At Cardinal Health, our Information Security team is focused on protecting Cardinal Health, our customers, and their patients.  This is critical as Cardinal Health aspires to become healthcare?s most trusted partner - digital trust is an essential component of this journey.

Accountabilities:

The scope of this role is to drive the Cybersecurity Maturity Program for Cardinal Health.  The ideal candidate will possess a strong information security and security program leadership background.  Accountabilities include:

• Lead the overall Cybersecurity Maturity Program for Cardinal Health by coordinating with all cybersecurity teams to identify target maturity levels, steps needed to achieve the desired state, and tracking against those objectives
• Facilitate cybersecurity program assessments to identify gaps and recommend improvements
• Participate in cybersecurity control assessments providing risk-based gap analysis and prioritized remediation recommendations
• Develop communications to show the overall program state to audiences ranging from engineers to the board of directors
• Contribute to the creation of information security technology strategies and roadmaps based on business strategy, cybersecurity assessments, IT trends and the overall threat landscape 
• Contribute to the development of information security solution architectures that align with assessment remediation requirements, reference architectures, design patterns and technology standards
• Understand the cybersecurity risks to prioritize risk remediation for upcoming projects and initiatives
• Provides overall security and threat postures based on assessment results and NIST Cybersecurity Framework
• Leads the development of multiyear information security strategy
• Interact with internal and/or external cyber security and Information Technology resources

Qualifications:

• Undergraduate degree in a technical field
• 6 years of experience with IT security principles, practices, technologies, programs and procedures, accompanied by an understanding of risk management methodologies and cybersecurity assessment frameworks preferred
• Strong written and verbal communication skills
• Experience contributing to the development of information security assessment and remediation programs
• Familiarity with IT Security and Governance standards including ISO 27002, NIST Cybersecurity Framework, HITRUST, etc.
• Certifications such as Certified Information Security Professional (CISSP) or Security + preferred
• Strong understanding of IT domains, Security Architecture, and how solutions/applications are deployed and governed
• Demonstrated ability to manage competing priorities
• High-quality analytical skills, relationship management competencies
• Ability to provide results in a highly matrixed environment

Anticipated salary range: $121,600 - $182,385

Bonus eligible: Yes

Benefits: Cardinal Health offers a wide variety of benefits and programs to support health and well-being.

• Medical, dental and vision coverage
• Paid time off plan
• Health savings account (HSA)
• 401k savings plan
• Access to wages before pay day with myFlexPay
• Flexible spending accounts (FSAs)
• Short- and long-term disability coverage
• Work-Life resources
• Paid parental leave
• Healthy lifestyle programs

Application window anticipated to close: 8/8/2025 *if interested in opportunity, please submit application as soon as possible.

The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate?s geographical location, relevant education, experience and skills and an evaluation of internal pay equity.

Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply.

Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law.