at AMERISOURCEBERGEN SERVICES CORPORATION in Romeoville, Illinois, United States
Job Description
Our team members are at the heart of everything we do. At Cencora, we are united in our responsibility to create healthier futures, and every person here is essential to us being able to deliver on that purpose. If you want to make a difference at the center of health, come join our innovative company and help us improve the lives of people and animals everywhere. Apply today!
What you will be doing
Individuals within Cencora's Technical-Administration organization are responsible for secure and robust operations of highly available computing platforms, servers, and business applications. Operational activities include installation, upgrade-and-maintenance and continually securing IT assets.
We are building a strong cross-functional, hybrid capability and seek a passionate, skilled Application Security Engineer, Team Lead with strong experience in Application-Integration and/or ERP to join our growing team. In this role, you will play a critical role in safeguarding our applications by identifying and mitigating security vulnerabilities. You will collaborate with application administrators to implement industry-leading security measures.
The primary responsibility of the individual will be to create a collection of application-tier security-controls and build top-of-the-line tools and applications that will aid in further securing IT assets for Cencora's Technical-Administration organization.
Security:
Lead security-strengthening requirements for the business applications
Pro-actively adhere to strict security standards & Best Practices set forth by various vendors (SAP & IBM)
Pro-actively monitor & report application-impact due to security-vulnerabilities
Make recommendations to improve security for Application-Tier
Information Security Administration:
Strategize and execute security-roadmap for business applications
Lead initiatives for reports & tools on security updates & violations
Continually assess and investigate threats to business applications Work with Information Security, where needed, in investigations and/or audits/assessments of systems
Design/Develop:
Lead & orchestrate the design & develop of tools to securely integrate in to business applications
Automated application-tier validations after regular maintenance tasks
Automated load & stress-tests
Policies, Procedures, and Standards:
Ensure compliance with policies, procedures and standards
OS Administrators Operating System Administration:
Generate processes to ensure appropriate user privileges and access are granted, ensuring data-integrity and security is met
Work across teams to ensure OS system upgrades and service pack deployments are implemented with minimal impact to production operation
Recommend updates to operating systems to deliver cost benefits without reducing production performance and availability
Analyze data from monitoring activities and define comprehensive, system wide improvements
Monitor performance and proactively identifies uptime issues, making recommendations for eliminating those issues
Develop plans to adopt new technology
What your background should look like
Bachelors degree or technical institute degree/certificate or equivalent work experience.
Typically requires a minimum of ten (10) or more years of relevant experience of securing IT assets and/or administrating integration/infrastructure solutions
Relevant certification is preferred
Requires strong knowledge and experience with multiple infrastructure solutions
Operating System Skills: Linux (SUSE, RHEL, CentOS, Ubuntu) & Windows
Application-Tier security-architecture and administration for one of the following applications:
Middleware (such as IBM MQ and WebSphere Application Server)
EDI (such as Sterling B2B Integrator)
SAP Basis (Netweaver ABAP & Java) and S/4HANA
Proven track-record of:
Securing and hardening of platform-tier and application-tier
Securing configuration of application-tier, deployments and integration
Maintaining & remediating security algorithms and protocols (TLS, ciphers, ssh)
SAML and OAUTH solutions
LDAP/Active-Directory & ACL
Encryption-at-rest & encryption-at-transit
Automating Application-Security Testing (SCA, IAST, SAST, DAST, et cetera)
Researching of vendor-provided (IBM or SAP) product-release notes, security-release notes, CVE/CVSS3 impact-assessments for applications
Leadership in collaboration, with excellent verbal and written skills
Strong organization skills
Good analytical and problem solving skills
Ability to communicate effectively both orally and in writing
Good interpersonal skills; solid team player
Ability to and willingness to mentor team members
Knowledge of client/server technology
Exceptional customer service skills
Good group presentation... For full info follow application link.
Equal Opportunity Employer/Minority/Female/Disability/Veteran
