Cybersecurity Engineering Senior Manager SIEM

Summary:

This role is responsible for managing a team responsible for planning, executing, and managing multi-faceted projects related to Information Security and implementing controls to protect internal information and information provided by third parties. Senior Managers are focused on developing and driving security strategies, and policies/standards, ensuring the effectiveness of solutions and providing security-focused consultative services to the organization. They are deeply involved in helping the organization improve security planning and helping design and implement Information Security programs that can keep pace with the ever-changing threat landscape and evolve in sync with the latest technology/protocols. They work directly with the customers, third parties and other internal departments and organizations to facilitate Information Security risk analysis and risk management processes and to identify acceptable levels of residual risk. They also communicate and educate IT organization and the business about Information Security policies and industry standards and provide solutions for enterprise/service security issues and are responsible for driving the Information Security team focused on protecting businesses.

Our employee experience is a strategic priority for our company. Our leaders are accountable for leading with purpose, fairness, and equity. They are responsible for building and developing diverse teams, maintaining a safe and inclusive environment, setting clear priorities, and holding self and team accountable for executing with excellence.

Primary Duties and Responsibilities:

• We are seeking an experienced Cybersecurity Senior Manager to lead our organization’s efforts in developing and maintaining robust analytical platforms for advanced and custom threat detection and prevention

• This leader will oversee SIEM and UEBA platform engineering and delivery of Security Orchestration and Automated Response (SOAR) services to incident response personnel as well as operational monitoring of these critical services

• A successful leader will maintain a focus on innovation, collaboration, and continuous improvement to ensure engineering and automation services effectively support our partners in Cybersecurity Operations and Business Application Security

• Define Strategy - Develop and implement strategies for delivery of SOAR services to drive incident response efficiency

• Work with partner functions to ensure overall operations and lifecycle management of SIEM, UEBA, and SOAR platforms align with overall organizational strategy and goals

• Team Leadership - Manage teams of SIEM and UEBA Engineers, SOAR developers, and operational support personnel, fostering a culture of continuous improvement by encouraging team members to share ideas, learn from each other, and strive for excellence in their work

• Drive Change - Identify and remediate issues with service performance, configuration, integrations, availability

• Identify opportunities to automate incident response work to reduce incident response burden

• Socialize issues with stakeholders and drive changes to improve organizational security posture

• Collaboration - Work with key stakeholders, such as project managers, security analysts, and leadership to ensure that services and deliverables align with organizational goals and objectives

• Partnerships of particular importance will include: Cyber Incident Response Team (CIRT), Threat Intelligence TI), Security Architecture

• Industry Research, Analysis, Recommendations - Continuously monitor industry trends, emerging technologies, and leading platforms and solutions related to cyber analytics services and SOAR services

• Identify opportunities to improve service performance as well as offer new features and technologies that improve security posture and support organizational cybersecurity strategy

• Reporting - Provide regular progress updates and reports to leadership, highlighting key achievements, challenges, and areas for improvement for SOAR, analytics platforms, and platform operations

• Budgeting and Expense Management- Develop business cases for new initiative proposals and budget planning

• Manage service and initiative budget (expense reports, service invoices, accruals, forecasting)

• Provide support to partner functions to support audits and compliance objectives•

• Managing Work, Projects, and Policies

• Generates and provides accurate and timely results in the form of reports, presentations, etc

• Analyzes information and evaluates results to choose the best solution and solve problems

• Develops specific goals and plans to prioritize, organize, and accomplish work

• Sets and tracks goal progress for self and others

• Monitors the work of others to ensure it is completed on time and meets expectations

• Provides direction and assistance to other organizational units’ policies and procedures, and efficient control and utilization of resources

• Creates a team environment that encourages accountability, high standards, and innovation

• Leads specific team while assisting with meeting or exceeding department goals

• Makes sure others understand performance expectations

• Ensures that goals are being translated to the team as they relate to tracking and productivity

• Creates and nurtures an environment that emphasizes motivation, empowerment, teamwork, continuous improvement and a passion for providing service

• Understands employee and develops plans to address need areas and expand on the strengths, Conducting Human Resources Activities.

• Acts proactively when dealing with employee concerns

• Establishes and maintains open, collaborative relationships with employees

• Uses problem solving methodology for decision making and follow up

Education:

• Bachelor's degree in computer science, Information Technology, Cybersecurity or other related discipline or equivalent related experience

Work Experience:

• 10+ years of directly related or relevant experience, preferably in information security and the IT Infrastructure operations

• Experience designing enterprise security 3-tier solution

• Developed and executed transition plan for SIEM/SOAR/UEBA solution; managed all aspects of SIEM including data sources, use cases, platform configuration, integrations and regulatory compliance

• Service and Vendor Management

Behavioral Skills:

• Strong Written and Oral Communications

• Ability to Collaboration across multifunctional teams

• Creativity & Innovation

• Planning and Decision Making

• Ability to navigate complex organizations and work within a matrix reporting structure

Technical Skills:

• Expertise of SIEM/SOAR/UEBA technologies   

• Deep understanding of Network Security, Solutions and Systems

• Application Architecture Design

• Threat Modelling

• Integration Design and Testing

• Cybersecurity Engineering

• Root Cause Analysis

• IT Risk Management

Preferred Certifications:

• Certified Information Systems Security Professional (CISSP)

• Systems Security Certified Practitioner (SSCP)

• Azure Security Engineer Certification

• Certified Cloud Security Professional (CCSP)

Tools Knowledge:

• Security Tools: Securonix UDS, MS Sentinel, Splunk, NXLog, ServiceNow SecOps, ManageEngine Event Log Analyzer, Anomali

• Productivity Tools: Microsoft Office Suite including Visio, JIRA, Confluence, ServiceNow

• Operating Systems: MS Window 10, MS Windows Server 2012+, Redhat/SLES/Ubuntu/CentOS/Oracle Linux, MAC OS Sonoma +

What Cencora offers

We provide compensation, benefits, and resources that enable a highly inclusive culture and support our team members’ ability to live with purpose every day. In addition to traditional offerings like medical, dental, and vision care, we also provide a comprehensive suite of benefits that focus on the physical, emotional, financial, and social aspects of wellness. This encompasses support for working families, which may include backup dependent care, adoption assistance, infertility coverage, family building support, behavioral health solutions, paid parental leave, and paid caregiver leave. 

To encourage your personal growth, we also offer a variety of training programs, professional development resources, and opportunities to participate in mentorship programs, employee resource groups, volunteer activities, and much more.

For details, visit https://www.virtualfairhub.com/cencora

Schedule

Affiliated Companies

Equal Employment Opportunity

Cencora is committed to providing equal employment opportunity without regard to race, color, religion, sex, sexual orientation, gender identity, genetic information, national origin, age, disability, veteran status or membership in any other class protected by federal, state or local law.

The company’s continued success depends on the full and effective utilization of qualified individuals. Therefore, harassment is prohibited and all matters related to recruiting, training, compensation, benefits, promotions and transfers comply with equal opportunity principles and are non-discriminatory.

Cencora is committed to providing reasonable accommodations to individuals with disabilities during the employment process which are consistent with legal requirements. If you wish to request an accommodation while seeking employment, please call 888.692.2272 or email hrsc@cencora.com. We will make accommodation determinations on a request-by-request basis. Messages and emails regarding anything other than accommodations requests will not be returned