Similar Jobs at Cencora
Healthtech • Logistics • Pharmaceutical
The Engineer II in Cyber Incident Response investigates and responds to cybersecurity incidents, performs analysis, escalates cases, and develops response playbooks.
Top Skills:
CrowdstrikeEdrSIEMSplunkWireshark
Healthtech • Logistics • Pharmaceutical
The Security Product Manager will define product vision and roadmaps for cybersecurity, lead cross-functional collaboration, and drive product success through strategic insights and data-driven decisions.
Top Skills:
Agile MethodologiesCybersecurityIdentity And Access ManagementRisk And ComplianceSecurity Frameworks
Healthtech • Logistics • Pharmaceutical
The Senior Director of Enterprise Security Architecture leads cybersecurity strategy, governance, and design, aligning with corporate objectives and regulations. Responsibilities include developing reference architectures, ensuring compliance, and overseeing security framework implementation across technologies.
Top Skills:
AIApplication SecurityCloud SecurityCybersecurityData ProtectionIdentity And Access ManagementNetwork SecuritySecurity Testing ToolsSecurity ToolsThreat Intelligence Tools
What you will be doing
The Engineer II, Cyber Incident Response, is a mid-level technical role within the Security Operations Center (SOC) responsible for detecting, investigating, and responding to cybersecurity incidents. This role performs in-depth analysis of alerts, escalates complex cases, and contributes to the improvement of response processes and playbooks. The Engineer II will collaborate with global cyber defense teams to contain threats, minimize business impact, and strengthen detection capabilities. This position requires strong analytical skills, hands-on technical expertise, and the ability to operate effectively in a fast-paced environment.
Primary Duties and Responsibilities
What your background should look like
Education and Qualifications
Preferred Certifications
Work Experience
Schedule
Full time
The Engineer II, Cyber Incident Response, is a mid-level technical role within the Security Operations Center (SOC) responsible for detecting, investigating, and responding to cybersecurity incidents. This role performs in-depth analysis of alerts, escalates complex cases, and contributes to the improvement of response processes and playbooks. The Engineer II will collaborate with global cyber defense teams to contain threats, minimize business impact, and strengthen detection capabilities. This position requires strong analytical skills, hands-on technical expertise, and the ability to operate effectively in a fast-paced environment.
Primary Duties and Responsibilities
- Investigate and respond to cybersecurity incidents, including phishing, malware, ransomware, and unauthorized access attempts.
- Perform analysis of logs, alerts, and forensic data to determine the scope and impact of incidents.
- Escalate complex or high-severity incidents to Engineer III, Lead, or Principal staff, providing clear documentation and evidence.
- Assist in containment, eradication, and recovery activities during incident response.
- Contribute to the development and maintenance of SOC playbooks, runbooks, and standard operating procedures.
- Collaborate with threat intelligence, vulnerability management, and forensics teams to strengthen detection and response strategies.
- Participate in lessons-learned sessions and recommend improvements to SOC processes and tooling.
- Support junior analysts (Engineer I) by sharing knowledge and providing guidance on investigative techniques.
What your background should look like
Education and Qualifications
- Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or equivalent work experience.
- Strong knowledge of cybersecurity fundamentals, incident response methodology, and adversary tactics.
- Familiarity with industry frameworks such as NIST, MITRE ATT&CK, and ISO 27035.
Preferred Certifications
- GIAC Certified Incident Handler (GCIH)
- GIAC Certified Intrusion Analyst (GCIA)
- CompTIA Security+ or CySA+
- Certified Ethical Hacker (CEH)
Work Experience
- 2-5 years of progressive experience in cybersecurity, with at least 2 years in SOC operations or incident response.
- Hands-on experience with SIEM, EDR, and forensic tools (e.g., Splunk, CrowdStrike, Wireshark).
- Demonstrated ability to analyze logs, alerts, and artifacts to support incident investigations.
- Strong written and verbal communication skills for documenting findings and briefing stakeholders.
Schedule
Full time
Cencora Chessington, England Office
Our major business support centre is based in Chessington, Surrey. It can be accessed easily by car with proximity to the M25 and the A3 or with good public transport links. This office features large garden area, well-being room and a multi-faith room.
Cencora Feltham, England Office
Situated adjacent to Heathrow airport, Feltham is a major operational hub in the UK with excellent transport links to London and internationally.
Cencora Woking, England Office
In 2024 we opened our brand-new state-of-the-art offices in Woking’s town centre. A few minutes walk from the main train station, these offices offer a light, modern space to work from just 20 minutes from central London.
What you need to know about the London Tech Scene
London isn't just a hub for established businesses; it's also a nursery for innovation. Boasting one of the most recognized fintech ecosystems in Europe, attracting billions in investments each year, London's success has made it a go-to destination for startups looking to make their mark. Top U.K. companies like Hoptin, Moneybox and Marshmallow have already made the city their base — yet fintech is just the beginning. From healthtech to renewable energy to cybersecurity and beyond, the city's startups are breaking new ground across a range of industries.
