Cybersecurity SIEM Engineer

Headquartered in Dublin, Ohio, Cardinal Health, Inc. (NYSE : CAH) is a global, integrated healthcare services and products company connecting patients, providers, payers, pharmacists and manufacturers for integrated care coordination and better patient management. Backed by nearly 100 years of experience, with more than 50,000 employees in nearly 60 countries, Cardinal Health ranks among the top 20 on the Fortune 500.

Cardinal Health's Information Security team aims to be a world-class cybersecurity and risk management organization that enables Cardinal Health to be healthcare's most trusted partner. We are a remote-first team and are excited to offer full-time remote opportunities. We currently have a full-time career opening for an SIEM Engineer in our Cybersecurity Platform Engineering team.

We boast tremendous opportunities to grow and apply technical skills to meet organizational needs, empowering talented team members who mentor and uplift others, led by leaders with a maniacal focus on employee development and well-being, dedicated training programs, and a fun and collaborative atmosphere.

This role is responsible for onboarding and normalizing data sources from a variety of platforms, developing custom content including dashboards, apps, and addons for our SIEM platform. The right person for this role will be an individual with proven experience onboarding data and developing content for Splunk with a strong passion for Cybersecurity.

About the Team :

The Cybersecurity Platform Engineering team is the convergence between systems administration and cybersecurity to provide consistently reliable and available security platforms, while improving the operational efficiency and detection capabilities of cybersecurity operations through integrations, automation, and continuous improvement. We manage a wide range of cybersecurity platforms, build and manage security infrastructure, automate processes and develop custom integrations.

Responsibilities :

• Developing content, onboarding data, and integrating systems with our Security Information Event Management (SIEM)
• Building cloud native infrastructure including Linux servers, containers, and storage buckets
• Integration of platforms through APIs
• Continuous optimization, tuning, and monitoring of platforms
• Working closely with Cyber Threat & Response
• Executing projects to improve the cybersecurity maturity of the organization
• Troubleshooting issues affecting internal customers
• Participation in POC / RFP by testing solutions or building test environments
• Mentor other members of the team

Qualifications

Required

Preferred (the following are a plus but not required)

Anticipated salary range : $93,500 - $140,280

Bonus eligible : No

Benefits : Cardinal Health offers a wide variety of benefits and programs to support health and well-being.

Application window anticipated to close : 9 / 15 / 2025

The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity.

Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply.

Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity / expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law.