Cencora
Our team members are at the heart of everything we do. At Cencora, we are united in our responsibility to create healthier futures, and every person here is essential to us being able to deliver on that purpose. If you want to make a difference at the center of health, come join our innovative company and help us improve the lives of people and animals everywhere. Apply today!
Job Details The Engineer III - OT Security Engineer is responsible for supporting the planning, execution, and managing of multifaceted projects related to cyber, cloud, data security, risk management, mitigation and response, compliance, control assurance, and user awareness for all IT systems. Engineers III work on developing and driving security strategies, initiatives, policies/standards, ensuring the effectiveness of solutions, and providing security‑focused consultative services to the organization, and providing expertise and assistance to ensure the company's infrastructure and information assets are protected. They assist in updating, maintaining, and documenting security controls and provide direct support to the business and internal IT groups. They work directly with Lead Engineers, customers, third parties, and other internal departments and organizations to facilitate information security risk analysis and risk management processes and to identify acceptable levels of residual risk. Together with Engineers I and II, they perform security assessments, penetration testing and security attestations, monitor data security profiles, update, maintain and document security controls and provide direct support to the business and internal IT groups.
Responsibilities
Conducts proactive research to analyze security weaknesses and recommend appropriate strategies to strengthen controls
Assists on security initiatives/issues for one or more Information Security Strategy/Cybersecurity functional areas (e.g., Cyber Operations, Incident Response, Threat Intelligence, Threat Hunting, Forensics, Vulnerability Management, Data Analytics)
Assists in the development, refinement, and implementation of enterprise‑wide security policies and procedures and ensures they meet compliance responsibilities
Reviews technical/functional design documents, build, maintain and implement cybersecurity, data security, and cloud security solutions
Works on multiple projects as a key contributor and contributes to the strategic and tactical direction and consultation on cybersecurity initiatives
Interfaces with business and IT leaders communicating security issues and responding to requests for assistance and information
Supports Engineers I/II in conducting manual and automated penetration testing, vulnerability, and other security tests on software applications and assists in secure code reviews, and remediating identified programming flaws
Provides security briefings to advise on critical issues that may affect the enterprise
Gathers and analyzes reporting, metrics, and key performance indicators for executive review
Works closely with the Lead Engineer in maintaining service‑level agreements (SLAs) to ensure that security controls are upheld
Guides, coaches, and mentors Engineers I/II in executing their tasks
Works with information security and line of business management to identify, formulate and implement information security solutions and controls and to maintain and configure security tooling
Coordinates with systems and network engineers to ensure servers and network devices conform to security standards and that security devices and controls are working as designed
Engineers security controls to protect data and systems and provide security policy guidance and consultation
Collaborates with other IT teams to focus on improving cloud and application security measures and integrate new and support existing security applications
Communicates advanced information security concepts with clients, peers, and all levels of management and vendors effectively
Requirements Education
Bachelor's Degree in Computer Science, Information Technology or any other related discipline or equivalent related experience.
Preferred Certifications
Azure Security Engineer
Certification Certified Cloud Security Professional (CCSP)
Certification in Information Security Strategy Management (CISM)
Certified Information Systems Security Professional (CISSP)
CompTIA Security + Certification Systems Security Certified Practitioner (SSCP)
Work experience
4+ years of directly‑related or relevant experience, preferably in information security.
Behavioral Skills
Critical Thinking
Detail Oriented
Impact and Influencing
Interpersonal Communication
Multitasking
Problem Solving
Technical Skills
Network Solutions and Systems
Cybersecurity
Data Security
Cloud Security
IT Risk Management
Root Cause Analysis
Information Security Strategy Standards (SOX, ISO 27001/27002, COBIT, ITIL, NIST, PCI)
Application Architecture
Threat Intelligence and Monitoring
Tools Knowledge
Microsoft Office Suite
Programming and Development Languages – JavaScript, HTML/CSS, Python, SQL
Security Tools – SIEM, EDR, Email Security Gateway, SOAR, Firewall, Anti‑virus, Firewalls, VPN IDS/IPS, AV, proxies, etc.
Employment Type Full time
Salary $88,700 - 126,940
What Cencora Offers We provide compensation, benefits, and resources that enable a highly inclusive culture and support our team members' ability to live with purpose every day. In addition to traditional offerings like medical, dental, and vision care, we also provide a comprehensive suite of benefits that focus on the physical, emotional, financial, and social aspects of wellness. This encompasses support for working families, which may include backup dependent care, adoption assistance, infertility coverage, family building support, behavioral health solutions, paid parental leave, and paid caregiver leave. To encourage your personal growth, we also offer a variety of training programs, professional development resources, and opportunities to participate in mentorship programs, employee resource groups, volunteer activities, and much more. For details, visit https://www.virtualfairhub.com/cencora
Equal Employment Opportunity Cencora is committed to providing equal employment opportunity without regard to race, color, religion, sex, sexual orientation, gender identity, genetic information, national origin, age, disability, veteran status or membership in any other class protected by federal, state or local law. The company's continued success depends on the full and effective utilization of qualified individuals. Therefore, harassment is prohibited and all matters related to recruiting, training, compensation, benefits, promotions and transfers comply with equal opportunity principles and are non‑discriminatory. Cencora is committed to providing reasonable accommodations to individuals with disabilities during the employment process which are consistent with legal requirements. If you wish to request an accommodation while seeking employment, please call 888.692.2272 or email hrsc@cencora.com. We will make accommodation determinations on a request‑by‑request basis. Messages and emails regarding anything other than accommodations requests will not be returned.
Affiliated Companies AmerisourceBergen Services Corporation
#J-18808-Ljbffr
Job Details The Engineer III - OT Security Engineer is responsible for supporting the planning, execution, and managing of multifaceted projects related to cyber, cloud, data security, risk management, mitigation and response, compliance, control assurance, and user awareness for all IT systems. Engineers III work on developing and driving security strategies, initiatives, policies/standards, ensuring the effectiveness of solutions, and providing security‑focused consultative services to the organization, and providing expertise and assistance to ensure the company's infrastructure and information assets are protected. They assist in updating, maintaining, and documenting security controls and provide direct support to the business and internal IT groups. They work directly with Lead Engineers, customers, third parties, and other internal departments and organizations to facilitate information security risk analysis and risk management processes and to identify acceptable levels of residual risk. Together with Engineers I and II, they perform security assessments, penetration testing and security attestations, monitor data security profiles, update, maintain and document security controls and provide direct support to the business and internal IT groups.
Responsibilities
Conducts proactive research to analyze security weaknesses and recommend appropriate strategies to strengthen controls
Assists on security initiatives/issues for one or more Information Security Strategy/Cybersecurity functional areas (e.g., Cyber Operations, Incident Response, Threat Intelligence, Threat Hunting, Forensics, Vulnerability Management, Data Analytics)
Assists in the development, refinement, and implementation of enterprise‑wide security policies and procedures and ensures they meet compliance responsibilities
Reviews technical/functional design documents, build, maintain and implement cybersecurity, data security, and cloud security solutions
Works on multiple projects as a key contributor and contributes to the strategic and tactical direction and consultation on cybersecurity initiatives
Interfaces with business and IT leaders communicating security issues and responding to requests for assistance and information
Supports Engineers I/II in conducting manual and automated penetration testing, vulnerability, and other security tests on software applications and assists in secure code reviews, and remediating identified programming flaws
Provides security briefings to advise on critical issues that may affect the enterprise
Gathers and analyzes reporting, metrics, and key performance indicators for executive review
Works closely with the Lead Engineer in maintaining service‑level agreements (SLAs) to ensure that security controls are upheld
Guides, coaches, and mentors Engineers I/II in executing their tasks
Works with information security and line of business management to identify, formulate and implement information security solutions and controls and to maintain and configure security tooling
Coordinates with systems and network engineers to ensure servers and network devices conform to security standards and that security devices and controls are working as designed
Engineers security controls to protect data and systems and provide security policy guidance and consultation
Collaborates with other IT teams to focus on improving cloud and application security measures and integrate new and support existing security applications
Communicates advanced information security concepts with clients, peers, and all levels of management and vendors effectively
Requirements Education
Bachelor's Degree in Computer Science, Information Technology or any other related discipline or equivalent related experience.
Preferred Certifications
Azure Security Engineer
Certification Certified Cloud Security Professional (CCSP)
Certification in Information Security Strategy Management (CISM)
Certified Information Systems Security Professional (CISSP)
CompTIA Security + Certification Systems Security Certified Practitioner (SSCP)
Work experience
4+ years of directly‑related or relevant experience, preferably in information security.
Behavioral Skills
Critical Thinking
Detail Oriented
Impact and Influencing
Interpersonal Communication
Multitasking
Problem Solving
Technical Skills
Network Solutions and Systems
Cybersecurity
Data Security
Cloud Security
IT Risk Management
Root Cause Analysis
Information Security Strategy Standards (SOX, ISO 27001/27002, COBIT, ITIL, NIST, PCI)
Application Architecture
Threat Intelligence and Monitoring
Tools Knowledge
Microsoft Office Suite
Programming and Development Languages – JavaScript, HTML/CSS, Python, SQL
Security Tools – SIEM, EDR, Email Security Gateway, SOAR, Firewall, Anti‑virus, Firewalls, VPN IDS/IPS, AV, proxies, etc.
Employment Type Full time
Salary $88,700 - 126,940
What Cencora Offers We provide compensation, benefits, and resources that enable a highly inclusive culture and support our team members' ability to live with purpose every day. In addition to traditional offerings like medical, dental, and vision care, we also provide a comprehensive suite of benefits that focus on the physical, emotional, financial, and social aspects of wellness. This encompasses support for working families, which may include backup dependent care, adoption assistance, infertility coverage, family building support, behavioral health solutions, paid parental leave, and paid caregiver leave. To encourage your personal growth, we also offer a variety of training programs, professional development resources, and opportunities to participate in mentorship programs, employee resource groups, volunteer activities, and much more. For details, visit https://www.virtualfairhub.com/cencora
Equal Employment Opportunity Cencora is committed to providing equal employment opportunity without regard to race, color, religion, sex, sexual orientation, gender identity, genetic information, national origin, age, disability, veteran status or membership in any other class protected by federal, state or local law. The company's continued success depends on the full and effective utilization of qualified individuals. Therefore, harassment is prohibited and all matters related to recruiting, training, compensation, benefits, promotions and transfers comply with equal opportunity principles and are non‑discriminatory. Cencora is committed to providing reasonable accommodations to individuals with disabilities during the employment process which are consistent with legal requirements. If you wish to request an accommodation while seeking employment, please call 888.692.2272 or email hrsc@cencora.com. We will make accommodation determinations on a request‑by‑request basis. Messages and emails regarding anything other than accommodations requests will not be returned.
Affiliated Companies AmerisourceBergen Services Corporation
#J-18808-Ljbffr