Senior Application Security Analyst

Our team members are at the heart of everything we do. At Cencora, we are united in our responsibility to create healthier futures, and every person here is essential to us being able to deliver on that purpose. If you want to make a difference at the center of health, come join our innovative company and help us improve the lives of people and animals everywhere. Apply today!
Job Details
The candidate will exhibit proficiency in the following core requirements:• Operating System Skills: Linux (SUSE, RHEL, CentOS, Ubuntu) & Windows• Application-Tier security-architecture and administration for one of the following applications:
o Middleware (such as IBM MQ and WebSphere Application Server)
o EDI (such as Sterling B2B Integrator)
o SAP Basis (Netweaver ABAP & Java) and S/4HANA• Proven track-record of
o securing and hardening of platform-tier and application-tier
o securing configuration of application-tier, deployments and integration
o maintaining & remediating security algorithms and protocols (TLS, ciphers, ssh)
o SAML and OAUTH solutions
o LDAP/Active-Directory & ACL
o encryption-at-rest & encryption-at-transit
o automating Application-Security Testing (SCA, IAST, SAST, DAST, et cetera)
o researching of vendor-provided (IBM or SAP) product-release notes, security-release notes, CVE/CVSS3 impact-assessments for applications
o leadership in collaboration, with excellent verbal and written skills
The candidate will have the following peripheral skills and knowledge:• Two or more of these skills: SecOps, Threat-Intelligence, Disaster-Recovery and Incident-Response, Vulnerability-Assessment, Pen-Testing & reporting• Web-building skills, or more of the following: Javascript, JSP, Ruby• Automation skills, one or more of the following: Python, bash shell, Perl, Ansible/AWX, Chef, Terraform
PRIMARY DUTIES AND RESPONSIBILITIES:• Security

• • Lead security-strengthening requirements for the business applications
  • Pro-actively adhere to strict security standards & Best Practices set forth by various vendors (SAP & IBM)
  • Pro-actively monitor & report application-impact due to security-vulnerabilities
  • Make recommendations to improve security for Application-Tier

• Information Security Administration

• • Strategize and execute security-roadmap for business applications
  • Lead initiatives for reports & tools on security updates & violations
  • Continually assess and investigate threats to business applications Work with Information Security, where needed, in investigations and/or audits/assessments of systems

• Design/Develop

• • Lead & orchestrate the design & develop of tools to securely integrate in to business applications
  • Automated application-tier validations after regular maintenance tasks
  • Automated load & stress-tests

• Policies, Procedures, and Standards

• • Ensure compliance with policies, procedures and standards

• Operating System Administration - procedural

• • Generate processes to ensure appropriate user privileges and access are granted, ensuring data-integrity and security is met
  • Work across teams to ensure OS system upgrades and service pack deployments are implemented with minimal impact to production operation
  • Recommend updates to operating systems to deliver cost benefits without reducing production performance and availability
  • Analyze data from monitoring activities and define comprehensive, system wide improvements
  • Monitor performance and proactively identifies uptime issues, making recommendations for eliminating those issues
  • Develop plans to adopt new technology

EXPERIENCE AND EDUCATIONAL REQUIREMENTS:

• Bachelors degree or technical institute degree/certificate or equivalent work experience.
• Typically requires a minimum of ten (10) or more years of relevant experience of securing IT assets and/or administrating integration/infrastructure solutions
• Relevant certification is preferred
• Requires strong knowledge and experience with multiple infrastructure solutions

MINIMUM SKILLS, KNOWLEDGE AND ABILITY REQUIREMENTS:

• Strong organization skills
• Good analytical and problem solving skills
• Ability to communicate effectively both orally and in writing
• Good interpersonal skills; solid team player
• Ability to and willingness to mentor team members
• Knowledge of client/server technology
• Exceptional customer service skills
• Good group presentation skills
• Experience with scripting technologies highly recommended (e.g Puppet, Chef)
• Extensive knowledge of troubleshooting complex technology performance problems
• Ability to lead and drive complex projects across multiple technologies
• Knowledge of ITIL

EDUCATIONAL QUALIFICATIONS:
Bachelor's Degree in Computer Science, Information Technology or any other related discipline or equivalent related experience.
Preferred Certifications:

• Salesforce Certified Administrator
• Microsoft Certified Systems Administrator (MCSA)
• Microsoft Certified IT Professional
• ITIL, ITSM Certifications

WORK EXPERIENCE:
4+ years of directly-related or relevant experience, preferably in application support or system/application/database administration.
SKILLS & KNOWLEDGE:
Behavioral Skills:

• Critical Thinking
• Detail Oriented
• Impact and Influencing
• Interpersonal Communication
• Multitasking
• Problem Solving
• Time Management

Technical Skills:

• Identity & Access Management
• Database Administration
• IT Support like Software & Hardware Installation, Troubleshooting
• Software Validation
• Systems Integration
• IT Regulatory Compliance like SOX Compliance

Tools Knowledge:

• Software Configuration Management Tools like Ansible, Puppet
• Citrix technologies like XenDesktop, XenApp, XenServer
• Operating Systems & Servers like Windows, Linux, Citrix, IBM, Oracle, SQL
• Enterprise Resource Planning (ERP) Systems like Sage, ASW, SAP
• Software like Case Management System, HR Information Systems, Kronos(Timekeeping Software), PHS Health and Safety Management System
• Java Frameworks like JDBC, Spring, ORM Solutions, JPA, JEE, JMS, Gradle, Object Oriented Design
• Microsoft Office Suite
• Relational Database Management System (RDBMS) Software
• Customer Relationship Management (CRM) Systems like Salesforce Marketing Cloud, Sales Cloud
• Internet Protocols like DNS, HTTP, LDAP, SMTP, Easy DNS, No IP

What Cencora offers
Benefit offerings outside the US may vary by country and will be aligned to local market practice. The eligibility and effective date may differ for some benefits and for team members covered under collective bargaining agreements.
Full time
Affiliated Companies
Affiliated Companies: CENCORA BUSINESS SERVICES INDIA PRIVATE LIMITED
Equal Employment Opportunity
Cencora is committed to providing equal employment opportunity without regard to race, color, religion, sex, sexual orientation, gender identity, genetic information, national origin, age, disability, veteran status or membership in any other class protected by federal, state or local law.
The company's continued success depends on the full and effective utilization of qualified individuals. Therefore, harassment is prohibited and all matters related to recruiting, training, compensation, benefits, promotions and transfers comply with equal opportunity principles and are non-discriminatory.
Cencora is committed to providing reasonable accommodations to individuals with disabilities during the employment process which are consistent with legal requirements. If you wish to request an accommodation while seeking employment, please call 888.692.2272 or email [email protected]. We will make accommodation determinations on a request-by-request basis. Messages and emails regarding anything other than accommodations requests will not be returned