The Job logo

What

Where

Sign in

Global Cyber OT Risk Analyst

ApplyJoin for More Updates

You must Sign In before continuing to the company website to apply.

Responsibilities

The opportunity

The Global Cyber OT Risk Analyst role will be responsible for designing and maintaining the annual OT (Operational Technology) risk management operating model. This role will collaborate with the Information Security Policy and Standards team to update OT specific standards; develop, maintain, and test key cybersecurity controls for manufacturing plants. This role will ensure OT controls testing and compliance initiatives are completed. The role will provide support for process improvement initiatives through analysis, documentation, and testing.

Your Impact

As The Global Cyber OT Risk Analyst your scope will consist of: 

  • Design, develop, and operationalize the annual OT risk management process
  • Develop and manage OT control lifecycle including control review and approval; develop a roadmap with recommendations for improvements
  • Collaborate with stakeholders to update existing controls, create new controls, conduct testing, and report results
  • Partner with OT BISO leads to ensure OT controls testing and compliance initiatives are completed
  • Participate in Information Security standards review process to provide updates to OT-specific requirements
  • Advise OT BISO team on risk issues related to information security and recommend actions in support of risk management programs
  • Collaborate with OT Services Lead to drive service partner compliance to PepsiCo standards and controls
  • Provide insight to risk mitigation initiatives
  • Analyze OT cybersecurity metrics; Provide report requirements that identify global and sector cyber risks

Experience:

  • 3+ years security control development
  • 3+ years policy and standards development

Tech skills:

  • Proficient in Microsoft suite of tools - pivot tables in Excel, Visio, Word, PowerPoint, etc.
  • Proficient with search engines and conducting research

Non tech skills:

  • Experience partnering and collaborating with global teams having various responsibilities
  • Possess strong understanding of data privacy, regulations, and laws and how they apply to cybersecurity controls
  • Working knowledge of control development processes including design, documentation, testing, and maintenance
  • Working knowledge of policy and standards development processes including development and maintenance of OT-specific policy and standard requirements
  • Excellent oral and written communication skills
  • Exceptional analytical and problem-solving skills

Competencies:

  • Strong people skills communicating across different experience levels
  • Ability to drive results and build consensus with stakeholders
  • Ability to analyze situations, evaluate multiple perspectives, collect evidence, ask questions and use critical thinking skills
  • Ability to work in a fast-paced environment
Set alert for similar jobsGlobal Cyber OT Risk Analyst role in San Nicolás de los Garza, Mexico
PepsiCo Logo

Company

PepsiCo

Job Posted

a year ago

Job Type

Full-time

WorkMode

On-site

Experience Level

3-7 years

Locations

San Nicolás de los Garza, Nuevo León, Mexico

Qualification

Diploma

Applicants

Be an early applicant

Related Jobs

PepsiCo Logo

Infrastructure Delivery Cloud Compute Manager

PepsiCo

San Nicolás de los Garza, Nuevo León, Mexico

Posted: a year ago

Responsibilities   The opportunity This role will be responsible for PFNA Compute & Cloud infrastructure delivery and transformation. PepsiCo Foods North America (Frito-Lay US & Canada and Quaker Oats US & Canada) is going through cloud transformation, moving from distributed on-premise localized solutions for inventory management, logistics, manufacturing, sales, reporting, and other tools. This role is critical to the success of PepsiCo's cloud journey and will be on the frontline with application owners, compute, and cloud engineering and architecture. This role will manage a $10MM annual OPEX budget supporting ~400 field locations across the US and Canada, as well as PFNA specific applications in centralized data centers. This role will manage relationships, RFP, and SOW creation and management with multiple 3rd party managed service organizations to help deliver a successful transformation. Post transformation this role will work closely with key business leaders and CIO partners to develop new cloud environments, maintain environment currency and plan refresh of environments year over year to ensure all application environments are sustainable and supportable. Your Impact As The Infrastructure Delivery Cloud Compute Manager your scope will consist of:  Deliver compute and cloud technology life cycle program across the PepsiCo Foods North America Sector with 95% asset life currency across ~400 sites, multiple data centers, and ~10,000 devices Delivery and refresh of on-premise compute resources to edge and virtual compute environments. Utilize current standards to bridge the needs of on-premise compute to cloud Partner with CIO application owners, engineering, and architecture to design and implement a cloud transition model that is sustainable and repeatable Develop and implement a cloud refresh model that ensures our cloud infrastructure is current and sustainable. This includes application, OS and Database management, and asset currency Maintain strategic partnerships with 3rd parties to ensure the success of the programs. i.e. Microsoft (Azure, Windows, InSQL), Amazon AWS, and internal managed service provider Manage both baseline and investment budgets within forecast accuracy guidelines, plan and mitigate risks and challanges and report financial issues and challenges. Develop business proposal estimates with cost-benefit analysis Identify and deliver process improvement initiatives Identify and deliver key metrics and reporting tools Write and review statements of work with a focus on fixed bid delivery model to reduce cost and complexity Partner with procurement to author, review and revise RFP and SOW documents Communicate and report to Sr. management on program status and updates Manage and develop direct reports to grow and become successful future leaders   Experience: 15+ years in IT infrastructure management, with a minimum of 10+ years in IT Infrastructure services delivery, architecture and/or engineering. 10+ years managing infrastructure technology deployments as a delivery lead or project/program manager 10+ years in computing, database cloud deployment, and transformation management  7+ years delivering complex infrastructure programs Tech skills: 15+ years of experience in key infrastructure areas, including Windows, LINUX & UNIX management, Database management, Virtual Environment, SAN and Cloud Backup, Windows Azure, and AWS compute environment 5+ years of technical transformations from physical to virtual and cloud solutions 10+ years of experience in Agile/Waterfall Project management methodology Azure Solutions Architect Expert certification preferred Advanced certifications in Cloud Architecture, Cloud Management, Cloud Security and Cloud Network- Experience in managing product roadmaps and feature roadmaps Knowledge of Scrum, Agile and Scaled Agile (SAFe) Software Development Methodologies. Working knowledge of product development architecture Proficiency in the use of analytic tools Experience in UI/UX and customer / consumer experience preferred. Non tech skills: Excellent written and verbal communication skills, working closely with sr. leaders and executives Strong presentation development and communication skills Bachelor's Degree in IT or Business Management Experience working in a global environment with stakeholders across multiple geographies. Complex budget and financial management skills complex IT estimation modeling experience Strong vendor management and negotiation skills

Hubbell Incorporated Logo

Manager I Sourcing

Hubbell Incorporated

Apodaca, Nuevo León, Mexico

Posted: a year ago

The Sourcing Manager will guide the development, communication, and implementation of complex procurement strategies that strengthen Hubbell's competitiveness while ensuring the availability and quality of the products we provide to our customers.

Amdocs Logo

Software Developer (VueJS/MySQL/Python)

Amdocs

Guadalajara, Jalisco, Mexico

Posted: a year ago

Required Travel :Minimal  Managerial - No Location: Mexico-Guadalajara (AM)   In one sentence Responsible for design, development, modification, debug and/or maintenance of software systems What will your job look like? •    You will design, develop, modify, debug and/or maintain software code according to functional, non-functional and technical design specifications. •    You will follow Amdocs software engineering standards, applicable software development methodology and release processes, to ensure code is maintainable, scalable, and supportable, and demo the software products to stakeholders. •    You will investigate issues by reviewing/debugging code, provide fixes and workarounds, and review changes for operability to maintain existing software solutions. •    You will work within a team, collaborate and add value through participation in peer code reviews, provide comments and suggestions, and work with cross functional teams to achieve goals. •    You will assume technical accountability for your specific work products within an application and provide technical support during solution design for new requirements. •    You will be encouraged to actively look for innovation, continuous improvement, and efficiency in all assigned tasks.   All you need is... ​​​Bachelor’s degree in Computer Science, Information Technology or Telecommunications related discipline 5+ yr experience as a Software Engineer 3+ yr programing experience in VueJS or ExpressJS 3+ yr experience with MySQL or SQL - running intermediate complexity queries 2+ yr experience with Python 1+ yr experience with PHP 3+ yr experience with HTML, CSS Agile Methodology / In depth knowledge of Agile process and principles Jira, Confluence, GitHub (must be familiar with Git commands) Knowledge about Product Life Cycle Nice to have: Previous experience in Telecommunications Industry is a big plus Familiar with RF workflow and terminology is highly desired Ability to work independently in several projects

UKG Logo

Senior Cyber Risk Analyst- Governance, Risk & Compliance (GRC)

UKG

Noida, Uttar Pradesh, India

Posted: a year ago

Description This position works as part of the Governance, Risk and Compliance (GRC) department, which is responsible for management of cyber risk across the enterprise.  The role offers the opportunity to be engaged in all facets of cyber risk including security, privacy, risk management, as well as security and compliance program development.  As a member of the department, the individual will be committed to overall data protection, risk management and its role in the company's continued success.  This position serves as an internal risk consultant and will be the subject matter expert responsible for designing, implementing, and supporting a security control framework for a multi-tenant software-as-a-service product. Primary responsibilities include assisting with audits of SSAE18 SOC 1, SOC 2, and ISO compliance exams and monitoring control activities in certified environments. This position demands an organized, detail-oriented team player with the ability to prioritize daily work and support multiple initiatives simultaneously; strong communication and customer focus is required. RESPONSIBILITIES • Contribute risk and compliance expertise and support to assist in the achievement of cloud audit/compliance programs. • Support customer hosted cloud environments to ensure control activities are designed and implemented appropriately to protect the security, confidentiality, privacy, integrity, and availability of data in compliance with organization policies and standards. • Perform continuous monitoring activities to confirm the control environment is operating effectively and escalate identified deviations. • Participate in risk assessments in SSAE18 SOC 1, SOC 2, ISO environments and collect evidence in support of audits. • Assist external auditors conducting annual compliance audits by reviewing all evidence to confirm it satisfies the items included in the document request list. • Utilize industry experience and knowledge to provide expertise and support to ensure company’s security framework remains in compliance with applicable regulations including evolving data privacy regulations. • Support the development, implementation, and updating of security policies and procedures. • Facilitate the exception and exemption processes for vulnerability management and hardening management programs. • Perform additional duties and projects as assigned by management. Qualifications B Tech /MCA, Any Graduate

Hewlett Packard Enterprise Logo

Financial Analyst

Hewlett Packard Enterprise

Bangalore Urban, Karnataka, India

+1 more

Posted: a year ago

What you’ll do: Responsibilities: Performs clerical accounting duties within a broad scope under little supervision (e.g., prepaid bookings, unbilled, deferral/ accruals, etc). Reconciles and posts transactions to the general ledger. Supports moderately complex customer inquiries, typically without escalation. Provides significant support on assignments (e.g., implementing a new system) Assistance to local Controllership  in annual local GAAP year-end audit. Support to local Controllership and local audit activities with internal and external auditors & CFR Support Support Business Continuity Plan (BCP) and Provide regular Inputs to update the Account Profile. Identifies opportunities for improvements and makes recommendations.   What you need to bring: Education and Experience Required: Associates degree strongly preferred. Typically 3+ years of work experience, preferably in an accounting environment. Knowledge and Skills: Good computation skills. Strong business application skills (e.g., Microsoft Office Suite, SAP). Fluency in English. Good understanding of accounting processes. Good database skills. Good communication skills. Additional Skills: Accountability, Accountability, Active Learning, Active Listening, Bias, Big Data Analytics, Business Acumen, Coaching, Creativity, Critical Thinking, Customer Centricity, Design Thinking, Digital Transformation, Empathy, Financial Planning and Analysis (FP&A), Follow-Through, Growth Mindset, Intellectual Curiosity, Internal Controls, Long Term Planning, Management of Change, Managing Ambiguity, Numerical Data Analysis, Policy Management, Problem Solving Mindset {+ 4 more}

Vestas Logo

Cyber Security Engineer - OT (Operational Technology)

Vestas

Chennai, Tamil Nadu, India

Posted: a year ago

Support the team working on our products & solution that are being deployed to supervise the cybersecurity issues across a diverse suite of ICS components. Implement, handle, monitor & upgrade security measures for the protection of the OT devices in our hybrid Power Plants. Troubleshoot security and network problems. Respond diligently to all system and network security breaches. Ensuring that the OT data and infrastructure are protected by enabling the appropriate security controls. Participate in the change management process. Test and identify network and system vulnerabilities.