What Information Security contributes to Cardinal Health
Information Security is responsible for managing information security operations
Drives information security initiatives through system development life cycles
Defines solutions that balance information security requirements against business needs
Participates in identifying, classifying threats and malware
What is expected of you and others at this level?
Contributes to the development of policies and procedures related to threat operations
Works on complex projects of large scope domestically and internationally
Develops technical solutions to a wide range of difficult problems. Solutions are innovative and consistent with organizational goals
Continues to develop a threat management process to increase Cardinal Health enterprise security posture
Works to create automation and orchestration solutions to assist with threat operations
Provides general guidance on new projects and tasks
Acts as a mentor to less experienced colleagues
Accountabilities in this role
Drives information security initiatives through system development life cycles
Defines solutions that balance information security requirements against business needs
Participates in identifying, classifying threats and malware in related healthcare sectors
Presents data findings and influences organizational partners at multiple levels in the organization
Establishes metrics and reporting to support the program and influence behaviors
Acts as a liaison with solution owners and IT (Information Technology) groups to ensure strategy alignment
Possesses strong written and oral interpersonal skills
Required Qualifications – any combination of the following:
Bachelors in related field or equivalent work experience
Familiarity with Threat Modeling, Kill Chain, Mitre, and attack lifecycles
Familiarity with Intel related tools, integration, and tuning
Excellent analytical, problem solving and decision-making skills, applied with a solution-focused attitude
Preferred Qualifications – any combination of the following:
Identifying and Understanding Cyber RISK – threats, vulnerabilities, and consequences
Understanding policies and ways to assess RISK within Cardinal Health
Vendor, Third Party RISK management
Proven experience in Threat Operations and related aspects of threat intelligence
Familiarity with Threat Intelligence and Threat Modeling Concepts
Experience working with Open-Source tools and scripting
Indianapolis Metro Area
Cardinal Health is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law.