Third-party Information Security Assessor
4 weeks ago
Overview:
Our Information Security Group at PepsiCo is looking for information/ cyber security professionals to join our very exciting journey to manage information/ cyber security risks for PepsiCo as we engage thousands of third parties around the world. The Third-Party Information/ Cyber Security Compliance Associate Specialist will be responsible for assessing information (cyber) security to determine functional and technical risks to PepsiCo’s assets related to the access, use, processing, storage and transmission of information to and from those third parties that impact PepsiCo globally.
**Responsibilities**:
The key responsibilities of the role are as follows:
- Provide suggestions and assess information (cyber) security posture to determine functional and technical risks related to the use, processing, storage, and transmission of information to and from those third parties that impact PepsiCo globally, as well as our manufacturing plants.
- Own third-party reviews (functional/technical) throughout the entire assessment life cycle.
- Determine information security requirements/leading practices for new technical/functional areas of assessments, and work in industry forums to advance PepsiCo’s program and cyber maturity.
- Assess third-party information security risk posture (functional/technical) to ensure compliance with PepsiCo guidelines and industry leading practices.
- Present findings (functional/technical) to various stakeholders and levels throughout the organization.
- Partner with business and third parties to suggest/recommend potential mitigation solutions for risk areas.
- Facilitate alignment across diverse parties and business units and lead key strategic initiative that allow to reduce third-party risks to PepsiCo.
- Lead, coordinate, and drive third-party onsite visits to perform thorough assessments by setting the collaborative and strategic tone with the third parties and represent PepsiCo’s business interest in the upmost professional manner.
- Determine information security requirements/leading practices for new technical/functional areas of assessments.
- Coordinate peer assessors’ efforts to ensure proper expectations and consistent processes are performed by all the team.
- Proactively develop productive relations with technical and management leaders to own third-party reviews (functional/technical) throughout the entire assessment life cycle.
- Collaborate and contribute to the PCI-DSS assessments in PepsiCo, including process improvements and integration of governance activities with the rest of the PepsiCo assessment processes.
- Support Global Procurement (IT and non-IT) and business procurement teams by reviewing changes to the standard PepsiCo Information Security Requirements in third-party contracts and participate in the negotiation of requirements with third-party representatives.
Qualifications:
Mandatory Technical Skills:
- Strong third-party information (cyber) security risk assessment skills to evaluate functional and technical capabilities of third parties.
- Strong technical experience and/or knowledge of infrastructure technologies, network, web, computing, cloud services, manufacturing equipment, mobile devices, DevSecOps principles, threat modeling, and information (cyber) security, allowing this role to provide technical leadership and coaching to other members of the organization.
- Thorough understanding of Confidentiality, Integrity, and Availability controls, Privacy laws, etc.
- Comprehensive technical and functional understanding of various information security solutions, technologies, and industry-leading practices.
- Technical and business expertise and savviness to drive information security requirements/ clauses in third-party contracts, together with people skills to negotiate requirements with third-party representatives.
- Strong understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business.
- Bachelor’s degree, master’s degree preferable.
- 5-7+ year of experience in third-party information security risk compliance and/or governance.
- 5-7+ years of technical experience across various information security related areas.
- skills to develop ad hoc reports to convey results, influence executive leadership, manage expectations, and improve metrics.
Mandatory Non-Technical Skills:
- Independent thinker and strong self-motivator, with the ability to collaborate with virtual teams and influence decision making.
- Strong verbal and written communication skills in English and Spanish that positively impact relationships with key businesses’ and third-parties’ stakeholders.
- Excellent prioritization capabilities.
- Outstanding ability to work on several important tasks simultaneously.
- Strong decision-making capabilities.
- Robust ability to effectively influence others and lead peers and superiors to modify their opinions, plans, or behaviors.
- Effective ability to
-
Third-party Information Security Assessor
3 weeks ago
مصر, Egypt PepsiCo Full time**Overview** Our Information Security Group at PepsiCo is looking for information/ cyber security professionals to join our very exciting journey to manage information/ cyber security risks for PepsiCo as we engage thousands of third parties around the world. The Third-Party Information/ Cyber Security Compliance Associate Specialist will be responsible for...
-
Info Security Sr Manager
4 weeks ago
مصر, Egypt PepsiCo Full time**Overview** Our Information Security Group at PepsiCo is looking for a cyber security thought leader, influencer, security advocate, and driver of change, to join our very exciting journey to manage cyber security risks for PepsiCo and all our partners around the world. The Third-Party Information Security Compliance Senior Manager will be responsible for...
-
Info Security Specialist
4 weeks ago
مصر, Egypt PepsiCo Full timeOverview: The main purpose of the role is to lead, manage, and own the activities necessary to perform information security risk assessments on the third parties with which PepsiCo enters a business relationship for services around the world of varying levels of criticality and complexity. The third-party information security risk assessor will act as a...
-
Info Security Specialist
4 weeks ago
مصر, Egypt PepsiCo Full time**Overview** The main purpose of the role is to lead, manage, and own the activities necessary to perform information security risk assessments on the third parties with which PepsiCo enters a business relationship for services around the world of varying levels of criticality and complexity. The third-party information security risk assessor will act as a...
-
Risk & Compliance Sr Specialist
4 weeks ago
مصر, Egypt PepsiCo Full timeOverview: Our Information Security Group at PepsiCo is looking for a cyber security thought leader, influencer, security advocate, and driver of change, to join our very exciting journey to manage cyber security risks for PepsiCo and all our partners around the world. The Third-Party Information Security Senior Specialist will be responsible for supporting...
-
Risk & Compliance Sr Specialist
4 weeks ago
مصر, Egypt PepsiCo Full time**Overview** Our Information Security Group at PepsiCo is looking for a cyber security thought leader, influencer, security advocate, and driver of change, to join our very exciting journey to manage cyber security risks for PepsiCo and all our partners around the world. The Third-Party Information Security Senior Specialist will be responsible for...
-
Manager, Information Security
2 weeks ago
مصر, Egypt Egyptian Banks Company Full timeIdentifies infrastructure Information security risks and define the controls required to mitigate the risk. - Develop and maintain organization, Third party and vendors risk management framework - Conduct continuous risk assessment for existing and new IT assets - Conduct Vendors and third party risk assessment. - Establish reporting communications that...
-
Information Security Grc Lead
2 weeks ago
مصر, Egypt AXA Egypt Full timeImplements security controls, risk assessment framework, and program that align to regulations requirements, ensuring documented and sustainable compliance that aligns with AXA Group Security Standards. - Manage the cyber and information security risk management lifecycle, including gaining assurance of all existing and relevant cyber and information...
-
Claims Assessor
2 weeks ago
مصر, Egypt Bupa Full timeClaims Assessor Cairo, Egypt Permanent and Fixed term Contracts available Full time Bupa Global is the international health insurance division of Bupa. We provide customers who want premium international coverage with products and services to access the healthcare they need anytime, around the world, whether at home or when studying, living, travelling...
-
Claims Assessor
2 weeks ago
مصر, Egypt Bupa Global Full timeClaims Assessor **Job Description**: **Claims Assessor** **Cairo** **Fixed term**, Full Time (40 hours per week) role** Bupa Global has offices around the world including London and Brighton (UK), Dublin (Europe), Miami (USA), Dubai (UAE, in partnership with OIC), Egypt and Hong Kong (China) as well as regional offices in mainland China, Singapore, the...
-
Information Security Governance
3 weeks ago
مصر, Egypt EGBank Full time**MAJOR RESPONSIBILITIES AND ACOUNTABILITIES** - Review and evaluate the design of security systems. - Review and evaluate security policies, controls and incident response planning in cooperation with stakeholders throughout the enterprise. - Review identity and access policies in cooperation with stakeholders throughout the enterprise. - Review...
-
Chief Information Security Officer
2 weeks ago
مصر, Egypt Envision Employment Solutions Full time**Ready and hungry for a new adventure? You are definitely in the right place! We at **Envision Employment Solutions** are always on the look for top talents around the globe and matching them with our partners' hiring needs, to help them build and scale! - Our partners offer awesome work environment, competitive salaries, full benefits, and many others...
-
Security Technology Risks
3 weeks ago
مصر, Egypt PepsiCo Full timeOverview: The Security Risk Lead role is unique to the International Business Information Security Office organization and is responsible for information security risk and technical security analysis within the sector. **Responsibilities**: - Assist Attack Surface Management and Global Digital Connections teams when working with third parties locally on...
-
Information Security Engineer
4 weeks ago
مصر, Egypt SSC Egypt Full timeDevelop, execute and track the performance of security measures to protect information and network infrastructure and computer systems. - Design computer security strategy and engineer comprehensive cybersecurity architecture. - Identify, define and document system security requirements and recommend solutions to management. - Configure, troubleshoot and...
-
Information Security Specialist
2 weeks ago
مصر, Egypt Allianz Egypt Full time**Responsibilities**: - Control & Review Audits/assessments; management of incident prevention, detection and incident response and ensure ongoing maintenance of security. - Risk Assessment Develop and implement an ongoing risk assessment program targeting information security. Recommend methods foe vulnerability detection and remediation and oversee...
-
Information Security Engineer
2 weeks ago
مصر, Egypt EGIC Full time**Job Purpose** Understand information security, technology architecture, and business security. Design, direct, and deliver on IT security-related activities in an organization. Serve as a bridge between the employee—often the end-user of security processes—and the technical aspects of IT security. Collaborate, work with their teams to develop strong...
-
Information Security Grc
1 week ago
مصر, Egypt MigrationIT Full time**Job Information**: Field - Security & GRCField / Area - GRCIndustry - IT ServicesJob Category - Information Security GRCWork Experience - 1-3 yearsCity - CairoState/Province - AI QahirahCountry - EgyptZip/Postal Code - 11311- Provide guidance and share best practices for design and implementation of the GRC platforms. - Ensure partnership with different...
-
Information Security Officer
3 weeks ago
مصر, Egypt Staff Arabia Full timeExcellent Vacancies in Saudi Arabia/ IT Our client, is one of the most well-known universities in Saudi Arabia, urgently requires the following positions: **Information Security Officer** - Bachelor in Computer or equal - 5 years experience - CISSP - Certified Information Systems Security Professional
-
مصر, Egypt Envision Employment Solutions Full time**Ready and hungry for a new adventure? You are definitely in the right place! We at **Envision Employment Solutions** are always on the look for top talents around the globe and matching them with our partners' hiring needs, to help them build and scale! - Our partners offer awesome work environment, competitive salaries, full benefits, and many others...
-
Information Security Engineer
3 weeks ago
مصر, Egypt IT VIKINGS Full time-Job Description: - Installation, configuration and maintenance for network Security equipment (Web Security, Mail Security, End point Security, Data Security, etc.) for IT Vikings customers. - Provides remote and on-site support to our customers. - Performing troubleshooting and root cause analysis on security appliances, Network appliances. - Prepare and...