Director - IAM Authentication Services

Overview

The Identity and Access Management (IAM) Director will be responsible for end-to-end architecture, design, engineering, delivery, and sustain support of Authentication (Single Sign On (SSO), Multi Factor Authentication (MFA), PKI, Customer Identity Management (CIAM)) products and services. The Director will lead global teams, driving discussions across various PepsiCo project teams and other staff developers and operations team to ensure that PepsiCo Information Security Guidelines and standards are adhered to while meeting the requirements for the business.

The IAM Director must possess hands on experience with designing and delivering solutions across SSO, MFA, PKI, CIAM services, as well as foundational security infrastructure concepts across operating systems, networking, and n-tiered architectures with good troubleshooting skills.

• This role has end to end accountability for SSO, MFA, PKI, CIAM architecting, solutioning, securing and driving programs delivering and managing sustain support successfully with stability
• Manage Global PepsiCo authentication products, environments and solutions supporting 1300+ applications and 380k+ identities
• Support the multi-year cloud transformation journey implementation and operationalizing the required technology foundations in a hybrid multi-cloud environment
• Ensure appropriate auditing, proactive monitoring, alerting identifying and resolving issues timely enhancing security for authentication services.
• Implement appropriate supporting tools for securing and managing authentication effectively with simplified user experience
• Drive the transformation of PepsiCo authentication services enhancing digital employee experience with enhanced protection enabling modern capabilities.
• Stay current on technologies and industry trends in the areas of responsibility and manage vendor relationships
• Manage baseline and investment budgets for areas of responsibility
• Manage contractors with vendors for services and licenses partnering with appropriate teams
• Drive strategy and roadmap for SSO, MFA, PKI, CIAM

• Manage engineering and operations teams globally
• Manage operational teams across authentication services driving incident resolution, troubleshooting and issue resolution across areas
• Manage Authentication and Authorization solutions
• Gather requirements and guide / recommend the right integration pattern for applications needing authentication services, taking into consideration the impact to the environment and standards set in PepsiCo
• Design and implement new patterns as needed to support business requirements for authentication services
• Manage tools for Account/Password Management, access provisioning / de-provisioning of including policy and certificate life cycle management end to end
• Drive technical integrations across areas of responsibility and ensure the right architecture/design is implemented in enabling the business partnering across appropriate architects and leads
• Develop and manage processes for integration, administration and maintenance
• Develop general purpose services, usable by a variety of authetication systems and applications
• Interaction with application teams to gather requirements, design and deliver solution to integrate with PepsiCo IAM products
• Recommend improvements, corrections, remediation or requirements for associated projects
• Create and maintain documentation for appropriate IAM related activities and metric reporting
• Advocate secure computing practices, procedures, and communicate Information Security best practices throughout the company.
• Ability to troubleshoot and resolve issues quickly identifying the best option in an emergency
• Ability to work with different teams and interact with technical and business folks across the Enterprise
• Drive communications and present across different levels of organization

• The expected compensation range for this position is between $113,300 - $226,600 based on a full-time schedule.
• Location, confirmed job-related skills and experience will be considered in setting actual starting salary.
• Bonus based on performance and eligibility; target payout is 25% of annual salary paid out annually.
• and an additional target payout of 10% of annual salary is paid out over 3 years following the end of the performance period.
• Long term incentive equity may be awarded based on eligibility and performance
• Paid time off subject to eligibility, including paid parental leave, vacation, sick, and bereavement.
• In addition to salary, PepsiCo offers a comprehensive benefits package to support our employees and their families, subject to elections and eligibility: Medical, Dental, Vision, Disability, Health and Dependent Care Reimbursement Accounts, Employee Assistance Program (EAP), Insurance (Accident, Group Legal, Life), Defined Contribution Retirement Plan.

• Bachelor's Degree required
• 12+ years overall IT experience
• 10+ years in relevant IAM, SSO, MFA and PKI technologies
• 7+ years in overall security standards, policies
• 5+ years of experience with CIAM solutions such as CyberArk
• 6+ years of information security experience with a focus in IAM
• 8+ years strong troubleshooting experience with authentication services (SSO, MFA, PKI, CIAM)
• 5+ years of experience with developing tools with LDAP via JNDI preferred
• 5+ years of experience with web application management
• 5+ years of working experience with building and using scripting tools
• Advanced understanding of user life cycle management, authentication/authorizations and policies around access

• Ability to guide teams through complex issues and drive resolution for issues that arise within complex and high-risk applications
• Ability to effectively translate technical information between vendors, IT management and other internal and external IT teams
• Ability to work with all levels of management to define requirements associated with IAM services, incorporating security best practices
• Ability to build project plans, translate directives, and present project deliverables to upper management
• Advanced understanding of the broader impact of Information Security from a business perspective
• Understanding of business processes associated with identity and access management lifecycle and ability to design and implement solutions that meet complex business requirements preferred
• Experience managing global teams that include employees and vendors
• Experience managing vendors driving SLAs

• Collaborate across global teams and partner across different levels
• Drive global programs across sectors partnering with global teams
• Mentor team members
• Ability to clearly communicate thoughts and ideas in both oral and written formats.
• Self-motivated and ability to prioritize and handle tasks in a fast-paced environment
• Proven track record of achieving results through collaboration and teamwork
• Foster company success through a professional appearance, being courteous to customers and all PepsiCo associates and by having a positive attitude