[Hiring] Senior Director – Enterprise Security Architecture @Cencora

Role Description

The Senior Director of Enterprise Security Architecture (ESA) leads the definition, governance, and enforcement of enterprise-wide security architecture strategy for the enterprise. This leader is accountable for aligning cybersecurity architecture with business strategy, digital transformation, regulatory obligations, and risk appetite.

The role oversees:

• Reference architectures
• Security design standards
• Architecture review boards (ARB)
• Security requirements engineering
• Integration with Enterprise Architecture (EA), Cloud, Data, AI, Infrastructure, and Application domains

This role is responsible for building strong partnerships with technology teams, other corporate support functions, and other Information Security organizations to protect the corporate brand, data, and assets. It is also responsible for the design, implementation, operation, and maintenance of an information security framework, processes, and systems that protect the business, services, information, and systems against unauthorized use, disclosure, modification, damage, and loss.

The position partners closely with the CISO, other Information Security Sr. Leaders, and other Technology Leadership teams to establish a vision and strategy required to ensure scalable, measurable, and continuously improving defense capabilities across all security domains in collaboration with other information security domain leaders and partner organizations.

Our employee experience is a strategic priority for our company. Our leaders are accountable for leading with purpose, fairness, and equity. They are responsible for building and developing diverse teams, maintaining a safe and inclusive environment, setting clear priorities, and holding self and team accountable for executing with excellence.

Qualifications

• Master’s Degree in Business Administration, Computer Science, Information Technology or any other related discipline or equivalent related experience.
• Preferred Certifications:
  • Certified Cloud Security Professional (CCSP)
  • Certified Information Systems Security Professional (CISSP)
  • Sherwood Applied Business Security Architecture (SABSA)
  • Open Group Architecture Framework (TOGAF)
  • Certified in Risk and Information Systems Control (CRISC)
  • Certification in Information Security Strategy Management (CISM)
  • Microsoft Certified: Cybersecurity Architect Expert (SC-100)
  • Information Technology Infrastructure Library (ITIL)
  • Offensive Security Certified Professional (OSCP)
  • Project Management Professional (PMP) Certification
• 12+ years of directly-related or relevant experience with 8+ years in a managerial capacity, preferably in information security.

Requirements

• Coaching and Mentoring
• Creativity & Innovation
• Decision Making
• Leadership Skills
• People Management
• Planning
• Risk-taking
• IT Risk Management
• IT Controls
• Cyber Attack Mitigation
• Enterprise IT Management
• Cloud Security
• Network Security
• Identity & Access Management
• Application Security
• Service Level Maintenance
• Information Security Strategy Continuity
• Threat Modelling
• Information Security Strategy Standards (SOX, ISO 27001/27002, COBIT, ITIL, NIST, PCI)
• Security Tools – CSPM, CWPP, CDR, CNAPP, SIEM, EDR, Email Security Gateway, SOAR, Firewall, Anti-virus, Firewalls, VPN IDS/IPS, AV, proxies, etc.
• Security Testing Tools - Open Source and COTS security tools
• Threat Intelligence Tools
• Vulnerability Testing Tools

Benefits

• Compensation, benefits, and resources that enable a highly inclusive culture
• Traditional offerings like medical, dental, and vision care
• Comprehensive suite of benefits focusing on physical, emotional, financial, and social wellness
• Support for working families, including:
  • Backup dependent care
  • Adoption assistance
  • Infertility coverage
  • Family building support
  • Behavioral health solutions
  • Paid parental leave
  • Paid caregiver leave
• Variety of training programs and professional development resources
• Opportunities to participate in mentorship programs, employee resource groups, volunteer activities, and more