Overview The Director of Enterprise Incident Management is responsible for the management of major high-profile cyber security incidents in a complex global Fortune 50 enterprise. This includes management and oversight of Global Incident Commanders, handling of third-party security incidents, providing executive awareness and communications on significant cyber incidents and threats, and setting strategy for the Enterprise Incident Management function. Responsibilities Provide leadership, direction, and strategy for the PepsiCo Cyber Fusion Center Enterprise Incident Management function Deliver multi-year roadmaps for the Enterprise Incident Management function Lead and manage team of Global Incident Commanders that includes staffing and day to day management Serve as the incident commander for major high-profile incidents including validating and escalating incidents, coordinating response, facilitating information sharing and conducting reporting Serve as liaison between technical response and the business to minimize the impact of an incident and maintain business operations Ensure adherence to the PepsiCo Cyber-Security Incident Response Plan and Enterprise Incident Management plan Coordinate response activities in partnership with global incident managers for high priority incidents Coordinates and directs efforts among the Cyber-Security Incident Response Team (CSIRT) throughout the incident response lifecycle Provides timely and relevant updates to appropriate executive stakeholders and decision makers Conducts after-action reporting and provides relevant insights to guide improvements and adjustments to PepsiCos information security posture Tests and maintains incident response plans and processes to address existing and emerging threats Establish strong working relationship with all Cyber Fusion Center functions to maintain situational awareness of potential risks to the PepsiCo environment Organize, conduct, and maintain documentation for executive and targeted functional table-top exercises Acts in an advisory capacity and as a liaison for third party incidents COVID-19 vaccination is a condition of employment for this role. Please note that all such company vaccine requirements provide the opportunity to request an approved accommodation or exemption under applicable law Qualifications Bachelors degree required in Computer Science, Cybersecurity, or related discipline CISM, CISSP, or other relevant certifications preferred 10 years of related IT Security experience. Experience with large scale and complex incidents of all types to include APT, DDOS, ransomware, web/mobile compromise, account compromise, data disclosures, etc. Technical Demonstrated ability to perform independent analysis of complex problems and distill relevant findings and root causes A broad and deep understanding of cyber-security threats, vulnerabilities, controls, and remediation strategies in global enterprise environments Knowledge of technologies, systems, and networks as well as typical gaps that could impact the ability of an organization to effectively detect and respond to cyber attacks Demonstrated knowledge of common adversary tactics, techniques, and procedures Strong foundational knowledge in information technology, to include hardware, networking, architecture, protocols, files systems and operating systems. Non Technical Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one Knowledge of Project Management methodologies preferred Written/spoken English proficiency required An ability to work well under pressure while maintaining a professional image An ability to communicate complex and technical issues to diverse audiences, orally and in writing, a clear, authoritative, and actionable manner An ability to effectively influence others A team-focused mentality with the proven ability to work effectively with diverse stakeholders Strong organizational skills with proven ability to manage multiple high visibility issues simultaneously Proactive attitude, seeking for improvement opportunities which can positively impact the security posture and the business EEO Statement All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or disability status. PepsiCo is an Equal Opportunity Employer: Female / Minority / Disability / Protected Veteran / Sexual Orientation / Gender Identity If you'd like more information about your EEO rights as an applicant under the law, please download the available EEO is the Law & EEO is the Law Supplement documents. View PepsiCo EEO Policy. Please view our Pay Transparency Statement","location_name":"TX-Plano-7701a-HDQ-TX224B","street_address":"7701 Legacy Dr","city":"Plano","state":"Texas