Information Security Lead, North America
The Coca-Cola Company
The Information Security Lead at The Coca-Cola Company will be a part of the Global Cybersecurity team. In this role you will drive initiatives to improve the security posture of Company operating units (OU), production plants, subsidiaries, and franchise bottlers in North America. The successful candidate will deliver this mission by understanding the Global Cybersecurity strategy and roadmap and executing it through collaboration across Technology Services, Global Cybersecurity internal functions, and franchise bottler IT teams, to deliver measurable results for The Coca-Cola System. The successful delivery of your responsibilities will ensure that the business is equipped with the necessary programs, services, and solutions to securely achieve their business goals. The position will work cross functionally within our networked organization and global System, and reports to the Global Lead of Cyber Services, with clear networked relationships to OU and Functional leadership in this geography.
Function Related Activities/Key Responsibilities
Franchise Bottler Engagement Develop and maintain relationships with key security and IT executives at bottlers in your geography.
Understand and support the business and IT strategies at each bottler in your geography.
Assist bottlers in your geography with the development of their cybersecurity roadmap and the overall improvement in their cyber security program.
Participate as an active member of the cybersecurity subcommittee in support of delivering cybersecurity initiatives for the improvement of bottlers across the System.
Operating Unit Support Develop and maintain relationships with key IT and business leadership and stakeholders across your supported operating units.
Understand and support key business and IT strategies across your supported operating units.
Understand and communicate key Global Cybersecurity activities across your supported operating units, such as cybersecurity awareness, third party risk, and incident response. Specifically, be an extension of the Global Cybersecurity team and coordinate similar activities in your geography to help bridge time zones.
Organize local security summits in your geography, in conjunction with global security summits that are organized by the Global Cybersecurity team.
Promote company security requirements and guidelines to IT stakeholders and ensure they have the knowledge to apply them appropriately.
Understand and support the delivery of key applications and programs within your supported operating units.
Corporate Liaison Develop and maintain relationships with key IT and business leadership and stakeholders across the enterprise.
Understand and support key business and IT strategies across the enterprise and facilitate alignment across your supported OUs.
Facilitate collaboration of leadership and subject matter experts across the enterprise and within your supported OUs.
Bachelor’s Degree in Appropriate Field Required.
Relevant industry certification preferred – CISA, CRISC, CISSP and/or CISM. AWS Associate or Professional Certifications and/or MCSE: Cloud Platform and Infrastructure.
Related Work Experience:
10 to 12 years of work experience in governance, risk, compliance and cloud security or relevant related field.
Audit and control experience with information technology audit practices, procedures, and methodologies. Experience as an IT auditor or risk advisor for a professional services firm, or in industry.
Technical understanding of Amazon virtual private clouds (VPCs), security groups, network access controls lists (ACLs), AWS IAM and/or Microsoft Azure virtual networks, network security groups, security rules, and Azure AD.
Technical experience designing, implementing, and/or supporting enterprise technology solutions.
Technical experience identifying and mitigating risk using comprehensive security controls and technologies.
Ability to communicate to and influence senior management and technical subject matter experts.
Excellent communication and presentation skills, as well as ability to present to various levels of IT and business leadership.