productivity
- Background in fast-paced, distributed environments like QSR, retail, or franchise organizations
- Additional certifications in cloud, security, or DevSecOps
Restaurant Brands International and all of its affiliated companies (collectively, RBI) are equal opportunity and affirmative action employers that do not discriminate on the basis of race, national origin, religion, age, color, sex, sexual orientation, gender identity, disability, or veteran status, or any other characteristic protected by local, state, provincial or federal laws, rules, or regulations. RBI's policy applies to all terms and conditions of employment. Accommodation is available for applicants with disabilities upon request.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search