Sign In
 [New User? Sign Up]
Mobile Version

Information Security Controls Specialist

PepsiCo Inc.

Plano, TX
Apply on the Company Site
  • Save Ad
  • Email Friend
  • Print
  • Research Salary

Job Details

Auto req ID: 139386BR
Job Description

PepsiCo Information Security is seeking a self-motivated, Controls Specialist, who will be responsible for leading the implementation and continued advancement of the integrated Information Security controls framework. In addition, this role is responsible for the development, sustainment, and testing of Information Security Sarbanes-Oxley (SOX) and operational controls in alignment with the PepsiCo IT Controls framework and PepsiCo risk appetite. This person will apply a broad knowledge of IT and cyber security audit principles, practices, and procedures to complete assignments as well as prepare well documented workpapers and effectively communicate findings and make recommendations.

The position is:

  • Responsible for leading the implementation and sustainment, and continued advancement of the enhanced Information Security controls framework and associated processes
  • Responsible for the continued advancement of the Information Security controls framework in alignment with the risk appetite and business requirements
  • Responsible for determining areas of risk and evaluates the controls environment relative to other existing standards/regulatory requirements
  • Responsible for designing new operational cyber controls based on risk, globally
  • Acts as a source of direction, training, and guidance for less experienced staff
  • Responsible for providing planning, execution, and completion of controls testing activities for Information Security SOX and operational controls
  • Responsible for documenting test steps, methodology, work performed and summarized test results.
  • Responsible for identifying internal control gaps in information security procedures, processes or systems, and initiates appropriate remedial action
  • Responsible for collaborating with various stakeholders across the organization in managing the lifecycle of a control including new controls, modification to existing controls, or retirement of existing controls



  • Bachelor's degree in Accounting, Finance, Information Systems, or Audit is preferred
  • 6+ years of professional experience in IT or Information Security controls
  • 5+ years of experience with regulatory compliance, including information security management frameworks (e.g., SOX, NIST CSF, ISO2700x, COBIT, PCI, SANS Top 20 Critical Security Controls)
  • Proven experience designing, documenting, implementing and testing IT controls
  • Proven experience conducting risk assessments and mapping relevant controls
  • Strong computer skills including, but not limited to, proven efficiencies with Microsoft Office
  • Understands effective control or mitigation options to manage specific risks; maintains composure when discussing control deficiencies or findings with customers
  • Ability to prioritize and respond to problems or issues, maintain flexibility, and adapt to changes in the business environment
An ideal candidate is:
  • Able to understand information security risks and assess mitigation strategies to confirm alignment with risk appetite
  • Able to build trust and effectively communicate risk assessment findings to risk point-of-contacts within the Information Security organization
  • Able to identify and assesses the severity and potential impact of risks and threats to the business, including aggregation and escalation as needed
  • Able to effectively handle challenging situations with your customers, team members, and management
  • Able to present effectively using several reporting and presentation tools such as Microsoft PowerPoint and RSA Archer

Relocation Eligible: Not Eligible for Relocation
Job Type: Regular

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or disability status.

PepsiCo is an Equal Opportunity Employer: Female / Minority / Disability / Protected Veteran / Sexual Orientation / Gender Identity

If you'd like more information about your EEO rights as an applicant under the law, please download the available EEO is the Law & EEO is the Law Supplement documents. View PepsiCo EEO Policy

Please view our Pay Transparency Statement","city":"Plano","state":"Texas","country":"United States","country_code":"US",
Apply on the Company Site

Performance with Purpose

Out performing ourselves is a rush. That's why we perform with purpose. Together, we blaze new trails, succeed, celebrate and then do something even bigger. We never settle for second best. At PepsiCo we're not just committed to performing well as individuals, but as a team, to strengthen the company as a whole.

Around the world, we're working hard to give people the tastes they crave and the nutrition they need. We dream globally and act locally, constantly innovating to sustain our planet, our people, our communities and our business practices. New markets mean new ways of doing business, and new ways of addressing health concerns, cultural differences and environmental challenges. Every day is an adventure, and an opportunity for personal and professional growth.

Powered ByLogo

Featured Jobs[ View All ]

Featured Employers [ View All ]