Director, Cybersecurity M&A (remote)

Our team members are at the heart of everything we do. At Cencora, we are united in our responsibility to create healthier futures, and every person here is essential to us being able to deliver on that purpose. If you want to make a difference at the center of health, come join our innovative company and help us improve the lives of people and animals everywhere. Apply today!
Job Details
Job Summary:
As the Director, Cybersecurity M&A, you will play a lead role in shaping and implementing the firm's business strategy. Leveraging your advanced knowledge and expertise in cybersecurity, merges & acquisitions and team leadership, you will collaborate with various stakeholders to develop and maintain a comprehensive view of the cybersecurity activities in support of the M&A activity. Your ability to make calculated decisions, manage relationships, drive strategy, effectively communicate and execute will be crucial in ensuring the best outcome. Your work will contribute to the long-term success and cybersecurity resilience of the organization in an ever-evolving technology landscape.
Job responsibilities:

• Own the strategy for the Cybersecurity Acquisition Procedures across the Merger and Acquisition (M&A) in alignment with business and IT strategy, the cybersecurity policies, standards and controls, and protecting Cencora in an evolving threat landscape.
• Ensure that the strategy is up to date and refreshed as necessary under the guidance of the Chief Information Security Officer (CISO).
• Lead the execution of the Cybersecurity Acquisition Procedures across the M&A lifecycle from early due diligence through integration complete.
• Oversee cybersecurity due diligence work streams for new acquisitions and strategic investments undertaken.
• Drive execution of cybersecurity and technology control due diligence, aligning subject matter expertise in the evaluation of technology risk to enable our business partners to make a risk based decision on proceeding with each transaction.
• Build and maintain strong relationships with Cybersecurity Domain Leadership in the development and execution of secure-in-place and integration plans to ensure acquisition strategic outcomes are met.
• Collaborate with the Cybersecurity Architecture and Business Information Security Officers (BISO) for assessments, architecture reviews, threat modeling, and control design consulting.
• Partner with the line of business to provide strategic guidance in the development and execution of secure-in-place and integration plans, risk impact of key decisions and considerations for mitigations where risk is accepted.
• Provide governance and oversight of the line of business teams, ensuring accountability for integration and controls management responsibilities.
• Identify and escalate emerging and upstream technology risk through execution of the management framework tools and processes, including risk event management, reporting, and action plan tracking, and provide expert counsel to stakeholders and constituents regarding their security obligations, facilitating acceptable outcomes
• Establish and maintain strong relationships across the M&A enablement program, internal and external stakeholders, including key cross-functional team leads, regulators, and auditors, to ensure compliance with legal, regulatory, and industry standards
• Manage reporting and governance of overall controls, policies, issue management, and measurements, etc., providing insight to senior leaders into effectiveness of controls and inform governance work
• Provide regular and timely status reporting on the execution of the Cybersecurity Acquisition Procedures to executive IT leadership including the CISO.

Required qualifications, capabilities, and skills:

• Seven (7) or more years of experience or equivalent expertise in technology risk management, information security, or a related field, with a focus on managing risk identification, assessment, and mitigation
• Demonstrated experience in leading cybersecurity due diligence and integration efforts for mergers and acquisitions.
• Demonstrated expertise in risk management frameworks, industry standards, and regulatory requirements relevant to the financial industry
• Proven ability to lead large teams, manage cross-functional projects, influence executive-level strategic decision-making, and effectively translate technology insights to business strategy in communications with senior executives
• Advanced knowledge and experience leading data security, risk assessment & reporting, and control evaluation, design, and governance, with a track record of implementing effective risk mitigation strategies
• Understanding of cybersecurity architecture, threat modeling, control design, and related technical assessments.
• Strong collaboration skills with the ability to partner closely with various teams, including the central M&A, Cybersecurity Domain leadership, Cybersecurity Architecture and BISO team.
• Preferred qualifications, capabilities, and skills
• Understanding of cybersecurity architecture, threat modeling, control design, and related technical assessments across a broad range of cybersecurity domains and their applicability across the M&A lifecycle.
• Experience in governance and oversight of cybersecurity programs, ensuring compliance with organizational policies and procedures.

What Cencora offers
We provide compensation, benefits, and resources that enable a highly inclusive culture and support our team members' ability to live with purpose every day. In addition to traditional offerings like medical, dental, and vision care, we also provide a comprehensive suite of benefits that focus on the physical, emotional, financial, and social aspects of wellness. This encompasses support for working families, which may include backup dependent care, adoption assistance, infertility coverage, family building support, behavioral health solutions, paid parental leave, and paid caregiver leave. To encourage your personal growth, we also offer a variety of training programs, professional development resources, and opportunities to participate in mentorship programs, employee resource groups, volunteer activities, and much more. For details, visit https://www.virtualfairhub.com/cencora
Full time
Salary Range*
$121,000 - 186,230
*This Salary Range reflects a National Average for this job. The actual range may vary based on your locale. Ranges in Colorado/California/Washington/New York/Hawaii/Vermont/Minnesota/Massachusetts/Illinois State-specific locations may be up to 10% lower than the minimum salary range, and 12% higher than the maximum salary range.
Equal Employment Opportunity
Cencora is committed to providing equal employment opportunity without regard to race, color, religion, sex, sexual orientation, gender identity, genetic information, national origin, age, disability, veteran status or membership in any other class protected by federal, state or local law.
The company's continued success depends on the full and effective utilization of qualified individuals. Therefore, harassment is prohibited and all matters related to recruiting, training, compensation, benefits, promotions and transfers comply with equal opportunity principles and are non-discriminatory.
Cencora is committed to providing reasonable accommodations to individuals with disabilities during the employment process which are consistent with legal requirements. If you wish to request an accommodation while seeking employment, please call 888.692.2272 or email [email protected]. We will make accommodation determinations on a request-by-request basis. Messages and emails regarding anything other than accommodations requests will not be returned
Affiliated Companies:
Affiliated Companies: AmerisourceBergen Services Corporation