Job Description

Job – P3, Engineer Infrastructure Governance As an Infrastructure Security and Governance engineer, you will be specifically tasked with conducting IT systems audits of networks, databases, systems, applications and other IT components within global infrastructure to ensure compliance with policies, procedures, regulations and laws. You will also be responsible to reduce risks associated with IT components residing in cloud and on-prem implementations. You will work directly with security and governance tool sets to ensure all IT components are operating in a secure manner and are compliant with Cardinal Health policies. The role will collaborate significantly with Cloud Operations, Information Security and Risk & Compliance to further secure the Cardinal Health enterprise. Requirements and Responsibilities

• Implement strategies to improve the effectiveness of the IT general controls in the Global Infrastructure space while reducing compliance costs
• Provide guidance/consultation to control owners within Global Infrastructure Services for existing or new SOX controls.
• Possesses the ability to translate complex regulatory controls into layman’s terms and articulate to infrastructure and application teams
• Perform SOX pre-audits within Global Infrastructure Services organization
• Communicate identified gaps and recommended solutions, or compensating controls and collaborate with various teams to implement the solution.
• Work as a liaison between Internal Audit and Global Infrastructure teams by providing support for various IT audits.
• Continually review and recommend improvements to internal audit processes and procedures
• Support multiple IT leaders and teams with respect to security, audit or compliance issues in Archer GRC.
• Has familiarity with cloud platforms, specifically Google Cloud Platform and Amazon Web Services
• Willingness to build technical acumen within the team
• Has familiarity with logging/monitoring solutions and ability to review system and event logs from various IT components
• Ability to work with minimal supervision, making decisions based upon priorities, schedules and an understanding of business initiatives
• Have oversight and drive the accuracy of the user access review SOX control owned by the team through automation

• Bachelor’s degree in Computer Science, Information Systems or related discipline and minimum 5 years of related experience
• Prior experience with regulatory compliance frameworks like SOX, HIPAA, GDPR
• Must be able to effectively partner and influence as needed with different IT teams, auditors and SOX control owners.
• Excellent organizational skills, and oral and written communication skills is a must
• Ability to apply critical thinking to all aspects of the position