.OverviewWe Are PepsiCoJoin PepsiCo and Dare for Better! We are the perfect place for curious people, thinkers and change agents. From leadership to front lines, we're excited about the future and working together to make the world a better place. Being part of PepsiCo means being part of one of the largest food and beverage companies in the world, with our iconic brands consumed more than a billion times a day in more than 200 countries.Our product portfolio, which includes 22 of the world's most iconic brands, such as Sabritas, Gamesa, Quaker, Pepsi, Gatorade and Sonrics, has been a part of Mexican homes for more than 116 years.A career at PepsiCo means working in a culture where all people are welcome. Here, you can dare to be you. No matter who you are, where you're from, or who you love, you can always influence the people around you and make a positive impact in the world.ResponsibilitiesThe Opportunity:We are looking for an experienced Senior Cloud Security Engineer with extensive expertise in AWS and Azure cloud environments. The ideal candidate will have a deep understanding of cloud security, infrastructure, and automation, and will be responsible for designing and implementing secure cloud solutions. You will work on a variety of cloud services, focusing on securing and optimizing resources, protecting applications, and enhancing cloud environments with best security practices.Your Impact:Cloud Infrastructure Security: Architect, implement, and manage secure cloud solutions on AWS and Azure cloud platforms, including resources like EC2, S3, VPC, Route53, EKS, and Container Registries.WAF & Bot Protection: Configure and manage Web Application Firewalls (WAF) and F5 bot protection to defend web applications against malicious traffic and bot attacks.AWS Advanced Shield & DDoS Protection: Implement AWS Advanced Shield for DDoS protection and configure Rate Limiting mechanisms to safeguard cloud resources from high traffic and abuse.Imperva CDN and Security Tools: Manage Imperva CDN to optimize content delivery with an added layer of security, ensuring fast and secure web access.Networking & Virtualization: Design, secure, and monitor cloud networking components, including VPC, Subnets, NAT Gateways, Security Groups, and Route53 for DNS management. Manage networking within containerized environments like EKS (Elastic Kubernetes Service).Containerization & Orchestration: Secure containerized applications using Kubernetes and Docker, with a focus on integrating Snyk and other container security tools.Logging & Monitoring: Set up cloud-native logging and monitoring services, such as CloudWatch, Azure Monitor, and third-party solutions to ensure compliance, auditability, and proactive threat detection.Open-Source Security & Pipeline Protection: Utilize open-source security tools and enforce best practices for vulnerability management