Engineer III - Information Security at AmerisourceBergen

Carrollton, Texas, United States -

Full Time

Start Date

Immediate

Expiry Date

05 Sep, 26

Salary

0.0

Posted On

07 Jun, 26

Experience

2 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Cybersecurity, Data Security, Cloud Security, IT Risk Management, Root Cause Analysis, Information Security Strategy, Application Architecture, Threat Intelligence, Network Solutions, Penetration Testing, Secure Code Review, Vulnerability Management

Industry

Hospitals and Health Care

Description

Job Details PRIMARY DUTIES AND RESPONSIBILITIES: Conducts proactive research to analyze security weaknesses and recommends appropriate strategies to strengthen controls Assists on security initiatives/issues for one or more Information Security Strategy/Cybersecurity functional areas (e.g., Cyber Operations, Incident Response, Threat Intelligence, Threat Hunting, Forensics, Vulnerability Management, Data Analytics) Assists in the development, refinement, and implementation of enterprise-wide security policies and procedures and ensures they meet compliance responsibilities Reviews technical/functional design documents, build, maintain and implement cybersecurity, data security, and cloud security solutions Works on multiple projects as a key contributor and contributes to the strategic and tactical direction and consultation on cybersecurity initiatives Interfaces with business and IT leaders communicating security issues and responding to requests for assistance and information Supports Engineers I/II in conducting manual and automated penetration testing, vulnerability, and other security tests on software applications and assists in secure code reviews, and remediating identified programming flaws Provides security briefings to advise on critical issues that may affect the enterprise Gathers and analyzes reporting, metrics, and key performance indicators for executive review Work closely with the Lead Engineer in maintaining service-level agreements (SLAs) to ensure that security controls are upheld Guides, coaches, and mentors Engineers I/II in executing their tasks Works with information security and line of business management to identify, formulate and implement information security solutions and controls and to maintain and configure security tooling Coordinates with systems and network engineers to ensure servers and network devices conform to security standards and that security devices and controls are working as designed Engineers security controls to protect data and systems and provide security policy guidance and consultation Collaborates with other IT teams to focus on improving cloud and application security measures and integrate new and support existing security applications Communicates advanced information security concepts with clients, peers, and all levels of management and vendors effectively EDUCATIONAL QUALIFICATIONS: Education: Bachelor’s Degree in Computer Science, Information Technology or any other related discipline or equivalent related experience. Preferred Certifications: Azure Security Engineer Certification Certified Cloud Security Professional (CCSP) Certification in Information Security Strategy Management (CISM) Certified Information Systems Security Professional (CISSP) CompTIA Security + Certification Systems Security Certified Practitioner (SSCP) WORK EXPERIENCE: 4+ years of directly-related or relevant experience, preferably in information security. SKILLS & KNOWLEDGE: Behavioral Skills: Critical Thinking Detail Oriented Impact and Influencing Interpersonal Communication Multitasking Problem Solving Technical Skills: Network Solutions and Systems Cybersecurity Data Security Cloud Security IT Risk Management Root Cause Analysis Information Security Strategy Standards (SOX, ISO 27001/27002, COBIT, ITIL, NIST, PCI) Application Architecture Threat Intelligence and Monitoring Tools Knowledge: Microsoft Office Suite Programming and Development Languages - JavaScript, HTML/CSS, Python, SQL Security Tools - SIEM, EDR, Email Security Gateway, SOAR, Firewall, Anti-virus, Firewalls, VPN IDS/IPS, AV, proxies, etc. Schedule Full time Affiliated Companies Affiliated Companies: AmerisourceBergen Services Corporation Equal Employment Opportunity Cencora is committed to providing equal employment opportunity without regard to race, color, religion, sex, sexual orientation, gender identity, genetic information, national origin, age, disability, veteran status or membership in any other class protected by federal, state or local law. The company’s continued success depends on the full and effective utilization of qualified individuals. Therefore, harassment is prohibited and all matters related to recruiting, training, compensation, benefits, promotions and transfers comply with equal opportunity principles and are non-discriminatory. Cencora is committed to providing reasonable accommodations to individuals with disabilities during the employment process which are consistent with legal requirements. If you wish to request an accommodation while seeking employment, please call 888.692.2272 or email hrsc@cencora.com. We will make accommodation determinations on a request-by-request basis. Messages and emails regarding anything other than accommodations requests will not be returned

Responsibilities

The role involves conducting proactive research to analyze security weaknesses and implementing enterprise-wide security policies and cloud security solutions. The engineer will also mentor junior staff and collaborate with IT teams to strengthen security controls and maintain SLAs.