IAM Director - Directory and PAM

The Identity and Access Management (IAM) Director will be responsible for end-to-end architecture, design, engineering, delivery, and sustain support of Active Directory (AD), Azure Active Directory (AAD), Enterprise LDAP, and Privileged Access Management (PAM) products and services. The Director will lead global teams, driving discussions across various PepsiCo project teams and other staff developers and operations team to ensure that PepsiCo Information Security Guidelines and standards are adhered to while meeting the requirements for the business.

The IAM Director must possess hands on experience with designing and delivering solutions across AD, AAD, PAM services, as well as foundational security infrastructure concepts across operating systems, networking, and n-tiered architectures with good troubleshooting skills.

The IAM Director will be responsible for setting the strategy/roadmap for AD and AAD, architect/solution design, review security findings, plan and implement remediation timely and effectively to reduce risk of compromise. Strong HA/DR, resiliency capabilities for AD, Directories and PAM.

• This role has end to end accountability for AD, AAD, LDAP architecting, solutioning, securing and driving programs delivering and managing sustain support successfully with stability
• Manage Global PepsiCo LDAPs (AD, AAD, Enterprise LDAP and other instances) products, environments and solutions supporting 700K+ accounts and 380k+ identities
• Support the multi-year cloud transformation journey including Azure AD strategy, design, implementation and operationalizing the required technology foundations in a hybrid multi-cloud environment
• Ensure appropriate auditing, proactive monitoring, alerting identifying and resolving issues timely enhancing security for AD, AAD services.
• Implement appropriate supporting tools for securing and managing AD, AAD effectively
• Manage PAM services and platforms/products end to end driving programs, engineering activities, ongoing support
• Drive the transformation of PepsiCo PAM solution and the increased onboarding of privileged accounts including IT and OT. The service supports 400K+ current accounts with a growth rate of approximately 3K accounts annually.
• Stay current on technologies and industry trends in the areas of responsibility and manage vendor relationships
• Manage baseline and investment budgets for areas of responsibility
• Manage contractors with vendors for services and licenses partnering with appropriate teams
• Drive strategy and roadmap for AD, AAD, PAM, Enterprise Directories

Technical leader for IAM solutions

• Manage engineering and operations teams globally
• Manage operational teams across AD, AAD, Directories and PAM driving incident resolution, troubleshooting and issue resolution across areas
• Manage Authentication and Authorization utilizing Directory solutions
• Gather requirements and guide / recommend the right integration pattern for applications needing AD/AAD services, taking into consideration the impact to the environment and standards set in PepsiCo
• Design and implement new patterns as needed to support business requirements for AD/AAD and PAM
• Manage tools for Account/Password Management, Privileged Access Request provisioning / de-provisioning of access including recertification end to end
• Drive technical integrations across areas of responsibility and ensure the right architecture/design is implemented in enabling the business partnering across appropriate architects and leads
• Develop and manage processes for integration, administration and maintenance
• Develop general purpose services, usable by a variety of authorized systems and applications
• Interaction with application teams to gather requirements, design and deliver solution to integrate with PepsiCo IAM products
• Recommend improvements, corrections, remediation or requirements for associated projects
• Create and maintain documentation for appropriate IAM related activities and metric reporting
• Advocate secure computing practices, procedures, and communicate Information Security best practices throughout the company.
• Ability to troubleshoot and resolve issues quickly identifying the best option in an emergency
• Ability to work with different teams and interact with technical and business folks across the Enterprise
• Drive communications and present across different levels of organization
• Drive communications and present across different levels of organization

Compensation and Benefits:

• The expected compensation range for this position is between $113,300 - $226,600 based on a full-time schedule.
• Location, confirmed job-related skills and experience will be considered in setting actual starting salary.
• Bonus based on performance and eligibility; target payout is 25% of annual salary paid out annually.
• and an additional target payout of 10% of annual salary is paid out over 3 years following the end of the performance period.
• Long term incentive equity may be awarded based on eligibility and performance
• Paid time off subject to eligibility, including paid parental leave, vacation, sick, and bereavement.
• In addition to salary, PepsiCo offers a comprehensive benefits package to support our employees and their families, subject to elections and eligibility: Medical, Dental, Vision, Disability, Health and Dependent Care Reimbursement Accounts, Employee Assistance Program (EAP), Insurance (Accident, Group Legal, Life), Defined Contribution Retirement Plan.

• • Bachelor’s Degree required
  • 12+ years overall IT experience
  • 10+ years of experience with architecting and designing AD, AADS
  • 7+ years in other Directories such as ODSEE, OUD
  • 7+ years of experience with Privileged Access Management solutions such as CyberArk
  • 6+ years of information security experience with a focus in IAM
  • 8+ years strong troubleshooting experience with AD, Directories
  • 5+ years of experience with developing tools with LDAP via JNDI preferred
  • 5+ years of experience with web application management
  • 5+ years of working experience with building and using PowerShell, VBS and Pearl scripts
  • Advanced understanding of user life cycle management, authentication/authorizations, and controls around privileged access

  Functional:

  • Ability to guide teams through complex issues and drive resolution for issues that arise within complex and high-risk applications
  • Ability to effectively translate technical information between vendors, IT management and other internal and external IT teams
  • Ability to work with all levels of management to define requirements associated with IAM services, incorporating security best practices
  • Ability to build project plans, translate directives, and present project deliverables to upper management
  • Advanced understanding of the broader impact of Information Security from a business perspective
  • Understanding of business processes associated with identity and access management lifecycle and ability to design and implement solutions that meet complex business requirements preferred
  • Experience managing global teams that include employees and vendors
  • Experience managing vendors driving SLAs

  Soft Skills

  • Collaborate across global teams and partner across different levels
  • Drive global programs across sectors partnering with global teams
  • Mentor team members
  • Ability to clearly communicate thoughts and ideas in both oral and written formats.
  • Self-motivated and ability to prioritize and handle tasks in a fast-paced environment
  • Proven track record of achieving results through collaboration and teamwork
  • Foster company success through a professional appearance, being courteous to customers and all PepsiCo associates and by having a positive attitude

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or disability status.

PepsiCo is an Equal Opportunity Employer: Female / Minority / Disability / Protected Veteran / Sexual Orientation / Gender Identity

If you'd like more information about your EEO rights as an applicant under the law, please download the available EEO is the Law & EEO is the Law Supplement documents. View PepsiCo EEO Policy.

Please view our Pay Transparency Statement

Technical leader for IAM solutions

• Manage engineering and operations teams globally
• Manage operational teams across AD, AAD, Directories and PAM driving incident resolution, troubleshooting and issue resolution across areas
• Manage Authentication and Authorization utilizing Directory solutions
• Gather requirements and guide / recommend the right integration pattern for applications needing AD/AAD services, taking into consideration the impact to the environment and standards set in PepsiCo
• Design and implement new patterns as needed to support business requirements for AD/AAD and PAM
• Manage tools for Account/Password Management, Privileged Access Request provisioning / de-provisioning of access including recertification end to end
• Drive technical integrations across areas of responsibility and ensure the right architecture/design is implemented in enabling the business partnering across appropriate architects and leads
• Develop and manage processes for integration, administration and maintenance
• Develop general purpose services, usable by a variety of authorized systems and applications
• Interaction with application teams to gather requirements, design and deliver solution to integrate with PepsiCo IAM products
• Recommend improvements, corrections, remediation or requirements for associated projects
• Create and maintain documentation for appropriate IAM related activities and metric reporting
• Advocate secure computing practices, procedures, and communicate Information Security best practices throughout the company.
• Ability to troubleshoot and resolve issues quickly identifying the best option in an emergency
• Ability to work with different teams and interact with technical and business folks across the Enterprise
• Drive communications and present across different levels of organization
• Drive communications and present across different levels of organization

Compensation and Benefits:

• The expected compensation range for this position is between $113,300 - $226,600 based on a full-time schedule.
• Location, confirmed job-related skills and experience will be considered in setting actual starting salary.
• Bonus based on performance and eligibility; target payout is 25% of annual salary paid out annually.
• and an additional target payout of 10% of annual salary is paid out over 3 years following the end of the performance period.
• Long term incentive equity may be awarded based on eligibility and performance
• Paid time off subject to eligibility, including paid parental leave, vacation, sick, and bereavement.
• In addition to salary, PepsiCo offers a comprehensive benefits package to support our employees and their families, subject to elections and eligibility: Medical, Dental, Vision, Disability, Health and Dependent Care Reimbursement Accounts, Employee Assistance Program (EAP), Insurance (Accident, Group Legal, Life), Defined Contribution Retirement Plan.

• • Bachelor’s Degree required
  • 12+ years overall IT experience
  • 10+ years of experience with architecting and designing AD, AADS
  • 7+ years in other Directories such as ODSEE, OUD
  • 7+ years of experience with Privileged Access Management solutions such as CyberArk
  • 6+ years of information security experience with a focus in IAM
  • 8+ years strong troubleshooting experience with AD, Directories
  • 5+ years of experience with developing tools with LDAP via JNDI preferred
  • 5+ years of experience with web application management
  • 5+ years of working experience with building and using PowerShell, VBS and Pearl scripts
  • Advanced understanding of user life cycle management, authentication/authorizations, and controls around privileged access

  Functional:

  • Ability to guide teams through complex issues and drive resolution for issues that arise within complex and high-risk applications
  • Ability to effectively translate technical information between vendors, IT management and other internal and external IT teams
  • Ability to work with all levels of management to define requirements associated with IAM services, incorporating security best practices
  • Ability to build project plans, translate directives, and present project deliverables to upper management
  • Advanced understanding of the broader impact of Information Security from a business perspective
  • Understanding of business processes associated with identity and access management lifecycle and ability to design and implement solutions that meet complex business requirements preferred
  • Experience managing global teams that include employees and vendors
  • Experience managing vendors driving SLAs

  Soft Skills

  • Collaborate across global teams and partner across different levels
  • Drive global programs across sectors partnering with global teams
  • Mentor team members
  • Ability to clearly communicate thoughts and ideas in both oral and written formats.
  • Self-motivated and ability to prioritize and handle tasks in a fast-paced environment
  • Proven track record of achieving results through collaboration and teamwork
  • Foster company success through a professional appearance, being courteous to customers and all PepsiCo associates and by having a positive attitude