Career Center

JOB TITLE: Manager, Cybersecurity Controls

Location: Dublin, Ohio (remote)

Headquartered in Dublin, Ohio, Cardinal Health, Inc. (NYSE: CAH) is a global, integrated healthcare services and products company, providing customized solutions for hospitals, health systems, pharmacies, ambulatory surgery centers, clinical laboratories and physician offices worldwide.

The company provides clinically-proven medical products and pharmaceuticals and cost-effective solutions that enhance supply chain efficiency from hospital to home. Cardinal Health connects patients, providers, payers, pharmacists and manufacturers for integrated care coordination and better patient management. Backed by nearly 100 years of experience, with approximately 50,000 employees in 46 countries, Cardinal Health ranks among the top 15 on the Fortune 500.

We currently have a full-time job opening for a Manager of Cybersecurity Controls

Department overview:

Information Security and Risk Management (ISRM) at Cardinal Health enables Cardinal Health to securely deliver healthcare products and solutions that improve the lives of people every day by ensuring security and controls are embedded into Cardinal Health's people, process and technology.

Job Overview:

The Manager, Cybersecurity Controls, applies knowledge of Information Security, Software Engineering and Automation, and Information Technology to build and grow a unique team responsible for proactively developing capabilities to identify, analyze, and remediate security and technical compliance gaps across Cardinal Health dynamically and continuously. This Manager demonstrates in depth knowledge of Network, Cloud, Application, and other essential components of the Cardinal Health IT landscape. This person will also leverage AGILE project management skills to craft and align Iterations that drive the rapid identification and remediation of technical security gaps to improve the Information Security posture of Cardinal Health. Additionally, this person will demonstrate exceptional interpersonal, leadership, and visioning skills to build a strong, healthy, and cohesive team that aims to be industry leading across the Information Security industry. This role will work with members across the Information Security team as well as all IT teams throughout the Cardinal Health enterprise and requires extensive understanding of security controls and security control frameworks to drive and mature control implementation across the organization.

Key responsibilities include:

• Develop and lead an exciting Information Security team, leveraging industry leading principles of Continuous Verification/Validation and technical compliance
• Applies extensive knowledge and understanding of security concepts, principles, and technical capabilities to drive strategy and harden efficacy of technical security controls
• Partner with Information Security organization to mature the cybersecurity control framework to foster control validation prioritization, tracking and reporting
• Consult with IT teams on the development of new security controls and governance practices
• Drive the cybersecurity metrics program and portfolio planning processes for the cybersecurity team
• Partners with teams across IT to socialize control owner responsibilities and foster partnerships through the continuous verification and validation process
• Advise on the implementation of compensating controls or stopgap measures using custom development, the purchase of commercial products, or use of open-source solutions
• Standardize and scale the continuous verification and validation process
• Mature executive and operational security control metrics and reporting to drive improvements
• Track broad-spectrum security remediations identified by team's technical verification and validation efforts
• Drive the development of process and methodologies to achieve ambitious Applied Security goals
• Mentor, empower, and develop a team of Security Engineers while building an environment conducive to the growth, development, and high team morale
• Foster a positive team culture, leading with integrity and purpose to mature a world class capability and team
• Align deliverables and engagements with expectations of leaders across Cardinal Health IT, communicate findings, and collaboratively remediate issues with a focus on automation
• Grow and foster relationships with Security Engineering peers, colleagues and partners across the Information Security Industry, Enterprise IT, and represent Cardinal Health as a world class Information Security organization 

Qualifications:

• Bachelors degree in related field, or equivalent work experience
• 6+ years experience in Information Technology, 4+ years leading high performing and highly technical teams
• Demonstrated ability to lead and manage innovative teams of highly technical professionals
• Relevant Information Security Certifications

Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply.

Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law.