Sr. Engineer, Cyber Security

What Cyber Security contributes to Cardinal Health?

Information Security is responsible for managing information security operations.  We exist to ensure availability, integrity and confidentiality of healthcare infrastructure that safeguards the patient.  We promote a culture that protects information assets, manages risk and embeds security in people, process and technology

Job Description

The Threat Operations Sr. Engineer leads the tactical and strategic defense of Cardinal Health information, assets, and operations across the enterprise.  Job responsibilities include but are not limited to: Data analytics, Threat and Vulnerability research, security operations enrichment, High fidelity correlation and alert development, Intelligence extraction and dissemination, defensive strategy development, and thought leadership.

 What is expected of you and others at this level

  • High performing team member related to planning, development and execution of Threat Operations program initiatives
  • Execution in alignment with fiscal year goals for Cyber Security, IT and the business
  • Applies comprehensive knowledge and a thorough understanding of concepts, principles and technical capabilities related to threat intelligence framework and methodologies, as well as the vulnerability lifecycle.
  • Develops and implements innovative solutions to a wide range of difficult problems.
  • Provide diverse thought and promote an inclusive environment
  • Completes work independently; receives general guidance on new projects
  • May act as a mentor to less experienced colleagues

Accountabilities in this role

  • Performs research on vulnerabilities and exploitation tactics.
  • Collaborates extensively with other teams within Cardinal Health to provide threat and vulnerability intelligence data to enrich processes and playbooks
  • Regular communication with leadership on trending vulnerabilities and threat actors activity
  • Recommend preventative or defensive actions based on research 
  • Driving automation efforts for the benefit of security and threat operations
  • Presents data findings and influence organizational partners at multiple levels in the organization
  • Establishes metrics, dashboards, and reporting to support the program and influence behaviors
  • Acts as a liaison with solution owners and IT groups to ensure strategy alignment
  • Driving control improvements to improve security posture

Required Qualifications:

  • Experience in Engineering/IT Operations, Security Operations, or Vulnerability Management
  • Proved experience working with SIEM and SOAR toolsets
  • Proven experience automating manual tasks
  • Experience with Cloud Environments - GCP, AWS, Azure
  • Solid understanding and knowledge of vulnerability management, methodologies, and security attack vectors
  • Experience leading and managing complex enterprise-level projects
  • The ability to assemble and lead virtual teams to drive remediation and to work collaboratively with others to accomplish goals

Preferred Qualifications:

  • Previous leadership experience
  • Solid understanding of detection engineering, pentesting, or threat modeling.
  • Familiarity with Cybersecurity Risk Management Frameworks
  • Relevant industry certifications

Cardinal Health is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law.