at AMERISOURCEBERGEN SERVICES CORPORATION in Romeoville, Illinois, United States
Job Description
Our team members are at the heart of everything we do. At Cencora, we are united in our responsibility to create healthier futures, and every person here is essential to us being able to deliver on that purpose. If you want to make a difference at the center of health, come join our innovative company and help us improve the lives of people and animals everywhere. Apply today!
What you will be doing
The role of the DevSecOps Lead is integral in integrating security practices within our DevOps methodology, effectively bridging any gaps between IT and security while ensuring the swift and safe release of code. Overseeing Cencora's application/API security strategy is a major part of this role as well as enforcing compliance with internal policies alongside external regulations related to API use. This position also ensures all systems comply with industry-specific regulations such as GDPR or HIPAA. The key responsibilities of this role include:
Incorporating security measures into every stage of the DevOps pipeline to protect applications and APIs.
Implementing and maintaining controls within the Continuous Integration/Continuous Deployment (CI/CD) pipeline to meet necessary security standards.
Regular usage of automated tools for routine security checks.
Facilitating collaboration among development, operations, and security teams.
Developing policies that align with regulations, alongside conducting comprehensive assessments of application/API security.
Educating teams about secure use of applications/APIs, keeping up-to-date with cybersecurity trends, ensuring adherence to secure design principles across all Software Development Life Cycle (SDLC) phases, managing incident response protocols, and providing training on secure coding best practices.
Utilizing automation tools to identify potential vulnerabilities before they escalate into threats.
Evaluating third-party services for potential weaknesses in their security posture.
Ensuring that vulnerabilities are remediated before code moves to production and providing guidance on the remediation process for application/API security vulnerabilities
Working closely in collaboration with Information Security Officers (ISO), DevOps teams, Application Development teams, Vendor Partners, and Cyber Engineering teams.
What your background should look like
Bachelor's Degree in Computer Science, Information Technology or any other related discipline or equivalent related experience.
Eight (8) or more years of directly-related or relevant experience, preferably in information security.
Our ideal candidate will be results-driven and proactive in identifying potential threats.
Prior experience as a "lead" or SME highly desired
Fluent in current cybersecurity best practices
Excellent communication skills with a deep understanding of industry standards/regulations.
"Solutions" mindset with the ability to drive security and innovation
Certifications such as CISSP (Certified Information Systems Security Professional), OSCP (Offensive Security Certified Professional), or CEH (Certified Ethical Hacker) will be advantageous.
Technical Skills:
Network Solutions and Systems
Cybersecurity
Root Cause Analysis
Information Security Strategy Standards (SOX, ISO 27001/27002, COBIT, ITIL, NIST, PCI)
Advanced Encryption
Application Architecture
Identity and Access Management
IT Risk Management
Threat Modelling
What Cencora offers
We provide compensation, benefits, and resources that enable a highly inclusive culture and support our team members' ability to live with purpose every day. In addition to traditional offerings like medical, dental, and vision care, we also provide a comprehensive suite of benefits that focus on the physical, emotional, financial, and social aspects of wellness. This encompasses support for working families, which may include backup dependent care, adoption assistance, infertility coverage, family building support, behavioral health solutions, paid parental leave, and paid caregiver leave.
To encourage your personal growth, we also offer a variety of training programs, professional development resources, and opportunities to participate in mentorship programs, employee resource groups, volunteer activities, and much more.
For details, visit https://www.virtualfairhub.com/amerisourcebergen
Schedule
Full time
Salary Range*
$118,000 - 181,720
*This Salary Range reflects a National Average for this job. The actual range may vary based on your locale. Ranges in Colorado/California/Washington/New York State-specific locations may be up to 10% lower than the minimum salary range, and 12% higher than the maximum salary range.
Affiliated Companies:Affiliated Companies: AmerisourceBergen Services Corporation
Equal Employment... For full info follow application link.
Equal Opportunity Employer/Minority/Female/Disability/Veteran
