Overview

PepsiCo's Global Application Security Program is responsible for integrating automated security testing in all development workflows to identify and manage application security risks. Our mission is to make security risks visible to and actionable by the business to ensure security findings are addressed promptly and effectively. This role will be responsible for contributing to the development of our core automated application security testing and workflow orchestration platform and fostering a culture of proactive security across the organization.

Responsibilities

• Develop, implement, test, and maintain components of our platform, including APIs, container services, queues, databases, and UIs.
• Stand up, integrate, implement, deploy, configure, and test cloud services to support platform scalability, performance, and reliability.
• Develop, implement, test, and maintain IaC components in the code to automate and optimize deployments.
• Implement scalable integrations with third-party application security scanning tools, source code management systems, and work item/issue trackers.
• Ensure code quality through robust functional testing, unit testing, and code reviews.
• Take responsibility for delivering specific features or modules within project timelines.
• Track and manage work in agile workflows, including creating and updating stories, story pointing, sprint planning, backlog grooming, and daily stand-ups to ensure timely and efficient delivery of tasks.
• Establish and monitor key performance indicators (KPIs) to constantly measure effectiveness and make necessary adjustments for continuous improvement.
• Foster a collaborative environment and promote knowledge sharing to help the team grow.
• Continuously research and raise novel concepts to improve the application security posture of the business. Stay updated with the latest security trends, tools, and practices.
• Support 24/7 hour on-call, including weekends/holidays, on a rotating basis.
• Develop technical documentation (i.e. system design, architecture diagrams, data flows, functional specifications).
• Develop program metrics, continuously measure progress/impact, and drive improvements.
• Collaborate with the leadership and cross-functional teams including DevOps, development teams, security operations, data and analytics, enterprise architecture, platform teams, and sector functions.
• Execute projects, objectives, and deliverables in alignment with the team's vision, mission, and goals.

• The expected compensation range for this position is between $69,900 - $117,000.
• Location, confirmed job-related skills, experience, and education will be considered in setting actual starting salary. Your recruiter can share more about the specific salary range during the hiring process.
• Bonus based on performance and eligibility target payout is 5% of annual salary paid out annually.
  Paid time off subject to eligibility, including paid parental leave, vacation, sick, and bereavement.
• In addition to salary, PepsiCo offers a comprehensive benefits package to support our employees and their families, subject to elections and eligibility: Medical, Dental, Vision, Disability, Health, and Dependent Care Reimbursement Accounts, Employee Assistance Program (EAP), Insurance (Accident, Group Legal, Life), Defined Contribution Retirement Plan.

• Proficient in Python and/or Go.
• Proficient in SQL and at least one relational database framework (MSSQL, PostgreSQL, etc.).
• Understanding of design patterns & principles.
• Hands-on experience developing full-stack applications and rapidly prototyping solutions.
• Hands-on experience with modern CI/CD tools and practices (Jenkins, Azure DevOps, GitHub
• Enterprise, Circle CI, Heroku, etc.)
• Experience with public cloud services (Azure, AWS, Alibaba).
• Experience with IaC development (Terraform preferred).
• Familiarity with developing and monitoring metrics and KPIs.
• Experience with generative AI technologies is a plus.

• Strong communication skills, both verbal and written.
• High level of integrity and ethical standards.
• Excellent problem-solving, analytical, and critical thinking skills.
• Demonstrated ability to make decisions and take calculated risks autonomously.
• A proactive and positive team player who is impact-focused, driven, curious, analytical, and a self-starter.
• Ability to establish trust relationships and influence others.
• Flexible and adaptive to support a dynamic, global environment with diverse stakeholders and ambiguity.
• Must be able to operate extremely well under pressure.

• Demonstrated ability to innovate and drive continuous improvement.
• Ability to handle high-pressure situations with a calm and methodical approach.
• Ability to weigh the relative costs/benefits/trade-offs of potential actions and identify the best resolution.
• Ability to organize tasks, manage time, and prioritize actions to meet business needs.