Architect I - Information Security

Responsibilities:

• Collaborates with Information Security Strategy Engineers and Analysts for designing, building, and implementing small to medium-scale information security solutions

• Identifies key enterprise information security initiatives and capability gaps and assists in closing those gaps

• Collaborates with other security architects and leaders to ensure security is integrated into all parts of the business

• Provides Information Security Strategy architecture perspectives to other Analysts, and Engineers in identifying the root cause of security violations

• Assists in analyzing root cause for technical issues, and in designing and putting measures and methods to mitigate future occurrences i.e., system and process improvement to prevent the reoccurrence of problems

• Performs security architecture reviews, and ensures alignment to all regulatory and security standard methodologies

• Prioritizes architectural needs and solutions with senior architects and other senior executives and ensures they are in line with, criticality, feasibility, and Information Security Strategy

• Responds to service issues, problems, and critical situations to support the resolution and minimize downtime

• Responds to investigations into security-related events and provides a thorough post-event analysis for senior management

• Assists in maintaining the integrity of the current and proposed architectures to assure quality, consistency, and adherence to established standards

• Supports in documenting and presenting risks and security issues that could impact the confidentiality, integrity, and availability of the business both internally and externally

• Provides ongoing analysis of existing security solutions for effectiveness and efficiency

• Assists in developing strategies to improve and enhance the Information Security Strategy solutions

• Collaborates with the other security architects and supporting data & process architect/team members in getting all areas of security segment architectures established, roadmaps developed, documented appropriately, and formally agreed with stakeholders and IT leadership

Education and work experience:

• Bachelor’s Degree in Computer Science, Information Technology or any other related discipline or equivalent related experience.

• 5 or more years of combined IT and security work experience with a broad range of exposure to systems analysis, application development, systems administration and over fi ve years of experience designing and deploying security for Business products and services and Enterprise solutions at the enterprise level.

• Azure Security Engineer Certification

• Certified Cloud Security Professional (CCSP)

• Certification in Information Security Strategy Management (CISM)

• Certified Information Systems Security Professional (CISSP)

• CompTIA Security + Certification

• Systems Security Certified Practitioner (SSCP)

• TS-SCI Security Clearance Certification

• Preferred Certifi cation in one or more Information Security relevant areas such as Audit (CISA), Security Management (CISM), Security Professional (CISSP), Cloud Security (CCSP, CCSK, AZ500)

Skills and knowledge:

• Experience with evaluating and implementing security controls as related to Cloud based services including SaaS, PaaS, IaaS.

• Requires in-depth knowledge of security issues, techniques and implications across all existing computer platforms.

• Strong computer skills to operate effectively with company systems and programs; working knowledge of applicable computer applications used at ABC

• Working knowledge of network solutions and systems

• Good analytical and problem-solving skills

• Ability to communicate effectively both orally and in writing

• Good interpersonal skills

• Ability to prioritize workload and consistently meet deadlines

• Strong organizational skills; attention to detail

• Ability to lead and provide direction to project/product teams

• Strong consultative skills: ability to interface effectively with technical and non-technical leaders.

• Understands Information Security as it relates to the business and other areas of IT; understands direct impacts and risks.

• Demonstrated sound understanding of at least 3 of the following control frameworks such as ISO 27001/27002, HITRUST, PCI, NIST, GDPR and PCI

• Business experience in a matrix Organization required

• Application Architecture

• Cybersecurity

•  Identity and Access Management

• Enterprise Architecture

• Information Security Strategy Standards (SOX, ISO 27001/27002, COBIT, ITIL, NIST, PCI)

• IT Risk Management

•  Network Solutions and Systems

• Software Development Life Cycle (SDLC)

• Threat Modelling

• Security and Compliance Frameworks (i.e. CCM, NIST 800-53, CIS)

• Microsoft Office Suite

• Programming and Development Languages - JavaScript, HTML/CSS, Python, SQL

• Security Tools - SIEM, EDR, Email Security Gateway, SOAR, Firewall, Anti-virus, Firewalls, VPN IDS/IPS, AV, proxies, etc.

Salary: 6,881 - 7,000 eur gross

What Cencora offers

We offer a competitive annual bonus, life insurance from Day 1, a best-in-class health insurance package, and up to 6 fully paid benefit days a year. As a Cencora employee, you have the benefit of our referral bonus scheme, our boundless learning opportunities and our global Employee Assistance Program. We have a wonderful office location in Quadrum, equipped with everything you need for a small break at work and fresh snacks at all times. Become part of our purpose-driven, multicultural team now and help us create healthier futures

Affiliated Companies: