Role Description ProArch IT Solutions is seeking a highly motivated and technically skilled Security / SOAR Automation Engineer to join our global cybersecurity operations team supporting a fast-paced Managed Security Services Provider (MSSP) environment. The ideal candidate will possess strong hands-on experience in cybersecurity automation, SOAR platform engineering, SOC workflow orchestration, and security integrations across modern security ecosystems. This role is heavily focused on designing, implementing, optimizing, and scaling SOC automation capabilities to improve operational efficiency, incident response, alert enrichment, triage automation, threat intelligence utilization, and AI-driven security operations enhancements. The Engineer will work closely with SOC Operations, Security Engineering, Security Consulting, and Leadership teams to deliver automation initiatives and operational improvements while supporting a globally distributed security environment. This is a permanently remote opportunity for candidates based in India, aligned primarily to USA Eastern Time (ET) business hours, with flexibility depending on operational requirements. Key Responsibilities - SOAR Engineering & Automation - Design, develop, implement, and maintain SOAR playbooks and automation workflows for SOC operations. - Build scalable security orchestration workflows for: - Alert triage - Automated enrichment - Threat intelligence correlation - Incident response - Containment workflows - Identity-based investigations - Case management - Reporting automation - Implement and maintain integrations between SOAR platforms and various security technologies using APIs, webhooks, SDKs, and custom connectors. - Develop automation logic to improve SOC efficiency, reduce analyst fatigue, and accelerate Mean Time to Respond (MTTR) and Mean Time to Resolve. - Support SOAR platform lifecycle management including upgrades, change management, testing, governance, RBAC, and operational maintenance. - Assist with SOAR platform administration, identity & access management, and environment hardening. - Security Platform Integrations - Hands-on experience integrating and automating workflows involving: - Microsoft Defender for Endpoint (MDE) - Microsoft Defender XDR - Microsoft Defender for Identity (MDI) - Microsoft Defender for Office 365 (MDO) - Microsoft Defender for Cloud Apps (MDCA) - Microsoft Purview - Microsoft Identity Protection / Entra ID - CrowdStrike Falcon - Threat Intelligence platforms - (Must have) SIEM platforms (Microsoft Sentinel & Defender XDR) - Graph API - Ticketing platforms (Datto Autotask preferred) - Email security solutions - Endpoint detection & response platforms - Identity and authentication platforms - Cloud security solutions - SOC Operations Enhancement - Work collaboratively with SOC Managers, SOC Team Leads, Analysts, and Security Consultants to identify automation opportunities. - Create operational enhancements to improve detection engineering, investigation workflows, escalation efficiency, and reporting. - Assist with scaling SOC operations using automation and AI-driven initiatives. - Support operational maturity improvements within the SOC environment. - Participate in incident response automation strategy discussions and implementation planning. - Contribute to SOC transformation initiatives focused on operational scalability and service optimization. - AI & Advanced Security Operations - Contribute to AI-enabled SOC initiatives and intelligent automation projects. - Assist in implementing AI orchestration and automation use cases within security operations. - Research and evaluate emerging AI and automation technologies relevant to cybersecurity operations. - Support initiatives focused on autonomous investigation workflows, enrichment intelligence, and analyst assistance capabilities. - Collaboration & Project Coordination - Coordinate automation initiatives with internal stakeholders and external vendors. - Work closely with SOAR vendors for implementation support, troubleshooting, optimization, and feature enablement. - Participate in project planning, implementation tracking, testing, and deployment activities. - Maintain technical documentation, workflow diagrams, integration references, and operational runbooks. - Support cross-functional cybersecurity projects and operational improvements. Qualifications - Bachelor’s Degree / Graduation in Computer Science, Information Technology, Cybersecurity, Engineering, or a related technical field is mandatory. - Relevant cybersecurity certifications and automation-focused certifications will be considered an added advantage. - 3–5 years of overall cybersecurity experience. - Proven hands-on experience with SOAR platforms in enterprise or MSSP environments. - Strong experience designing and implementing automation workflows from scratch. - Experience supporting Security Operations Center (SOC) environments. - Prior SOC Analyst experience is highly preferred. - Experience working within Managed Security Services Provider (MSSP) environments preferred. - Experience supporting or collaborating with US-based teams/vendors preferred. Technical Skills - Strong hands-on experience with SOAR technologies. - Experience with Torq SOAR preferred. - Strong understanding of: - Incident response workflows - SOC operations - Detection engineering - Security orchestration - Threat intelligence - API integrations - Authentication mechanisms - Identity-based security workflows - Experience integrating security tools using: - REST APIs - JSON - Webhooks - Python - PowerShell - Scripting/automation frameworks - Familiarity with SIEM platforms and alert correlation logic. - Experience with ticketing systems, preferably Datto Autotask. - Understanding endpoints, cloud, identity, and email security ecosystems. Preferred Qualifications - Experience implementing AI-driven SOC workflows. - Exposure to AI orchestration in cybersecurity operations. - Knowledge of security operations metrics and optimization strategies. - Experience with security automation governance and change management. - Exposure to cloud security platforms and SaaS security controls. - Familiarity with DevSecOps or infrastructure automation concepts. - Relevant cybersecurity certifications are advantageous like Security+, CySA+, GCIH, SC-200, AZ-500, SOAR platform certifications, Splunk / Microsoft certifications. Soft Skills & Work Style - Strong verbal and written communication skills with the ability to work effectively across technical and non-technical teams. - Excellent collaboration and stakeholder coordination skills across SOC Operations, Engineering, Consulting, Vendors, and Leadership teams. - Strong documentation and technical writing capabilities for workflows, SOPs, and operational procedures. - Ability to work independently in a remote-first, multicultural, and fast-paced MSSP environment. - Self-driven, proactive, and highly organized with strong ownership and accountability. - Strong analytical, troubleshooting, and problem-solving skills. - Comfortable managing multiple projects, priorities, and operational initiatives simultaneously. - Team-oriented mindset with the ability to operate effectively as an individual contributor. - Professional communication and coordination skills for working with US-based teams and vendors. - Adaptable and flexible to evolving operational and business requirements. Work Schedule & Environment - Primary alignment with USA Eastern Time (ET) business hours. - Permanently remote working opportunity within India. - Flexible working model based on operational requirements and project demands. - Fast-paced MSSP and cybersecurity operations environment. What Success Looks Like in This Role - Successful deployment and optimization of SOC automation workflows. - Measurable reduction in manual SOC effort and alert fatigue. - Improved operational efficiency and response timelines. - Reliable integration and orchestration across security ecosystems. - Contribution toward scalable, AI-enabled cybersecurity operations. - Strong collaboration with SOC leadership, analysts, engineering, and consulting teams. - Continuous innovation and operational enhancement within the security operations function.

Role Description As a Sr Advanced Cyb Sec Archt/Engr here at Honeywell, you will play a pivotal role in designing, implementing, and maintaining advanced cybersecurity solutions to protect our critical assets. You will collaborate with cross-functional teams to develop and execute robust cybersecurity strategies, ensuring the security and resilience of our digital infrastructure. - Impact the security posture of our organization by developing and implementing cutting-edge cybersecurity solutions. - Help safeguard our digital assets, ensuring compliance with industry standards and regulations. - Mitigate potential security risks. Company Description Honeywell helps organizations solve the world's most complex challenges in automation, the future of aviation and energy transition. As a trusted partner, we provide actionable solutions and innovation through our: - Aerospace Technologies - Building Automation - Energy and Sustainability Solutions - Industrial Automation business segments Powered by our Honeywell Forge software – that help make the world smarter, safer and more sustainable.

• Lead and Maintain the IT Compliance Program • Ensure Regulatory and Industry Standards Compliance • Support Business Processes • Provide Strategic Guidance • Deliver IT Compliance Reporting • Implement AI-Powered Compliance Operations

Our team members are at the heart of everything we do. At Cencora, we are united in our responsibility to create healthier futures, and every person here is essential to us being able to deliver on that purpose. If you want to make a difference at the center of health, come join our innovative company and help us improve the lives of people and animals everywhere. Apply today! Job Details Summary: The Senior Director of Enterprise Security Architecture (ESA) leads the definition, governance, and enforcement of enterprise-wide security architecture strategy for the enterprise. This leader is accountable for aligning cybersecurity architecture with business strategy, digital transformation, regulatory obligations, and risk appetite. The role oversees reference architectures, security design standards, architecture review boards (ARB), security requirements engineering, and integration with Enterprise Architecture (EA), Cloud, Data, AI, Infrastructure, and Application domains. This role is responsible for building strong partnerships with technology teams, other corporate support functions, and other Information Security organizations to protect the corporate brand, data, and assets and is responsible for the design, implementation, operation, and maintenance of an information security framework, processes, and systems, that protect the business, services, information and systems against unauthorized use, disclosure, modification, damage, and loss. The position partners closely with the CISO, other Information Security Sr. Leaders, and other Technology Leadership teams to establish a vision and strategy required to ensure scalable, measurable, and continuously improving defense capabilities across all security domains in collaboration with other information security domain leaders and partner organizations. Our employee experience is a strategic priority for our company. Our leaders are accountable for leading with purpose, fairness, and equity. They are responsible for building and developing diverse teams, maintaining a safe and inclusive environment, setting clear priorities, and holding self and team accountable for executing with excellence. Primary Responsibilities: - Define and maintain the enterprise security architecture vision and multi-year roadmap. - Align security architecture with corporate strategy, digital transformation, and technology modernization initiatives. - Establish target-state architectures incorporating Zero Trust principles in collaboration with other Information Security and Technology leaders. - Translate risk appetite into enforceable architectural guardrails. Develop and maintain standardized reference architectures for: - Cloud and hybrid infrastructure - Identity & Access Management - Data protection and privacy - Network segmentation - Application security - AI/GenAI security - OT/IoT (in partnership with OT sr. cybersecurity leadership) Additional Responsibilities: - Ensure security-by-design integration into SDLC and platform engineering models. - Govern architecture artifacts across global business units. - Chair or co-chair the Security Architecture Review Board (SARB). - Define security architecture review processes and risk exception workflows. - Establish measurable design assurance criteria. - Partner with Enterprise Architecture for integrated technology governance. - Translate regulatory and risk requirements into technical control standards. - Ensure compliance with global regulatory regimes (e.g., HIPAA, GDPR, SOX, FDA/GxP where applicable). - Maintain or enforce enterprise security standards library mapped to NIST, ISO, SOC 2, PCI, HIPAA, GDPR, etc. - Enable reusable security requirement models for programs and projects. - Drive automation of control validation and policy-as-code enforcement. - Support regulatory readiness across global jurisdictions. - Ensure architecture supports data residency and sovereignty obligations. - Collaborate with Legal, Privacy, and Compliance on emerging regulatory impacts. - Provide defensible architecture documentation for audit and regulatory review. - Lead security architecture assessments for acquisitions. - Define integration and divestiture security blueprints. - Support large-scale ERP, digital, AI, and cloud transformation programs. - Establish rapid risk assessment models for new technologies. - Establish KPIs, OKRs, and performance dashboards. - Track control design effectiveness and systemic risk reduction. - Integrate architecture insights with cyber analytics programs. - Report enterprise architecture risk posture to executive leadership. - Lead global team of security domain architects. - Define operating model across centralized and federated teams. - Establish architecture career paths and technical competency frameworks. - Enterprise financial management and planning experience. Qualifications: Education: - Master's Degree in Business Administration, Computer Science, Information Technology or any other related discipline or equivalent related experience. Preferred Certifications: - Certified Cloud Security Professional (CCSP) - Certified Information Systems Security Professional (CISSP) - Sherwood Applied Business Security Architecture (SABSA) - Open Group Architecture Framework (TOGAF) - Certified in Risk and Information Systems Control (CRISC) - Certification in Information Security Strategy Management (CISM) - Microsoft Certified: Cybersecurity Architect Expert (SC-100) - Information Technology Infrastructure Library (ITIL) - Offensive Security Certified Professional (OSCP) - Project Management Professional (PMP) Certification WORK EXPERIENCE: - 12+ years of directly-related or relevant experience with 8+ years in a managerial capacity, preferably in information security. SKILLS & KNOWLEDGE: Behavioral Skills: - Coaching and Mentoring - Creativity & Innovation - Decision Making - Leadership Skills - People Management - Planning - Risk-taking Technical Skills: - IT Risk Management - IT Controls - Cyber Attack Mitigation - Enterprise IT Management - Cloud Security - Network Security - Identity & Access Management - Application Security - Service Level Maintenance - Information Security Strategy Continuity - Threat Modelling - Information Security Strategy Standards (SOX, ISO 27001/27002, COBIT, ITIL, NIST, PCI) Tools Knowledge: - Security Tools - CSPM, CWPP, CDR, CNAPP, SIEM, EDR, Email Security Gateway, SOAR, Firewall, Anti-virus, Firewalls, VPN IDS/IPS, AV, proxies, etc. - Security Testing Tools - Open Source and COTS security tools - Threat Intelligence Tools - Vulnerability Testing Tools What Cencora offers We provide compensation, benefits, and resources that enable a highly inclusive culture and support our team members' ability to live with purpose every day. In addition to traditional offerings like medical, dental, and vision care, we also provide a comprehensive suite of benefits that focus on the physical, emotional, financial, and social aspects of wellness. This encompasses support for working families, which may include backup dependent care, adoption assistance, infertility coverage, family building support, behavioral health solutions, paid parental leave, and paid caregiver leave. To encourage your personal growth, we also offer a variety of training programs, professional development resources, and opportunities to participate in mentorship programs, employee resource groups, volunteer activities, and much more. For details, visit https://www.virtualfairhub.com/cencora Full time Equal Employment Opportunity Cencora is committed to providing equal employment opportunity without regard to race, color, religion, sex, sexual orientation, gender identity, genetic information, national origin, age, disability, veteran status or membership in any other class protected by federal, state or local law. The company's continued success depends on the full and effective utilization of qualified individuals. Therefore, harassment is prohibited and all matters related to recruiting, training, compensation, benefits, promotions and transfers comply with equal opportunity principles and are non-discriminatory. Cencora is committed to providing reasonable accommodations to individuals with disabilities during the employment process which are consistent with legal requirements. If you wish to request an accommodation while seeking employment, please call 888.692.2272 or email hrsc@cencora.com. We will make accommodation determinations on a request-by-request basis. Messages and emails regarding anything other than accommodations requests will not be returned Affiliated Companies Affiliated Companies: AmerisourceBergen Services Corporation