Cencora · 2 weeks ago
Principal Engineer - Cyber Incident Response
Conshohocken, PA
Full-time
Onsite
Lead/Staff
10+ years expCencora is an innovative company focused on creating healthier futures. The Principal Engineer, Cyber Incident Response, will lead complex investigations and enhance detection and response capabilities while collaborating with various teams to address cyber threats.
Emergency MedicineEnterprise SoftwareHealth CareMedicalPharmaceutical
Responsibilities
Lead technical response and investigation of complex and high-severity security incidents, including advanced persistent threats, ransomware, and insider activity
Provide hands-on expertise in forensic analysis, malware reverse engineering, and threat hunting across endpoints, networks, and cloud environments
Develop and refine incident response playbooks, detection rules, and automation to improve SOC efficiency and response times
Partner with engineering teams to design and implement resilient detection and response capabilities across SIEM, EDR, SOAR, and cloud platforms
Mentor and provide technical guidance to SOC analysts, incident responders, and engineering teams
Collaborate with threat intelligence teams to translate threat actor tactics, techniques, and procedures (TTPs) into actionable detection and response strategies
Serve as a technical escalation point during major incidents and contribute to root cause analysis and lessons learned reporting
Contribute to red/blue/purple team exercises to validate detection and response effectiveness
Provide input on security architecture, tooling enhancements, and emerging technologies to strengthen enterprise cyber defense
Qualification
Required
Bachelor's degree in Cybersecurity, Computer Science, Information Systems, or equivalent work experience; Master's degree preferred
Advanced knowledge of incident response methodologies, digital forensics, malware analysis, and adversary simulation
Familiarity with industry frameworks such as NIST, MITRE ATT&CK, and ISO 27035
10+ years of progressive experience in cybersecurity, with at least 7 years focused on incident response, threat hunting, or forensic investigations
Demonstrated expertise in analyzing and responding to advanced cyber threats in large enterprise environments
Hands-on experience with SIEM, EDR, SOAR, and forensic tools (e.g., Splunk, CrowdStrike, EnCase, Magnet, Wireshark)
Experience with malware reverse engineering, memory forensics, and scripting/automation (Python, PowerShell)
Proven ability to serve as a technical authority and mentor within a global SOC or incident response team
Strong communication skills, with the ability to clearly present complex technical findings to both technical and executive stakeholders
Preferred
GIAC Certified Incident Handler (GCIH)
GIAC Certified Intrusion Analyst (GCIA)
GIAC Reverse Engineering Malware (GREM)
GIAC Certified Forensic Analyst (GCFA)
Offensive Security Certified Professional (OSCP)
Certified Information Systems Security Professional (CISSP) or equivalent senior-level certification a plus
Benefits
Medical, dental, and vision care
Backup dependent care
Adoption assistance
Infertility coverage
Family building support
Behavioral health solutions
Paid parental leave
Paid caregiver leave
Training programs
Professional development resources
Opportunities to participate in mentorship programs
Employee resource groups
Volunteer activities
Company
Cencora
Cencora is a global healthcare company that advances the development and delivery of pharmaceuticals and healthcare products.
10001+ employees
Funding
Current Stage
Public CompanyTotal Funding
$4.83B2024-12-02Post Ipo Debt· $1.8B
2024-02-05Post Ipo Debt· $500M
2022-11-07Post Ipo Secondary· $500M
Leadership Team
Robert Mauch
President and Chief Executive Officer
Mike Baca
Senior Director, AI Platforms & Solutions
Recent News
2026-01-05
2026-01-05
2025-12-18
Company data provided by crunchbase