AmerisourceBergen Corporation
Lead Architect - Cyber Defense
AmerisourceBergen Corporation, Conshohocken, Pennsylvania, us, 19429
At Cencora, our team members play a pivotal role in our mission to create healthier futures. We invite you to join our dedicated and innovative company where you can make a significant impact on the lives of people and animals. If you are passionate about cybersecurity and want to help us safeguard our systems, we encourage you to apply today!
Key Responsibilities:
Analyze emerging trends and changes in the threat landscape to advise management on risk mitigation strategies and oversee compliance self-assessments. Lead the response to security incidents, managing investigations and recovery from attacks or breaches, while coordinating with external incident responders. Recommend and implement security controls throughout the acquisition and development lifecycles of information systems. Provide technical leadership for complex projects and ensure adherence to security measures across the organization. Plan and execute upgrades to security systems to enhance protection of information and networks. Develop methodologies for monitoring and responding to security incidents, assisting in remediation efforts. Guide network and system administrators in improving infrastructure and automation for enhanced security. Offer mentoring and support to ISO Engineers in their daily tasks and responsibilities. Ensure compliance with service-level agreements (SLAs) regarding security controls. Implement enterprise-wide security policies, procedures, and standards across various platforms. Communicate effectively with IT and business leaders regarding security issues and assistance requests. Formulate and enforce security policies and standards to meet regulatory compliance. Collaborate with technical executives to design and implement effective security systems. Review technical documents to ensure compliance with cybersecurity, data security, and cloud security standards. Advise on the business impact of changes to the security environment. Provide briefings on critical security issues affecting the enterprise. Analyze metrics and KPIs for executive review. Monitor cyber threats and vulnerabilities relevant to the company's infrastructure and products. Work with management to implement effective information security solutions and maintain security systems. Coordinate with engineers to ensure compliance with security standards. Communicate advanced security concepts to clients, peers, and management effectively. Research and deploy tools for Cyber Operations, Threat Hunting, Vulnerability Management, and various security domains. Respond to alerts and incidents, escalating critical situations as necessary. Serve as a subject matter expert for product development teams, collaborating with software engineers and management. Educational Background: Bachelor's Degree in Computer Science, Information Technology, or a related field, or equivalent experience. Preferred Certifications: Azure Security Engineer Certification Certified Cloud Security Professional (CCSP) Certification in Information Security Strategy Management (CISM) Certified Information Systems Security Professional (CISSP) CompTIA Security + Certification Systems Security Certified Practitioner (SSCP) Experience: 8+ years of relevant experience in information security. Skills and Knowledge: Behavioral Skills: Conflict Resolution Creativity & Innovation Decision Making Assertiveness Influencing Skills Planning Presentation Skills Risk-taking Technical Skills: Network Solutions and Systems Cybersecurity Root Cause Analysis Information Security Standards (SOX, ISO 27001/27002, COBIT, ITIL, NIST, PCI) Advanced Encryption Application Architecture Identity and Access Management IT Risk Management Threat Modelling Tools Knowledge: Microsoft Office Suite Programming Languages - JavaScript, HTML/CSS, Python, SQL Security Tools - SIEM, EDR, Email Security Gateway, SOAR, Firewall, Anti-virus, VPN IDS/IPS, AV, proxies, etc. What We Offer:
We provide competitive compensation, benefits, and resources that foster an inclusive culture. Our offerings include medical, dental, and vision care, along with comprehensive wellness benefits, and support for working families. We encourage personal growth through various training programs, professional development resources, and opportunities for mentorship, volunteer activities, and more. Equal Employment Opportunity:
Cencora is committed to equal employment opportunity and does not discriminate based on race, color, religion, sex, sexual orientation, gender identity, genetic information, national origin, age, disability, veteran status, or any other protected class. We prohibit harassment and ensure that all recruitment, training, compensation, benefits, promotions, and transfers comply with equal opportunity principles. If you require accommodations during the employment process due to a disability, please reach out to our HR team. We will ensure accommodations are handled promptly and respectfully. Affiliated Companies:
Affiliated Companies: AmerisourceBergen Services Corporation
Analyze emerging trends and changes in the threat landscape to advise management on risk mitigation strategies and oversee compliance self-assessments. Lead the response to security incidents, managing investigations and recovery from attacks or breaches, while coordinating with external incident responders. Recommend and implement security controls throughout the acquisition and development lifecycles of information systems. Provide technical leadership for complex projects and ensure adherence to security measures across the organization. Plan and execute upgrades to security systems to enhance protection of information and networks. Develop methodologies for monitoring and responding to security incidents, assisting in remediation efforts. Guide network and system administrators in improving infrastructure and automation for enhanced security. Offer mentoring and support to ISO Engineers in their daily tasks and responsibilities. Ensure compliance with service-level agreements (SLAs) regarding security controls. Implement enterprise-wide security policies, procedures, and standards across various platforms. Communicate effectively with IT and business leaders regarding security issues and assistance requests. Formulate and enforce security policies and standards to meet regulatory compliance. Collaborate with technical executives to design and implement effective security systems. Review technical documents to ensure compliance with cybersecurity, data security, and cloud security standards. Advise on the business impact of changes to the security environment. Provide briefings on critical security issues affecting the enterprise. Analyze metrics and KPIs for executive review. Monitor cyber threats and vulnerabilities relevant to the company's infrastructure and products. Work with management to implement effective information security solutions and maintain security systems. Coordinate with engineers to ensure compliance with security standards. Communicate advanced security concepts to clients, peers, and management effectively. Research and deploy tools for Cyber Operations, Threat Hunting, Vulnerability Management, and various security domains. Respond to alerts and incidents, escalating critical situations as necessary. Serve as a subject matter expert for product development teams, collaborating with software engineers and management. Educational Background: Bachelor's Degree in Computer Science, Information Technology, or a related field, or equivalent experience. Preferred Certifications: Azure Security Engineer Certification Certified Cloud Security Professional (CCSP) Certification in Information Security Strategy Management (CISM) Certified Information Systems Security Professional (CISSP) CompTIA Security + Certification Systems Security Certified Practitioner (SSCP) Experience: 8+ years of relevant experience in information security. Skills and Knowledge: Behavioral Skills: Conflict Resolution Creativity & Innovation Decision Making Assertiveness Influencing Skills Planning Presentation Skills Risk-taking Technical Skills: Network Solutions and Systems Cybersecurity Root Cause Analysis Information Security Standards (SOX, ISO 27001/27002, COBIT, ITIL, NIST, PCI) Advanced Encryption Application Architecture Identity and Access Management IT Risk Management Threat Modelling Tools Knowledge: Microsoft Office Suite Programming Languages - JavaScript, HTML/CSS, Python, SQL Security Tools - SIEM, EDR, Email Security Gateway, SOAR, Firewall, Anti-virus, VPN IDS/IPS, AV, proxies, etc. What We Offer:
We provide competitive compensation, benefits, and resources that foster an inclusive culture. Our offerings include medical, dental, and vision care, along with comprehensive wellness benefits, and support for working families. We encourage personal growth through various training programs, professional development resources, and opportunities for mentorship, volunteer activities, and more. Equal Employment Opportunity:
Cencora is committed to equal employment opportunity and does not discriminate based on race, color, religion, sex, sexual orientation, gender identity, genetic information, national origin, age, disability, veteran status, or any other protected class. We prohibit harassment and ensure that all recruitment, training, compensation, benefits, promotions, and transfers comply with equal opportunity principles. If you require accommodations during the employment process due to a disability, please reach out to our HR team. We will ensure accommodations are handled promptly and respectfully. Affiliated Companies:
Affiliated Companies: AmerisourceBergen Services Corporation