Sr Mgr - Information Security

Our team members are at the heart of everything we do. At Cencora, we are united in our responsibility to create healthier futures, and every person here is essential to us being able to deliver on that purpose. If you want to make a difference at the center of health, come join our innovative company and help us improve the lives of people and animals everywhere. Apply today!

JOB PROFILE SUMMARY

The Senior Manager of Customer & Business Partner Identity & Access Management (xIAM) is responsible for leading the strategy, design, delivery, and continuous improvement of the enterprise’s external identity platforms, supporting customers, business partners, suppliers, and third‑party users.

This role owns the CIAM and partner IAM product portfolio, including customer identity, partner federation, external authentication, authorization, and identity lifecycle services, enabling secure, scalable, and frictionless access to digital channels, applications, APIs, and platforms.

Operating within an agile, product‑based delivery model, the Senior Manager defines the xIAM product vision, roadmap, and success metrics aligned to digital growth, zero trust, privacy‑by‑design, and regulatory compliance. The role partners closely with application development, digital product teams, cloud engineering, cybersecurity, legal, privacy, and business stakeholders to embed identity into customer and partner experiences without introducing unnecessary friction.

The Senior Manager leads a cross‑functional team of product managers, architects, and engineers, and manages strategic vendor relationships. Preference is given to candidates with demonstrated experience in SAP Customer Data Cloud (CDC) and Okta, including federated partner identity models.

Our employee experience is a strategic priority for our company. Our leaders are accountable for leading with purpose, fairness, and equity. They are responsible for building and developing diverse teams, maintaining a safe and inclusive environment, setting clear priorities, and holding self and team accountable for executing with excellence.

PRIMARY DUTIES AND RESPONSIBILITIES:

xIAM Product Strategy & Ownership

• Owns the enterprise xIAM product portfolio, including CIAM and business partner identity platforms, defining product vision, roadmap, and outcome‑based success metrics

  
  

• Leads strategy for customer identity, partner federation, external authentication, consent, profile management, and authorization capabilities

  
  

• Establishes platform guardrails and standards for customer and partner identity, including identity assurance, MFA, adaptive authentication, and authorization patterns

  
  

• Balances security, privacy, and regulatory requirements with customer experience, partner usability, and digital growth objectives

  
  

Agile Product Delivery & Operations

• Operates xIAM platforms using an agile, product‑centric delivery model, including roadmap planning, backlog prioritization, dependency management, and measurable outcomes

  
  

• Leads internal teams and managed service providers responsible for build, run, and continuous improvement of CIAM and partner IAM capabilities

  
  

• Oversees platform reliability, performance, availability, incident response, and operational resilience for external identity services

  
  

• Ensures xIAM services scale to support high‑volume consumer traffic and partner ecosystems

  
  

Security, Risk & Compliance

• Leads identity‑centric risk analysis related to external identities, defining acceptable residual risk in collaboration with cybersecurity, legal, and privacy teams

  
  

• Develops and enforces xIAM policies, standards, and controls, aligned with frameworks such as NIST, Zero Trust, and privacy‑by‑design principles

  
  

• Ensures compliance with privacy, consent, and data protection obligations applicable to customer and partner identities

  
  

• Supports audit readiness and evidence collection related to external identity controls

  
  

Architecture, Integration & Enablement

• Partners with application, digital, API, and cloud teams to embed xIAM capabilities into customer‑facing and partner‑integrated solutions

  
  

• Governs integration patterns including OIDC, OAuth, SAML, API identity, federation, and delegated authorization

  
  

• Ensures alignment between xIAM platforms and adjacent capabilities such as API gateways, IGA, PAM, fraud detection, and analytics

  
  

• Enables secure, reusable identity patterns that accelerate application delivery

  
  

Leadership & Organizational Accountability

• Manages and develops a high‑performing xIAM product and engineering team

  
  

• Drives a culture of product ownership, automation, resilience, and continuous improvement

  
  

• Participates in goal/KPI definition, budget planning, vendor strategy, and workforce planning for the xIAM domain

  
  

• Communicates xIAM posture, roadmap progress, and risk insights to senior leaders and stakeholders

  
  

WORK EXPERIENCE:

• 7+ years of experience in identity, security, digital platforms, or customer IAM

  
  

• 3+ years in a senior leadership or managerial role leading product, engineering, or platform teams

  
  

• Demonstrated experience operating platforms using agile or product‑based delivery models

  
  

• Experience supporting high‑scale external identity populations (customers, partners, suppliers)

  
  

SKILLS & KNOWLEDGE:

Behavioral Skills:

• Product Ownership and Outcome‑Driven Leadership

  
  

• Coaching, Mentoring, and Talent Development

  
  

• Stakeholder Influence Across Business, Legal, and Technology

  
  

• Strategic Thinking and Business Acumen

  
  

• Executive‑Level Communication

  
  

• Accountability and Continuous Improvement Mindset

  
  

Technical Skills:

• Customer Identity & Access Management (CIAM)

  
  

• Business Partner / B2B Identity & Federation

  
  

• Authentication & Identity Assurance (SSO, MFA, adaptive auth)

  
  

• Authorization Models (roles, policies, scopes, claims)

  
  

• Privacy, Consent, and Data Protection Controls

  
  

• Identity Security and Zero Trust Principles

  
  

Tools Knowledge:

• SAP Customer Data Cloud (CDC)

  
  

• Okta (Workforce and CIAM / B2B)

  
  

• OAuth 2.0, OpenID Connect, SAML

  
  

• API Gateways and Identity‑Aware Proxies

  
  

• SIEM, fraud detection, and analytics integrations

  
  

• ITSM and service delivery tooling (e.g., ServiceNow)

  
  

• Reporting and KPI dashboards

  
  

• Microsoft Office Suite

  
  

.

EDUCATIONAL QUALIFICATIONS:
Education:
Master’s Degree in Business Administration, Computer Science, Information Technology or any other related discipline or equivalent related experience.
Preferred Certifications:
• Certified Information Systems Auditor (CISA)
• Certified Information Systems Security Professional (CISSP)
• Certification in Information Security Strategy Management (CISM)
• Information Technology Infrastructure Library (ITIL)
• Offensive Security Certified Professional (OSCP)

• Project Management Professional (PMP) Certification

WORK EXPERIENCE:
• 7+ years of directly-related or relevant experience with 3+ years in a managerial capacity, preferably in information security.

SKILLS & KNOWLEDGE:
Behavioral Skills:
• Coaching and Mentoring
• Conflict Resolution
• Critical Thinking
• Multitasking
• People Management
• Planning
• Presentation Skills

Technical Skills:
• IT Risk Management
• IT Controls
• Cyber Attack Mitigation
• Information Security Strategy Standards (SOX, ISO 27001/27002, COBIT, ITIL, NIST, PCI)
• Enterprise Architecture
• Network Security
• Service Level Maintenance
• Threat Modelling

Tools Knowledge:
• Microsoft Office Suite
• Security Tools - SIEM, EDR, Email Security Gateway, SOAR, Firewall, Anti-virus, Firewalls, VPN IDS/IPS, AV, proxies, etc.
• Security Testing Tools - Open Source and COTS security tools
• Threat Intelligence Tools
• Vulnerability Testing Tools

​Benefit offerings outside the US may vary by country and will be aligned to local market practice. The eligibility and effective date may differ for some benefits and for team members covered under collective bargaining agreements.

Cencora is committed to providing equal employment opportunity without regard to race, color, religion, sex, sexual orientation, gender identity, genetic information, national origin, age, disability, veteran status or membership in any other class protected by federal, state or local law.

The company’s continued success depends on the full and effective utilization of qualified individuals. Therefore, harassment is prohibited and all matters related to recruiting, training, compensation, benefits, promotions and transfers comply with equal opportunity principles and are non-discriminatory.

Cencora is committed to providing reasonable accommodations to individuals with disabilities during the employment process which are consistent with legal requirements. If you wish to request an accommodation while seeking employment, please call 888.692.2272 or email hrsc@cencora.com. We will make accommodation determinations on a request-by-request basis. Messages and emails regarding anything other than accommodations requests will not be returned