Sr Analyst, Information Security & Risk

What Information Security and Risk contributes to Cardinal Health

Information Technology oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value.

Information Security and Risk develops, implements, and enforces security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure or destruction. This job family develops system back-up and disaster recovery plans. Information Technology also conducts incident response, threat management, vulnerability scanning, virus management and intrusion detection and completes risk assessments.

JOB TITLE: Sr. Analyst – Vulnerability Management

Working together, we can make a difference in healthcare for our customers and communities. Your contributions, along with colleagues around the world, are helping make healthcare safer and more productive every day.

Track/Level: P2
Job Family: Information Security

What Information Security contributes to Cardinal Health?

• We exist to ensure availability, integrity and confidentiality of healthcare infrastructure that safeguards the patient.
• We promote a culture that protects information assets, manages risk and embeds security in people, process and technology
• Defines solutions that balance information security requirements against business needs.
• Investigates and resolves security incidents and recommends enhancements to improve security.

What is expected of you in this role?

• Facilitates the coordination of remediation efforts, prioritizing remediation efforts based on risk.
• Generate and communicate reporting around remediation efforts
• Serves as vulnerability management analyst for assigned information systems and computer networks.
• The individual in this position must be self-motivated and will have the opportunity to serve as a strong contributor in the analysis, coordination, and remediation of system vulnerabilities.
• Analyzes vulnerabilities and characterizes risk to networks, operating systems, applications, databases, and other information system components.
• Engages with stakeholders and system owners to facilitate vulnerability discovery through manual review and/or the use of vulnerability scanners.

Required Qualifications

• Familiarity with Understanding of vulnerabilities and remediation techniques
• Strong written and verbal communication skills with an ability to communicate technical details in a clear and understandable manner
• Aptitude for data driven storytelling and their respective recommendations

Preferred Qualifications

Bachelor's degree in related field

Familiarity with vulnerability management tools (Rapid 7, Nessus, Qualys, etc.)

1+ years' experience in specific domains of information security

CompTIA Security + Certification

Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply.

Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law.