Analyst II - IAM Hygiene

Our team members are at the heart of everything we do. At Cencora, we are united in our responsibility to create healthier futures, and every person here is essential to us being able to deliver on that purpose. If you want to make a difference at the center of health, come join our innovative company and help us improve the lives of people and animals everywhere. Apply today!

• Assists in Information security assessments, and runs security analysis reports using security tools
• Reviews and responds to security alerts and incidents and identifies their root causes
• Analyzes business processes and business requirements to determine conformance to security policies and procedures
• Assists in the delivery of security awareness and compliance training programs
• Assists in the development of processes and procedures for the information security governance program, including control document reviews, participant assessment preparation, meeting coordination, assessment finding mediation, assisting control owner with remediation plan development, progress monitoring, reporting and escalation
• Assists in business impact analysis (BIA) to ensure resources are adequately protected with proper security measures
• Follows up on deficiencies identified in monitoring reviews, self-assessments, automated assessments, and internal and external audits to ensure that appropriate remediation measures have been taken
• Updates and maintains documentation for a global risk framework
• Guides, mentors and coaches Analyst I in departmental processes and procedures
• Reports concerning residual risk, vulnerabilities, and other security exposures, including misuse of information assets and non-compliance to management
• Guides users on the usage and administration of security tools that control and monitor information security
• Provides security support for application- and infrastructure-related projects to ensure that security issues are addressed throughout the project life cycle
• Analyzes security analysis reports for security vulnerabilities and recommends feasible remediation options
• Performs security monitoring and live forensic investigations of suspect areas to uncover possible security violations
• Proposes improvements and assists in the implementation of enterprise-wide security policies, procedures, and standards to meet compliance responsibilities
• Assists in the implementation of information security continuity and disaster recovery test plans
• Captures, maintains, and monitors information security risk in one repository and generate ad-hoc and routine reports
• Participates in incident response exercises and leverage the lessons learnt to respond to service issues, problems, andcritical situations ensuring resolution and minimal downtime

.

EDUCATIONAL QUALIFICATIONS:
Education:
Bachelor’s Degree in Computer Science, Information Technology or any other related discipline or equivalent related experience.

Preferred Certifications:
• Certified Cloud Security Professional (CCSP)
• Certification in Information Security Strategy Management (CISM)
• Certified Information Systems Security Professional (CISSP)
• CompTIA Security + Certification
• Systems Security Certified Practitioner (SSCP)
• TS-SCI Security Clearance Certification

WORK EXPERIENCE:
• 2+ years of directly-related or relevant experience, preferably in information security.

SKILLS & KNOWLEDGE:
Behavioral Skills:
• Critical Thinking
• Detail Oriented
• Interpersonal Communication
• Learning Agility
• Problem Solving

• Multitasking

Technical Skills:
• Cybersecurity
• Data Analysis
• Information Security Strategy Standards (SOX, ISO 27001/27002, COBIT, ITIL, NIST, PCI)
• IT Risk Management
• Network Solutions and Systems
• Programming and Development
• Reporting and Analysis
• Root Cause Analysis
• Threat Intelligence and Monitoring

Tools Knowledge:
• Microsoft Office Suite
• Programming and Development Languages - JavaScript, HTML/CSS, Python, SQL
• Security Tools - SIEM, EDR, Email Security Gateway, SOAR, Firewall, Anti-virus, Firewalls, VPN IDS/IPS, AV, proxies, etc.

​Benefit offerings outside the US may vary by country and will be aligned to local market practice. The eligibility and effective date may differ for some benefits and for team members covered under collective bargaining agreements.

Cencora is committed to providing equal employment opportunity without regard to race, color, religion, sex, sexual orientation, gender identity, genetic information, national origin, age, disability, veteran status or membership in any other class protected by federal, state or local law.

The company’s continued success depends on the full and effective utilization of qualified individuals. Therefore, harassment is prohibited and all matters related to recruiting, training, compensation, benefits, promotions and transfers comply with equal opportunity principles and are non-discriminatory.

Cencora is committed to providing reasonable accommodations to individuals with disabilities during the employment process which are consistent with legal requirements. If you wish to request an accommodation while seeking employment, please call 888.692.2272 or email hrsc@cencora.com. We will make accommodation determinations on a request-by-request basis. Messages and emails regarding anything other than accommodations requests will not be returned