Sr Manager, Cyber Incident Response

Our team members are at the heart of everything we do. At Cencora, we are united in our responsibility to create healthier futures, and every person here is essential to us being able to deliver on that purpose. If you want to make a difference at the center of health, come join our innovative company and help us improve the lives of people and animals everywhere.

Apply today!

The Cyber Incident Response Senior Manager will play a key role in building and leading the Security Operations Center (SOC) in North America. This role is responsible for managing day-to-day incident response operations, coordinating investigations, and driving continuous improvements to detection and response capabilities. The Senior Manager will collaborate with global cyber defense teams to ensure timely containment, investigation, and remediation of security incidents.

This position requires strong technical expertise in incident response, SOC operations, and security tooling, combined with leadership skills to grow and develop a high-performing team in TX.

• Lead and manage the SOC team in TX, including hiring, training, mentoring, and performance management of analysts and responders.
• Oversee daily incident detection, analysis, containment, eradication, and recovery efforts.
• Serve as the escalation point for high-priority or complex cyber incidents, ensuring timely response and communication to global stakeholders.
• Develop and maintain incident response playbooks, runbooks, and standard operating procedures.
• Partner with global SOC teams to align processes, technology, and reporting standards.
• Collaborate with threat intelligence, vulnerability management, forensics, and insider threat teams to drive a unified defense strategy.
• Manage relationships with key stakeholders in IT, Legal, Compliance, and Corporate Security during incident investigations.
• Provide executive-level reporting and updates on incident trends, SOC performance metrics, and operational risks.
• Ensure incident response activities comply with global regulatory and organizational requirements.
• Drive continuous improvement of detection rules, automation, and response workflows in the SOC.

• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related discipline required;
  Master's degree preferred.
• Strong knowledge of incident response methodology, SOC operations, and security frameworks (e.g., NIST, MITRE ATT&CK).
• Familiarity with global privacy and compliance requirements relevant to incident handling.

• GIAC Certified Incident Handler (GCIH)
• GIAC Certified Intrusion Analyst (GCIA)
• GIAC Certified Forensic Analyst (GCFA)
• Certified Ethical Hacker (CEH)
• Certified Information Systems Security Professional (CISSP)

• 8-10 years of progressive experience in cybersecurity, with at least 5 years focused on SOC operations or incident response.
• Minimum of 3 years in a people management role, leading incident response or SOC analyst teams.
• Hands‑on experience with SIEM, EDR, SOAR, and forensic tools (e.g., Splunk, Crowd Strike, Microsoft Defender, etc).
• Proven experience responding to advanced threats, ransomware, phishing campaigns, and insider incidents.
• Demonstrated success in building or scaling SOC teams in a global enterprise environment.
• Strong communication skills, with the ability to brief technical and non‑technical stakeholders during incidents.

We provide compensation, benefits, and resources that enable a highly inclusive culture and support our team members' ability to live with purpose every day. In addition to traditional offerings like medical, dental, and vision care, we also provide a comprehensive suite of benefits that focus on the physical, emotional, financial, and social aspects of wellness. This encompasses support for working families, which may include backup dependent care, adoption assistance, infertility coverage, family building support, behavioral health solutions, paid parental leave, and paid caregiver leave.

To encourage your personal growth, we also offer a variety of training…