Regional Information Security Officer, North America

Position Overview:
The Regional Information Security Officer (RISO) -- North America, at The Coca-Cola Company will be a part of the Regional Cybersecurity team under the Global Cybersecurity function. In this role, you will drive initiatives to improve the security posture of the Company's operating unit (OU), production plants, subsidiaries, and franchise bottlers in North America. The successful candidate will deliver this mission by understanding the Global Cybersecurity strategy and roadmap and executing it through collaboration across Global Cybersecurity internal functions, Technology Services, Company franchise leadership, and franchise bottler technology teams, to deliver measurable results for The Coca-Cola System. The successful delivery of your responsibilities will ensure that the North American business, wholly-owned entities, and our key bottling partners are equipped with the necessary cybersecurity programs, services, and solutions to securely achieve their business goals. The position will work cross functionally within our networked organization and global System, and reports to the Global Lead of the Regional Cybersecurity Team, with clear networked relationships to OU and Functional leadership in this geography.

Function Related Activities/Key Responsibilities

• Operating Unit Support

• Develop and maintain relationships with key IT and business leadership and stakeholders across the supported operating unit.

• Understand and support key business and IT strategies across your supported operating units.

• Understand and communicate key Global Cybersecurity activities across your supported operating unit(s), such as cybersecurity awareness, third party risk, and incident response. Specifically, be an extension of the Global Cybersecurity team and coordinate similar activities in your geography to help bridge time zones.

• Organize local security summits in your geography, along with global security summits organized by the Global Cybersecurity team.

• Promote company security requirements and guidelines to IT stakeholders and ensure they have the knowledge to apply them appropriately.

• Understand and support the delivery of key applications and programs within your supported operating units.

• Corporate Liaison

• Develop and maintain relationships with key IT and business leadership and stakeholders across the enterprise.

• Understand and support key business and IT strategies across the enterprise and facilitate alignment across your supported OUs.

• Facilitate collaboration of leadership and subject matter experts across the enterprise and within your supported OUs.

• Franchise Bottler Engagement

• Develop and maintain relationships with key cybersecurity and technology leadership at bottlers and partners in your geography.

• Understand and support the business and IT strategies at each bottler in your geography.

• Assist bottlers and partners in your geography with the development of their cybersecurity roadmap and the overall improvement in their cyber security program.

• Assist bottlers and partners in your geography to develop and implement security policies and frameworks for securing emerging technologies such as for AI-driven solutions, considering issues such as data privacy, model vulnerabilities, explainability, and adversarial attacks.

• Participate as an active member of the system cybersecurity subcommittee to support delivering cybersecurity initiatives to improve bottlers across the System.

Education Requirements:

• Bachelor's Degree in Appropriate Field Required.

• Relevant industry certification preferred - CISSP, CISA, CRISC and/or CISM. AWS Associate or Professional Certifications and/or MCSE: Cloud Platform and Infrastructure. AI- and Privacy-related certifications.

Related Work Experience:

• 8 to 12 years of work experience in cybersecurity, technology governance, risk, compliance, and cloud security, AI, or relevant related field.

• Audit and control experience with information technology audit practices, procedures, and methodologies. Hands-on experience with security frameworks such as NIST, CIS, ISO or COBIT. Experience as an IT auditor or risk advisor for a professional services firm, or in industry, will be an advantage.

• Strong experience in Cloud Security (e.g., AWS, Azure, Google Cloud Platform) and OT Security (e.g., industrial control systems, SCADA).

• Technical experience designing, implementing, and/or supporting enterprise technology solutions.

• Technical experience identifying and mitigating risk using comprehensive security controls and technologies.

• Proven expertise in AI security, particularly Generative AI and Agentic AI, including understanding of secure AI development practices and their associated risks, ethical considerations, and regulatory requirements.

• Understanding of general privacy concepts and regulatory requirements within North America.

• Ability to communicate with and influence senior management and technical subject matter experts.

• Excellent communication and presentation skills, as well as the ability to present to various levels of IT and business leadership.

Functional Skills:

• Manage or take part in cross-functional teams to promote technology strategies, analyze and evaluate products, or perform pilot and first implementations of new technologies to integrate modern technologies into the Company's Global infrastructure.

• Develop or deliver standards-related training or architecture updates (e.g., hardware, methodology, software packages, business data, security, retention, delivery methods and tools) to stakeholders (e.g., stewards, custodians, SAP power users, application teams) to ensure standards compliance and quality master data.

• Orchestrate the deployment of resources (e.g., people, infrastructure, financial, informational) from Coca-Cola (e.g., client, internal service providers) and third parties in order to ensure successful project completion.

• Create a communications plan (e.g., memos, letters, plan review meetings, status lists) to ensure frequent, accurate and timely communication to all stakeholders and to solidify commitment to the project plan.

• Prepare overall implementation plans, including a detailed schedule of all activities (e.g., data conversions, cutover activities, security assignments, training, testing) and the assignment of appropriate resources, to move the application into a production environment.

Skills:
Artificial Intelligence Technologies; Risk Management; Compliance; Collaboration; Communication; Risk Analysis; Security Risk Management; IT Governance; Cloud Security

Client-provided location(s): Atlanta, GA

Job ID: cocacola-148550234

Employment Type: OTHER

Posted: 2025-08-08T03:35:42