Global Supply Chain Compliance Associate Specialist - PFNA - Plano, Texas

The Global Supply Chain Compliance Associate Specialist role partners with sector cyber risk owners to drive sector supply chain compliance to Information Security Policy and OT-specific standards and controls. This role  will ensure OT controls testing and compliance initiatives are completed and will guide risk owners through Information Security OT exception process. The role will provide support for process  improvement initiatives through analysis, documentation, and testing.

• Provide training and insights to Sector OT Leads on OT cybersecurity standards, controls, compliance, metrics, and reporting
• Partner with OT Sector Leads to drive compliance to PepsiCo OT-specific standards and controls
• Monitor and drive control testing at local plants (i.e., antivirus, system patching, backups, recovery and reconstitution, asset inventory)
• Guide OT Sector Leads to submit and monitor information security exceptions and risk remediations
• Review supplier compliance to PepsiCo standards and services; recommend performance improvements
• Partner with InfoSec to provide OT-specific requirements related to process design and modifications
• Analyze OT cybersecurity metrics; Provide report requirements that identify global and sector cyber risks
• Ensure OT reporting and dashboard metrics are accurate through data validation
• Provide manager insight to sector and plant risk issues and risk mitigations; Recommend actions for improvement

What can you expect from us:

• Competitive compensation package
• A flexible work environment that promotes a healthy balance between personal and professional life
• A dynamic and inclusive culture
• A support team that will foster your professional growth and development.
• Opportunity to work with relevant and impactful projects for the business.
• Opportunity to give back to the community with our volunteer programs

Compensation and Benefits:

• The expected compensation range for this position is between $85,200 - $142,650 based on a full-time schedule.
• Location confirmed job-related skills and experience will be considered in setting actual starting salary.
• Bonus based on performance and eligibility; target payout is 8% of annual salary paid out annually.
• Paid time off subject to eligibility, including paid parental leave, vacation, sick, and bereavement.
• In addition to salary, PepsiCo offers a comprehensive benefits package to support our employees and their families, subject to elections and eligibility: Medical, Dental, Vision, Disability, Health and Dependent Care Reimbursement Accounts, Employee Assistance Program (EAP), Insurance (Accident, Group Legal, Life), Defined Contribution Retirement Plan

• 3+ years of Cyber/Information Security operations or OT/Manufacturing operations
• 3+ years working with policy and standards (e.g. IEC 62443/ISA 99, NIST SP 800-82, NIST SP 800-53, NIST CSF, ISO27001, COBIT)
• 3+ years experience in compliance, risk or audit assessments

Tech Skills

• Proficiency in assessing and managing risks, including identifying vulnerabilities, evaluating potential threats, and implementing risk mitigation strategies.
• Proficiency in analyzing and interpreting data related to compliance audits, assessments, and monitoring activities.
• Proficient in Microsoft PowerBI as end-user
• Proficient in Microsoft suite of tools – Excel (pivot tables), Word, PowerPoint,
• Proficient in search engines and research

NonTechSkills

• Experience partnering and collaborating with global teams having various responsibilities
• Understanding of regulations, laws and data privacy and how they apply to cybersecurity controls
• Ability to drive results and build consensus with internal and external stakeholders
• Strong process efficiency and procedure development skills
• Excellent verbal and written communication skills
• Exceptional analytical and problem-solving skills

Differentiating Competencies

• Strong people skills communicating across different experience levels
• Ability to analyze situations, evaluate multiple perspectives, collect evidence, ask questions, and use

Critical thinking skills

• Knowledge of network segmentation, firewalls, VPNs, and DMZs in an OT context
• Possession of any security certificates (e.g. CSSA, GICSP, CompTia)
• Previous experience with cybersecurity systems dedicated for OT environments (IDS, passive monitoring and anomaly detection systems, industrial firewalls, remote access)

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or disability status.

PepsiCo is an Equal Opportunity Employer: Female / Minority / Disability / Protected Veteran / Sexual Orientation / Gender Identity

If you'd like more information about your EEO rights as an applicant under the law, please download the available EEO is the Law & EEO is the Law Supplement documents. View PepsiCo EEO Policy.

 Please view our Pay Transparency Statement