Role Description cFocus Software seeks a ISSO Lead to join our program supporting the Federal Communications Commission (FCC). This position is remote and requires the ability to obtain a Public Trust clearance. - Lead RMF lifecycle activities including system authorization, reauthorization, and continuous monitoring. - Develop, maintain, and update security documentation including SSPs, CMPs, contingency plans, and A&A packages. - Manage POA&Ms, risk acceptances, and remediation tracking across enterprise systems. - Serve as liaison between business units and the Office of the CISO. - Support vulnerability management, configuration management, and compliance monitoring. - Lead internal controls testing and Security Control Assessments (SCA). - Coordinate and support internal/external audits (e.g., FISMA, OIG). - Maintain authorization boundary documentation and configuration deviation tracking. - Support risk analysis, reporting, and continuous improvement initiatives. - Facilitate weekly security meetings and stakeholder coordination. Qualifications - Bachelor’s degree in Cybersecurity, Information Technology, or related field (or equivalent experience). - 8+ years of experience in cybersecurity, compliance, or risk management. - Demonstrated experience with RMF, NIST SP 800-53, and federal compliance frameworks. - Experience supporting A&A, POA&M management, and continuous monitoring programs. - Experience in enterprise-scale cybersecurity environments. - Experience with federal environments (FISMA, NIST frameworks). - Experience with GRC tools (e.g., Xacta). - Strong leadership, communication, and stakeholder engagement skills. Requirements - CISSP (Certified Information Systems Security Professional) OR equivalent certification in information security governance/risk.

Our team members are at the heart of everything we do. At Cencora, we are united in our responsibility to create healthier futures, and every person here is essential to us being able to deliver on that purpose. If you want to make a difference at the center of health, come join our innovative company and help us improve the lives of people and animals everywhere. Apply today! Job Details PRIMARY DUTIES AND RESPONSIBILITIES: - Conducts proactive research to analyze security weaknesses and recommends appropriate strategies to strengthen controls - Assists on security initiatives/issues for one or more Information Security Strategy/Cybersecurity functional areas (e.g., Cyber Operations, Incident Response, Threat Intelligence, Threat Hunting, Forensics, Vulnerability Management, Data Analytics) - Assists in the development, refinement, and implementation of enterprise-wide security policies and procedures and ensures they meet compliance responsibilities - Reviews technical/functional design documents, build, maintain and implement cybersecurity, data security, and cloud security solutions - Works on multiple projects as a key contributor and contributes to the strategic and tactical direction and consultation on cybersecurity initiatives - Interfaces with business and IT leaders communicating security issues and responding to requests for assistance and information - Supports Engineers I/II in conducting manual and automated penetration testing, vulnerability, and other security tests on software applications and assists in secure code reviews, and remediating identified programming flaws - Provides security briefings to advise on critical issues that may affect the enterprise - Gathers and analyzes reporting, metrics, and key performance indicators for executive review - Work closely with the Lead Engineer in maintaining service-level agreements (SLAs) to ensure that security controls are upheld - Guides, coaches, and mentors Engineers I/II in executing their tasks - Works with information security and line of business management to identify, formulate and implement information security solutions and controls and to maintain and configure security tooling - Coordinates with systems and network engineers to ensure servers and network devices conform to security standards and that security devices and controls are working as designed - Engineers security controls to protect data and systems and provide security policy guidance and consultation - Collaborates with other IT teams to focus on improving cloud and application security measures and integrate new and support existing security applications - Communicates advanced information security concepts with clients, peers, and all levels of management and vendors effectively EDUCATIONAL QUALIFICATIONS: Education: Bachelor's Degree in Computer Science, Information Technology or any other related discipline or equivalent related experience. Preferred Certifications: Azure Security Engineer Certification Certified Cloud Security Professional (CCSP) Certification in Information Security Strategy Management (CISM) Certified Information Systems Security Professional (CISSP) CompTIA Security + Certification Systems Security Certified Practitioner (SSCP) WORK EXPERIENCE: 4+ years of directly-related or relevant experience, preferably in information security. SKILLS & KNOWLEDGE: Behavioral Skills: Critical Thinking Detail Oriented Impact and Influencing Interpersonal Communication Multitasking Problem Solving Technical Skills: Network Solutions and Systems Cybersecurity Data Security Cloud Security IT Risk Management Root Cause Analysis Information Security Strategy Standards (SOX, ISO 27001/27002, COBIT, ITIL, NIST, PCI) Application Architecture Threat Intelligence and Monitoring Tools Knowledge: Microsoft Office Suite Programming and Development Languages - JavaScript, HTML/CSS, Python, SQL Security Tools - SIEM, EDR, Email Security Gateway, SOAR, Firewall, Anti-virus, Firewalls, VPN IDS/IPS, AV, proxies, etc. What Cencora offers We provide compensation, benefits, and resources that enable a highly inclusive culture and support our team members' ability to live with purpose every day. In addition to traditional offerings like medical, dental, and vision care, we also provide a comprehensive suite of benefits that focus on the physical, emotional, financial, and social aspects of wellness. This encompasses support for working families, which may include backup dependent care, adoption assistance, infertility coverage, family building support, behavioral health solutions, paid parental leave, and paid caregiver leave. To encourage your personal growth, we also offer a variety of training programs, professional development resources, and opportunities to participate in mentorship programs, employee resource groups, volunteer activities, and much more. For details, visit https://www.virtualfairhub.com/cencora Full time Equal Employment Opportunity Cencora is committed to providing equal employment opportunity without regard to race, color, religion, sex, sexual orientation, gender identity, genetic information, national origin, age, disability, veteran status or membership in any other class protected by federal, state or local law. The company's continued success depends on the full and effective utilization of qualified individuals. Therefore, harassment is prohibited and all matters related to recruiting, training, compensation, benefits, promotions and transfers comply with equal opportunity principles and are non-discriminatory. Cencora is committed to providing reasonable accommodations to individuals with disabilities during the employment process which are consistent with legal requirements. If you wish to request an accommodation while seeking employment, please call 888.692.2272 or email hrsc@cencora.com. We will make accommodation determinations on a request-by-request basis. Messages and emails regarding anything other than accommodations requests will not be returned Affiliated Companies Affiliated Companies: AmerisourceBergen Services Corporation

• Respond to client security alerts by performing initial triage, containment, and documentation of security incidents • Execute vulnerability scans across client environments, analyze findings, and support remediation and patch validation • Review firewall rules and network configurations to ensure alignment with security policies and best practices • Support cloud security efforts across AWS, Azure, or GCP environments, including configuration reviews and hardening activities • Partner with the GRC team to support internal audits, gap assessments, and control testing for frameworks such as ISO 27001:2022 and SOC 2 • Work directly with clients to collect, organize, and validate technical evidence for compliance engagements (SOC 2, ISO 27001:2022, FedRAMP, CMMC) • Translate technical findings into clear documentation, reports, and client-facing recommendations • Support multiple client engagements simultaneously while maintaining organization and attention to detail

Role Description We are seeking experienced Event Concierge professionals to support high-profile conferences and events. This role requires hands-on expertise in event management platforms, particularly Cvent and EventsAir, along with a strong background in the events, meetings, and conference industry. The ideal candidates will have at least 5 years of relevant experience and a solid understanding of end-to-end event coordination, with a focus on delivering seamless delegate experiences and operational support for project leads. This is a great opportunity for individuals who are highly organized, detail-oriented, and confident in managing both systems and delegate engagement. Key Responsibilities - Build and manage event registration websites using Cvent and EventsAir - Handle delegate concierge services, including responding to inquiries and providing event-related assistance - Manage and support attendee communications before, during, and after events - Cross-check event documentation to ensure accuracy and completeness - Compile and prepare event reports for internal teams and clients - Support the Project Lead in delivering event requirements, with a focus on enabling more client-facing activities - Assist in troubleshooting registration or system-related issues as needed - Ensure a smooth and professional delegate experience throughout the event lifecycle Qualifications - Must have a minimum of 5 years experience in event management or a related field - Strong working knowledge of Cvent and EventsAir is required - Experience in conferences, meetings, or corporate events industry is highly preferred - Travel Management experience including management of hotel room blocks, attrition and liaising with flight providers - Ability to manage multiple tasks and deadlines in a fast-paced environment - Strong attention to detail, communication, and organizational skills - Collaborative mindset, supporting senior project leads and broader event teams - May support international clients and varying time zones depending on event requirements Work Arrangement & Expectations This is a remote role that will be set up as an independent contractor engagement. To ensure alignment and transparency, successful candidates will be expected to: - Be available for meetings and collaboration during core [AEST or PHT] business hours - Disclose any existing ongoing roles or client work - Reflect this engagement on their LinkedIn profile (clearly marked as “Independent Contractor”)