Cloud Engineer, Infrastructure Security and Governance Job
Job Description Job Attributes+
What Infrastructure Security and Governance contributes to Cardinal Health:
Serving as the foundation of a shared IT vision that is agile and secure, the Infrastructure Security and Governance Team was formed to uphold the fundamental information security principles and policies set forth by EIT Senior Leadership for the protection of Cardinal cloud and on-prem resources. Under the authority and guidance of EIT Global Infrastructure Services, the Infrastructure Security and Governance Team establishes and enforces the proper administrative and technical controls needed to ensure compliance with internal and external regulations and allow the entire infrastructure environment to unite on common goals that serve the broader Cardinal organization and our customers.
As an Infrastructure Security and Governance engineer, you will be specifically tasked with conducting IT systems audits of various IT components within global infrastructure to ensure compliance with policies, procedures, regulations and laws. You will support external audits in partnership with the Information Security Compliance team. You will also be responsible to reduce risks associated with IT components residing in cloud and on-prem implementations. You will work directly with security and governance tool sets to ensure all IT components are operating in a secure manner and are compliant with Cardinal Health policies. The role will collaborate significantly with Cloud Operations, Information Security and Risk & Compliance to further secure the Cardinal Health enterprise.
Responsibilities:Possess a working knowledge of cloud platforms, specifically with Google Cloud Platform and Amazon Web Services.Work with Cloud Operations and application teams to coordinate implementation of technical solutions for remediating security or compliance gaps.Possesses working knowledge of various logging/monitoring solutions and ability to review system and event logs from various IT components.Create compliance and security dashboards for leadership and application teams using tools such as Splunk.Possesses basic understanding of operating systems, networks, databases, storage, security.Continually review and recommend improvements to operational processes and procedures.Proficient with scripting and programming languages such as Python, Bash, PowerShell is a plus.Capable of both transforming manual work and solving problems through automationFamiliarity with Regulatory compliance frameworks like SOX, HIPAA, GDPR is a plus.Ensure monthly team audits are completed on timeWork as a liaison between Internal Audit and Global Infrastructure teams by providing support for various IT audits.Continually review and recommend improvements to internal audit processes and procedures
Accountabilities:Ability to effectively communicate security findings to peers and leadership.Apply comprehensive knowledge and a thorough understanding of concepts, principles, and technical capabilities to perform varied tasks and projects related to cloud security and governance.Ability to work with minimal supervision, making decisions based upon priorities, schedules, and an understanding of business initiatives.Detail oriented with excellent documentation skills/methodologies.Desire to continuously learn new technologies and services.
Qualifications:Bachelor’s degree in Computer Science, Information Systems or equivalent experience preferred.4+ years of experience in related field preferred.Experience with Cloud platforms - GCP and AWS is highly desired.Automation experience preferred.IT Security experience or certifications a plus, but not required.Certifications in related technologies preferred, but not required.Excellent organizational, oral, and written communication skills are a must.Ability to apply critical thinking to all aspects of the position.
What is expected of you and others at this levelApplies comprehensive knowledge and a thorough understanding of concepts, principles, and technical capabilities to perform varied tasks and projectsMay contribute to the development of policies and proceduresWorks on complex projects of large scopeDevelops technical solutions to a wide range of difficult problems. Solutions are innovative and consistent with organization objectivesCompletes work independently receives general guidance on new projectsWork reviewed for purpose of meeting objectivesMay act as a mentor to less experienced colleagues
Cardinal Health is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law.