IT Security and Audit Lead
What Information Security contributes to Cardinal Health
Information Security is responsible for managing information security operations.
Drives information security initiatives through the system development life cycle.
Defines solutions that balance information security requirements against business needs.
Investigates and resolves security incidents and recommends enhancements to improve security.
Serve as Application team point of contact with corporate audit teams
Manage and maintain audit schedule to ensure CARES applications meets Cardinal corporate compliance requirements
Work with Technical Architecture team to coordinate implementation of technical solutions for remediating compliance gaps.
Provide recommended follow up actions or remediation to IT Management in consultation with IT Security and Compliance teams like Identity Management, Security Controls etc.
Review and draft IT policies and procedures to ensure they meet CAH corporate security requirements.
Keep abreast of and inform Applications teams of pertinent changes in audit and compliance regulations and requirements
Coordinate data collection, policy changes and audit schedules with IT team members
Ability to review and understand a variety of system and event logs.
Experience using vulnerability assessment tools like Veracode
Understand ITSM and change and incident management as it pertains to Information systems support and security.
Solid familiarity with relevant compliance regulations such as SOX, PCI, HIPAA
Implemented processes that have successfully passed audit.
Ability to apply best practices and administrative procedures to comply with SOX, PCI, HIPAA regulations.
Demonstrated experience interpreting audit results and providing comprehensive remediation recommendations.
Ability to manage multiple requirements and remain organized.
Ability to work in a distributed, cross-functional security team environment.
Experience in vendor teamwork and working with onshore and offshore partners
Strong written communication, verbal communication, and facilitation skills
Bachelor’s degree in Information Assurance, Cyber Security, Computer Science, Information Systems or related discipline and minimum 5 years of related experience or a combination of education and related experience
8 years experience in related field preferred
What is expected of you and others at this level
Applies advanced knowledge and understanding of concepts, principles, and technical capabilities to manage a wide variety of projects
Participates in the development of policies and procedures to achieve specific goals
Recommends new practices, processes, metrics, or models
Works on or may lead complex projects of large scope
Projects may have significant and long-term impact
Provides solutions which may set precedent
Independently determines method for completion of new projects
Receives guidance on overall project objectives
Acts as a mentor to less experienced colleagues
Cardinal Health is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status.
Cardinal Health Jobs
Website : http://www.cardinalhealth.com
Headquartered in Dublin, Ohio, Cardinal Health, Inc. (NYSE: CAH) is a $103 billion health care services company that improves the cost-effectiveness of health care. As the business behind health care, Cardinal Health helps pharmacies, hospitals, ambulatory surgery centers, clinical laboratories and physician offices focus on patient care while reducing costs, enhancing efficiency and improving quality.