• Engage with architects, project managers, and project sponsors in the business to understand, clarify, and document the objectives and success factors, risks, and threats for technical solutions that support business-based project initiatives. • Leverage existing security standards to provide secure solutions for projects. • Provide ownership of those solutions for the lifespan of projects. • Work with technical discipline owners and experts to maintain a clear understanding and awareness of current risks, threats, controls, and direction. • Provide feedback on standards based on project and incident experiences. • Design security architecture artifacts and policies to improve predictability and efficiency of the security architecture infrastructure and delivery process. • Manage the repository for these artifacts, ensuring that they are current and correct. • Assess future security technologies and controls and collaborate with the engineering teams to offer capabilities which can be utilized to enable secure business processes. • Act as the Security Architecture process owner for the provisioning of new security controls, working with the engineering teams to confirm the delivery and quality of the required deployed controls.

• Own the end-to-end security design for the Data Mesh, ensuring alignment with both internal bank policies and external regulations (DORA, ECB). • Evaluate current and future architectures against non-functional requirements (Encryption, Access Control, Logging). Document status, propose technical alternatives, and perform formal risk assessments for non-compliant areas. • Design and audit complex network segmentation, including VNETs, subnets, and firewall rules for hybrid (Cloud-to-On-Prem) environments. • Secure high-velocity data streams and pipelines, specifically focusing on Kafka, Data Lake, DWH, and CDC from Flexcube. • Develop and maintain security patterns and standards to empower product teams to build securely without constant manual oversight. • Provide expert guidance on the scope of penetration testing, justifying the necessity (or exclusion) of tests based on the current threat landscape.

• Develop functional and technical requirements; serve as a POC for Information Systems with security issues; • Prepare and update reports to ensure that the unit complies with mandated internal and external security reporting requirements, including Federal Information Security Modernization Act (FISMA) and Capital Planning; • Coordinate security program and system elements with the agency IT Program Managers by evaluating system environments for security requirements and controls including: IT Security Architecture, hardware, software, telecommunications, security trends, and associated threats and vulnerabilities; • Manage security controls to ensure confidentiality, integrity and availability of information; • Build security into the system development process and define security specifications to Support the acquisition of new systems; • Support System Owners or Program Officers on the review of system procurement requests to ensure that security has been considered and included; • Adhere to and implement system security controls that ensure the protection of Sensitive but Unclassified (SBU) information using authentication techniques, encryption, firewalls, and access controls; • Complete Security Assessments; • Assist in the Assessment and Authorization process; • Create and/or update the System Security Plans and other ATO documentation; • Serve as an advisor in risk assessments of all systems and mitigate vulnerabilities; • Adhere to Continuous Monitoring practices to ensure that security controls are maintained over the life of IT systems • Assist the System Owner in the development, testing and maintenance of contingency plans, backup and storage procedures; • Document all procedures according to the organizations standards; • Audit and monitor application, system and security logs for security threats, vulnerabilities and suspicious activities; report suspicious activities to the agency Incident coordinator; • Monitor and coordinate patch management and scanning techniques for all unit systems; participate in identification and mitigation of all system vulnerabilities; • Support and facilitate the security awareness, training, and education program; and • Assist the Information System Security Manager (ISSM), or CISO in any other security related duties, as required.

Job Description Are You Ready to Make It Happen at Mondelēz International? Join our Mission to Lead the Future of Snacking. Make It Uniquely Yours. You provide software and applications expertise, and be responsible for implementation of the solutions. How you will contribute You will oversee the planning and execution of software and applications. To do so, you will manage an internal team and partner with external suppliers and use your deep technical and market knowledge and thorough understanding of our business goals find and deploy the right software and application solutions for the future. You will support programs to implement regional and global software and application strategies, offer input to financial planning and controls for software and applications on a regional and global level, collaborate with management and follow-up on requisitions, purchase orders, invoices, and payments, explores opportunities to leverage scale and drive savings, and ensure that support service level objectives and key performance indicators are accomplished. What you will bring A desire to drive your future and accelerate your career. You will bring experience and knowledge in : - Managing staff and line responsibilities - Managing large-scale software and application services - Service delivery, support and excellence - Program/Project management with experience managing multiple projects for budgets, resources, schedules and quality - General technical background - Understanding of integration and how different applications talk to each other - Process and service orientation - Business processes More about this role You will play a critical role in the engineering, operation, and evolution of the CyberArk Privileged Access Management (PAM) platform, operating it as a global security product and enterprise platform. This role goes beyond day-to-day operations-focusing on platform reliability, secure-by-design integrations, continuous improvement, and alignment to Zero Trust and Product & Platform operating models. You will help ensure that privileged access services are scalable, resilient, compliant, and embedded seamlessly into enterprise and application ecosystems, while supporting business growth and modernization initiatives across Mondelēz International. What you need to know about this position: - You will collaborate closely with Engineering teams, security architects, application owners, and managed service partners to deliver and evolve CyberArk as a standardized enterprise platform. - You will balance operational excellence with forward-looking improvements-driving automation, platform enhancements, and security best practices across a global environment. - You will contribute to roadmap execution, manage global changes and deployments, and ensure the CyberArk platform continuously meets business, security, and compliance requirements What extra ingredients you will bring: - Design, implement, operate, and continuously enhance enterprise-scale CyberArk PAM solutions aligned to product and platform principles. - Deploy, configure, and maintain CyberArk Vault, Privileged Access Security (PAS), Endpoint Privilege Manager (EPM), and supporting components. - Own the reliability, availability, and security posture of the CyberArk platform, including monitoring, alerting, and performance optimization. - Provide advanced technical support for CyberArk-related incidents, conducting root cause analysis and implementing long-term corrective actions. - Troubleshoot and resolve authentication failures, access issues, and privileged session problems across applications, infrastructure, and endpoints. - Engineer and maintain CPM plugins, PSM connectors, and custom integrations using Plugin Generator Utility, CLI, and APIs. - Partner with application, infrastructure, and cloud teams to embed CyberArk services into enterprise workflows, CI/CD pipelines, and modernization programs. - Drive automation and standardization across onboarding, credential rotation, access workflows, and reporting. - Participate in problem, change, and release management forums, ensuring controlled and risk-based platform evolution. - Support audit readiness and compliance remediation related to IAM and privileged access controls. - Mentor and guide junior engineers, fostering technical excellence and knowledge sharing within the team. - Present PAM architecture, platform improvements, and risk reduction initiatives to technical and non-technical stakeholders. - Drive SLA/OLA adherence and accountability with vendors and managed service providers. - Make informed, risk-based decisions when exceptions are required, recommending compensating controls aligned to security standards. - Contribute to continuous improvement initiatives across process, tooling, documentation, and platform maturity. Education / Certifications: - CISSP - CyberArk Certifications - ITIL 4 Foundations Certification Job specific requirements: - 5+ years of hands-on experience designing, implementing, and supporting CyberArk PAM solutions in enterprise environments. - Strong experience with CyberArk Vault, PAS, EPM, and core PAM architecture. - Proven expertise with CPM plugins and PSM connectors, including custom connector development. - Hands-on experience using Plugin Generator Utility, CLI tools, APIs, and scripting for automation. - Solid understanding of privileged access concepts, credential lifecycle management, session isolation, and Zero Trust principles. - Experience operating IAM or security platforms using Agile, and DevSecOps methodologies, with familiarity in ITIL practices. - Strong troubleshooting skills with the ability to diagnose complex, cross-platform issues under time pressure. - Excellent written and verbal communication skills, with the ability to clearly explain technical concepts to diverse audiences. - Strong stakeholder management skills with a customer-centric and outcome-driven mindset. - Proven ability to work effectively in fast-paced, globally distributed environments with competing priorities. - Demonstrated commitment to continuous learning and professional development. No Relocation support available Business Unit Summary At Mondelēz International, our purpose is to empower people to snack right by offering the right snack, for the right moment, made the right way. That means delivering a broad range of delicious, high-quality snacks that nourish life's moments, made with sustainable ingredients and packaging that consumers can feel good about. We have a rich portfolio of strong brands globally and locally including many household names such as Oreo, belVita and LU biscuits; Cadbury Dairy Milk, Milka and Toblerone chocolate; Sour Patch Kids candy and Trident gum. We are proud to hold the top position globally in biscuits, chocolate and candy and the second top position in gum. Our 80,000 makers and bakers are located in more than 80 countries and we sell our products in over 150 countries around the world. Our people are energized for growth and critical to us living our purpose and values. We are a diverse community that can make things happen-and happen fast. Mondelēz International is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation or preference, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law. Job Type Regular Software & Applications Technology & Digital