.**Overview**At PepsiCo, we're redefining what it means to be a consumer products company with a digital-first mindset, and our Global IT team is leading that charge. Our technology teams unlock digital capabilities, enhance cybersecurity safeguards, deliver data-driven insights, and create unmatched consumer and customer experiences. Our culture is guided by the PepsiCo Way, which is a set of values that define our mission to win with purpose in the marketplace and act with integrity in everything we do. We're creating smiles with every sip and every bite while advancing a sustainable, socially impactful agenda that promotes our goal of Winning with Purpose. The Global IT team supports just that with our mission to create more smiles with every CLICK and every LIKE. Join our global, agile team and help us influence and drive PepsiCo's digital transformation!**Responsibilities****What will you be doing?**The Information Security Assessment Lead is responsible for safeguarding PepsiCo's digital assets by assessing the compliance of new and changing systems against information security requirements and managing risks associated with IT and Information Security systems throughout the project lifecycle. The lead will collaborate with various security teams to facilitate compliance with Information Security standards, providing technical guidance for key strategic initiatives, and driving the secure delivery of technology solutions within PepsiCo.**Qualifications****Key Responsibilities**:- Review IT and Information Security systems throughout the project lifecycle, identifying risks and security requirements.- Collaborate with various IT/Business teams to ensure they are knowledgeable of Information Security processes and requirements.- Assess security designs and align them with industry standards, such as NIST 800-53, ISO 27002, CIS, and OWASP.- Manage the operational metrics related to the ISA and GRC processes.- Monitor and report on key metrics, track project progress, and develop corrective action plans as needed.- Identify, quantify, and communicate technology risks impacting the business, recommending resolutions and identifying root causes.- Govern the Information Security services initiated from the ISA, including tracking of process metrics, identifying issues in the completion of the processes, and escalating the issues to resolution.- Drive process improvement initiatives across the Information Security Services to improve the customer experience, efficiency, and effectiveness of the processes.- Leverage expert knowledge in threat modeling techniques and methodologies to proactively identify, assess, and prioritize security risks, enabling the organization to implement targeted mitigation strategies and maintain a robust information security posture.**Years of Experience**:- A minimum of 5 years of experience in Information Security, IT Risk Management, or a similar role