Cyber Security Operations and Incident Response Manager

​This role is responsible for planning, executing, and managing multi-faceted projects related to information security. Managers are focused on developing and driving security strategies, and policies/standards, ensuring the effectiveness of solutions and providing security-focused consultative services to the organization. They provide expertise and assistance to ensure the company’s infrastructure and information assets are protected. They work on security initiatives/issues for Information Security functional area of responsibility. They work directly with the customers, third parties and other internal departments and organizations to facilitate information security risk analysis and risk management processes and to identify acceptable levels of residual risk. They also communicate and educate IT organization and the business about Information Security policies and industry standards and provide solutions for enterprise/service security issues and are responsible for driving the Information Security team focused on protecting businesses. Our employee experience is a strategic priority for our company. Our leaders are accountable for leading with purpose, fairness, and equity. They are responsible for building and developing diverse teams, maintaining a safe and inclusive environment, setting clear priorities, and holding self and team accountable for executing with excellence.

Responsibilities:

• You will be a pivotal member of our global cybersecurity team.

• This role will involve providing strategic oversight, leadership, and management of security operations, events and incidents in complex business and IT environments.

• You will leverage your extensive technical competence and prior professional experience to manage a diverse remote team and contribute to Cencora’s security strategy and roadmap while maintaining excellent level of communications at both staff and executive levels.

• Manage a team of associates, onsite and offsite contractors, and Managed Security Service Providers (MSSPs) to ensure timely detection, investigation, and resolution of security events and incidents

• Act as an Incident Commander during critical cyber event and incident investigations, coordinate tasks and resources as necessary to ensure swift incident containment and eradication

• Provide timely and concise incident notifications and reports for senior leadership

• Plan and execute postmortem exercises, with a focus on creating measurable benchmarks to show progress and identifying deficiencies

• Continuously evaluate and enhance security protocols to ensure the highest level of protection against emerging threats

• Collaborate with various stakeholders, including IT, legal, and compliance teams, to ensure alignment and support for security initiatives

• Develop and maintain metrics to track performance and provide regular reports to management

• Providing guidance, coaching, and feedback to promote a positive team culture and support career growth

• Partner with the security engineering team to improve tool usage and workflow to mature monitoring and response capabilities

Requirements:

• Bachelor’s degree in computer science, Information Technology, related discipline or equivalent work experience

• Master’s degree in cybersecurity or a related field will be a plus

Minimum skills required:

• At least 7+ years of information security monitoring and response or related experience

• 2+ years of experience as a team lead or manager

• Experience managing a 24x7 security operations and people, including technical staff

• Proficiency with incident response tools and technologies (e.g., SIEM, EDR, SOAR).

• Experience with Unix/Linux/Windows Operating Systems

• Familiarity with security frameworks such as NIST, ISO 27001, etc.

• Experience with securing cloud environments (e.g., AWS, Azure, Google Cloud).

• Excellent written and verbal communication skills, with experience presenting technical information to both technical and non-technical audiences

• Strong leadership and team management skills.

• Coaching and Mentoring

• Quick and Critical Thinking

• Detail Oriented

• People and Stakeholder Management

• IT Risk Management

• Cyber Attack Mitigation

• Threat Modelling

• Security Tools - SIEM, EDR, Email Security Gateway, SOAR, Firewall,

• Anti-virus, VPN IDS/IPS, AV, proxies, etc.

• Additional languages such as Spanish, German, French will be a plus

• Knowledge of programming or scripting languages (e.g., Python, PowerShell) for automation and tool development

Certifications (nice to have):

• Certified Information Systems Auditor (CISA)

• Certified Information Systems Security Professional (CISSP)

• Certification in Information Security Strategy Management (CISM)

• Information Technology Infrastructure Library (ITIL)

• Offensive Security Certified Professional (OSCP)

• Project Management Professional (PMP) Certification

• TS-SCI Security Clearance Certification

Salary:  6,881 -  9,831 eur gross

What Cencora offers

We offer a competitive annual bonus, life insurance from Day 1, a best-in-class health insurance package, and up to 6 fully paid benefit days a year. As a Cencora employee, you have the benefit of our referral bonus scheme, our boundless learning opportunities and our global Employee Assistance Program. We have a wonderful office location in Quadrum, equipped with everything you need for a small break at work and fresh snacks at all times. Become part of our purpose-driven, multicultural team now and help us create healthier futures

Affiliated Companies: