20 feb
PEPSICO
Xico
**Auto req ID**: 266832BR
Are you looking for a challenging opportunity in an organization with a dynamic, innovative and diverse environment?
If so, your future is at PepsiCo.
As a world class company, we seek excellence in everything we do.
Therefore, we need talented and innovative people who are passionate about what they do.
Now we are looking for this position:
**Information Security Third Party Assessment Lead**
**Main Purpose**
The main purpose of the role is to lead, manage, and own the activities necessary to perform information security risk assessments on the third parties with which PepsiCo enters a business relationship for services around the world of varying levels of criticality and complexity.
The third-party information security risk assessor will act as a trusted liaison providing guidance, counsel, direction, and support to Business Teams and other stakeholders at various levels (including executive leadership) around the globe to better manage PepsiCo risks by performing third-party information security risk assessment activities.
**Accountabilities**:
- Lead, manage, and own the activities necessary to perform information security risk assessments on the global third parties with which PepsiCo enters a business relationship for services of varying criticality and complexity.
At the conclusion of the assessment process, this position will make a determination of whether the third party exposes PepsiCo to security risks or not, and make a decision on the remediation actions to pursue.
- Act as a trusted liaison providing direction, guidance, and counsel to Business Teams and other stakeholders at various levels (including executives) around the globe in support of third-party information security risk assessment activities.
- Partner with stakeholders to drive various process improvement initiatives and efforts to further enhance the TPSRM assessment process and other PepsiCo initiatives.
Thank you so much for thinking about PepsiCo to start or continue your career!
**Qualifications/Requirements**:**
Education/requirements**:
- Advanced English is a must
- 3+ year of experience in third-party information security risk compliance and/or governance.
- _ _Certifications: CISSP, CISA, CRISC, CGEIT, CISM nice to have_
- Proficient in Microsoft Excel, Word, and PowerPoint skills.
**Non Technical Skills**:
- Strong verbal and written communication skills that positively impact relationships with key businesses' and third-parties' stakeholders, and proactively influence the actions taken by these stakeholders.
- Excellent prioritization capabilities.
- Outstanding ability to work on several important tasks simultaneously.
- Strong decision-making capabilities.
- Effective ability to identify and assess the severity and potential impact of risks and communicate risk assessment findings to risk owners outside Information Security.
**Relocation Eligible**: Not Applicable
**Job Type**: Pipeline
Muestra tus habilidades a la empresa, rellenar el formulario y deja un toque personal en la carta, ayudará el reclutador en la elección del candidato.