Application BPO North America

Job Description

Auto req ID: 212012BR

Job Description

  • Manage the build, rollout and training of a global legacy application framework related to user access security, interfaces & data privacy, conform with Global Controls Standards GCS 3.0, Information Security Policy & Standards, and global IT strategies. (North America legacy applications estimate 800+ including cloud, third party, business or IT managed applications for all business processes)
  • Responsible to build or drive the build for all initiatives that will make up the legacy application framework. Includes the build of a reporting platform, integrated risk assessment approach that meets the need of multiple functions, complex monitoring processes, harmonized controls execution designs, leverage automation and tools within the build of the framework
  • Design all end-to-end sub-processes related to user access security, interfaces & data privacy. Contribute to design and alignment for high level processes
  • Lead high volumes of interviews, risk assessments, mapping and matching sessions to understand current processes. Perform gap analysis against requirements
  • Align with global leadership the expansion of existing tools, systems, or processes globally, or to enhance them to enable global usage; e.g., deploy GCS Portal for key controls reporting across all sectors and businesses. Deploy a system for storing risk management data worldwide. Seek new tools or new ways of using existing tools that can accelerate or increase accuracy of control execution (e.g., ServiceNow, Active Directory, central user access database)
  • Liaise with Information Security and Global IT Operations leadership to apprehend new system changes, new security policy, interfaces or data privacy expectations, projects, strategies, that may have multiple touchpoints with the legacy application framework, to ensure the framework is built and deployed in line with long term strategy/ sustainability
  • Align, plan and deploy pilots for new processes or tools that are developed, to ensure the designs are suitable to the various businesses and IT departments. Collect feedback and monitor effectiveness of the pilots; enhance, modify or change workstreams accordingly to ensure framework success
  • Build training plans as well as a sustainable training platform, and rollout across Business, Controls, Information Security and IT teams
  • Develop ways to encourage adoption of the framework across the organizations and the application landscape
  • Align end-to-end ways of working and strategies to ensure suitable and flexible enough to meet the needs of sector, but at the same time keeping a standard and consistent approach at the core
  • Provide clear reporting, updates and stage gates to stakeholders on the development, deployment and adoption of the framework
  • Interact with Corporate Audit and External Audit to explain and evaluate the structure and design of user access security, interfaces & data privacy processes and controls


  • Key Skills and Experience : leadership and coordination, collaboration & communication internationally, technical IT background to aid in strategy behind the framework build and design for detailed IT risk management processes, risk assessment, ability to work independently across many levels in the organization.
  • Experience of PepsiCo Controls or Audit processes, IT service management processes, IT Operations processes, User Access Security knowledge, Interfaces, Data Privacy knowledge
  • English language (read/write) is a must

Relocation Eligible: Not Eligible for Relocation
Job Type: Regular