PepsiCo does not offer visa sponsorship for this roleAuto req ID: 225757BRJob DescriptionThe is responsible for providing guidance on information security risk management issues and processes within Frito-Lay and Quaker North America.
The role requires creative, resourceful approaches and proactive engagement with stakeholders across IT, OT, Information Security, business and corporate teams to identify and mitigate risk.
Working on a small team focused on vulnerability/exceptions analysis and risk landscape monitoring as well as information security work intake processes and data protection activities.
The role continuously strives to shift security left, minimize barriers to security compliance and attain new efficiencies in risk management processes.
Responsibilities: * Engage with key stakeholders and partners as a trusted advisor on Information Security strategy, services and processes * Identify, assess, and report on security gaps within the region develop action plans to address opportunity areas * Identify stakeholder resistance and barriers in order to tighten the cohesion between business and Information Security * Develop content and present on Information Security programs, initiatives, incidents, threats and risk topics * Act as Security Coach and advisor throughout security exception risk management from exception initiation, mitigating controls identification, and remediation planning * Monitor and facilitate post-incident recovery activities in collaboration with stakeholders, incident management teams and other key partners * Provide feedback on security requirements during planning cycles * Continuously advance and deepen knowledge of IT and security technologies, best practices, and emerging threats AF-TechQualifications/Requirements* Bachelor’s or Advanced degree (IT related studies preferred) Experience: * 4+ years of IT experience * 3+ years Information Security experience (technical experience as a security analyst or engineer preferred) * CISM, CISSP, CRISC, GIAC/GSEC certifications (preferred) * Well-versed in NIST Cybersecurity Framework, CIS Top 20 Critical Controls, OWASP Top 20 * Knowledge of Project Management and Agile methodologies * Written/spoken English proficiency required Skills: * Strong interpersonal, oral and written communication skills * Innovative and collaborative problem solver * Ability to translate technical information into plain language * Highly self-motivated and directed * Strong organizational skills * Excellent attention to detail Relocation Eligible: Not Eligible for RelocationJob Type: RegularAll qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or disability status.PepsiCo is an Equal Opportunity Employer: Female / Minority / Disability / Protected Veteran / Sexual Orientation / Gender IdentityOur Company will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of the Fair Credit Reporting Act, and all other applicable laws, including but not limited to, San Francisco Police Code Sections 4901 4919, commonly referred to as the San Francisco Fair Chance Ordinance; and Chapter XVII, Article 9 of the Los Angeles Municipal Code, commonly referred to as the Fair Chance Initiative for Hiring Ordinance.If you’d like more information about your EEO rights as an applicant under the law, please download the available EEO is the Law & EEO is the Law Supplement documents.
View PepsiCo EEO Policy Please view our Pay Transparency Statement