Job Description
Career Areas At PepsiCo, you can create more smiles and more possibilities at a global scale no matter what role you hold.Ready to Return: Reignite Your Career At PepsiCo, we understand the importance of career breaks. Whether you’re seeking a Direct Hire position or considering a Returnship, explore the possibilities with us. Location Choose a world region or country to learn more about PepsiCo career opportunities, local flavors and positive impact.Info Security Assoc ManagerNew Cairo, EgyptInfo Security Assoc ManagerJOB\_DESCRIPTION.SHARE.HTML CAROUSEL\_PARAGRAPHJOB\_DESCRIPTION.SHARE.HTML New Cairo, Egypt IT 352917 No Yes Our Information Security Group at PepsiCo is looking for information/ cyber security professionals to join our very exciting journey to manage information/ cyber security risks for PepsiCo as we engage thousands of third parties around the world. The Third-Party Information/ Cyber Security Compliance Associate Specialist will be responsible for assessing information (cyber) security to determine functional and technical risks to PepsiCo’s assets related to the access, use, processing, storage and transmission of information to and from those third parties that impact PepsiCo globally. The key responsibilities of the role are as follows: Determine information security requirements/leading practices for new technical/functional areas of assessments, and work in industry forums to advance PepsiCo’s program and cyber maturity. Determine information security requirements/leading practices for new technical/functional areas of assessments. Support Global Procurement (IT and non-IT) and business procurement teams by reviewing changes to the standard PepsiCo Information Security Requirements in third-party contracts and participate in the negotiation of requirements with third-party representatives. Mandatory Technical Skills: Strong third-party information (cyber) security risk assessment skills to evaluate functional and technical capabilities of third parties. Strong technical experience and/or knowledge of infrastructure technologies, network, web, computing, cloud services, manufacturing equipment, mobile devices, DevSecOps principles, threat modeling, and information (cyber) security, allowing this role to provide technical leadership and coaching to other members of the organization. Technical and business expertise and savviness to drive information security requirements/ clauses in third-party contracts, together with people skills to negotiate requirements with third-party representatives. 5 - 7 + year of experience in third-party information security risk compliance and/or governance. 5 - 7 + years of technical experience across various information security related areas. skills to develop ad hoc reports to convey results, influence executive leadership, manage expectations, and improve metrics. Mandatory Non-Technical Skills: Independent thinker and strong self-motivator, with the ability to collaborate with virtual teams and influence decision making. Strong verbal and written communication skills in English and Spanish that positively impact relationships with key businesses’ and third-parties ’ stakeholders. Outstanding ability to work on several important tasks simultaneously. Robust ability to effectively influence others and lead peers and superiors to modify their opinions, plans, or behaviors. Effective ability to identify and assess the severity and potential impact of risks and communicate risk assessment findings in English and Spanish to risk owners outside Information Security. 5 -7 + year of experience in third-party information security risk compliance and/or governance. 5 -7 + years of technical experience across various information security related areas. Ability to partner and influence business stakeholders and third parties around the world to support assessments, modify opinions / plans / behaviors. Strong communication skills in English and Spanish that enables cyber security, Information Technology (IT), Operational Technology (OT), Business Sponsors, and Business Relationship Managers discussions regarding the assessment process and results. Ability to quickly learn legal, information security, and privacy requirements in different regions of the world. An ability to work on several tasks simultaneously. Experience performing team leadership roles or managing people. Effective ability to identify and assess the severity and potential impact of risks and communicate risk assessment findings to risk owners outside Information Security. Ability to influence and convince peers, executives, and members of other organizations about suggestions and proposals to move ahead with TPSRM assessments. 5 -7 + years direct experience with one or more security-related regulatory or industry standards (HIPAA/HITECH, SOX, PCI-DSS, etc.) a plus. Sign up and add your profile for recruiters to view.Anonymized data is stored for redirects to the career site tracking successful searches leading to job applications in effort to measure effectiveness of partners in sourcing job candidates and job searches. We request use of anonymized data to improve your experience on our site. page.
