Engineer II - Cyber Incident Response jobs in United States
cer-icon
Apply on Employer Site
company-logo

Cencora · 2 weeks ago

Engineer II - Cyber Incident Response

positionFrisco, TX
timeFull-time
remoteOnsite
seniorityEntry, Mid Level
date2+ years exp

Cencora is an innovative company focused on creating healthier futures. They are seeking an Engineer II for Cyber Incident Response to detect, investigate, and respond to cybersecurity incidents while collaborating with global cyber defense teams.

Emergency MedicineEnterprise SoftwareHealth CareMedicalPharmaceutical

Responsibilities

Investigate and respond to cybersecurity incidents, including phishing, malware, ransomware, and unauthorized access attempts
Perform analysis of logs, alerts, and forensic data to determine the scope and impact of incidents
Escalate complex or high-severity incidents to Engineer III, Lead, or Principal staff, providing clear documentation and evidence
Assist in containment, eradication, and recovery activities during incident response
Contribute to the development and maintenance of SOC playbooks, runbooks, and standard operating procedures
Collaborate with threat intelligence, vulnerability management, and forensics teams to strengthen detection and response strategies
Participate in lessons-learned sessions and recommend improvements to SOC processes and tooling
Support junior analysts (Engineer I) by sharing knowledge and providing guidance on investigative techniques

Qualification

Cybersecurity fundamentalsIncident response methodologySIEM toolsForensic toolsNIST frameworkMITRE ATT&CKISO 27035GCIH certificationGCIA certificationCompTIA Security+CEH certificationAnalytical skillsCommunication skills

Required

Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or equivalent work experience
Strong knowledge of cybersecurity fundamentals, incident response methodology, and adversary tactics
Familiarity with industry frameworks such as NIST, MITRE ATT&CK, and ISO 27035
2–5 years of progressive experience in cybersecurity, with at least 2 years in SOC operations or incident response
Hands-on experience with SIEM, EDR, and forensic tools (e.g., Splunk, CrowdStrike, Wireshark)
Demonstrated ability to analyze logs, alerts, and artifacts to support incident investigations
Strong written and verbal communication skills for documenting findings and briefing stakeholders

Preferred

GIAC Certified Incident Handler (GCIH)
GIAC Certified Intrusion Analyst (GCIA)
CompTIA Security+ or CySA+
Certified Ethical Hacker (CEH)

Benefits

Medical, dental, and vision care
Backup dependent care
Adoption assistance
Infertility coverage
Family building support
Behavioral health solutions
Paid parental leave
Paid caregiver leave
Training programs
Professional development resources
Opportunities to participate in mentorship programs
Employee resource groups
Volunteer activities

Company

Cencora

twittertwittertwitter
Glassdoor3.5
company-logo
Cencora is a global healthcare company that advances the development and delivery of pharmaceuticals and healthcare products.
dateFounded in 2023
location
Conshohocken, Pennsylvania, USA
people-size10001+ employees
web-link
http://www.cencora.com

Funding

Current Stage
Public Company
Total Funding
$4.83B
2024-12-02Post Ipo Debt· $1.8B
2024-02-05Post Ipo Debt· $500M
2022-11-07Post Ipo Secondary· $500M

Leadership Team

leader-logo
Robert Mauch
President and Chief Executive Officer
linkedin
leader-logo
Mike Baca
Senior Director, AI Platforms & Solutions
linkedin

Recent News

GlobeNewswire
AOP Health’s Rapiblyk™ Now Accessible via Leading US Healthcare Improvement Companies
2026-01-12
Benzinga.com
If You Invested $1000 In Cencora Stock 5 Years Ago, You Would Have This Much Today
2026-01-05
MarketScreener
Drug Distributors Poised for Growth Amid Emerging Risks, BofA Says
2026-01-05
Company data provided by crunchbase