Engineer Information Security And Risk - Cyber Threat Intelligence

What Information Security And Risk Contributes To Cardinal Health

Information Technology oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value.

Information Security and Risk develops, implements, and enforces security controls to protect the organizations technology assets from intentional or inadvertent modification, disclosure or destruction. This job family develops system back-up and disaster recovery plans. Information Technology also conducts incident response, threat management, vulnerability scanning, virus management and intrusion detection and completes risk assessments.

About The Role

As a P3 Engineer within the Cyber Threat Intelligence (CTI) team, you will support a Fortune 15 healthcare enterprise in identifying, analyzing, and mitigating threats to the organization’s digital presence and global operations. This role will focus heavily on Brand Monitoring and Geopolitical Intelligence, while also contributing to other CTI functions such as URL Whitelisting, Threat Research, and Threat Hunting.

You will work closely with global CTI analysts, security engineers, and business stakeholders to deliver actionable intelligence that protects the organization’s reputation, assets, and people.

Key Responsibilities

• Monitor and analyze digital platforms, social media, and open-source channels for brand misuse, impersonation, fraud, and reputational threats.
• Track geopolitical developments and assess their potential impact on business operations, supply chains, and personnel safety.
• Conduct OSINT investigations to support threat assessments and incident response.
• Collaborate with internal stakeholders to escalate and mitigate brand-related threats.
• Support the CTI team in URL whitelisting reviews, threat research, and intelligence production.
• Contribute to the development of threat models, risk assessments, and strategic intelligence reports.
• Maintain documentation, metrics, and dashboards to support CTI program objectives.
• Assist in tuning and optimizing threat intelligence tools and platforms.
  
  

• Bachelor’s degree in Cybersecurity, Political Science, International Relations, or a related field; or equivalent work experience.
• 3+ years of experience in threat intelligence, brand protection, or geopolitical analysis.
• Strong OSINT skills and familiarity with tools such as Anomali, Splunk, CrowdStrike or similar.
• Experience with social media monitoring, dark web research, and digital risk protection platforms.
• Excellent analytical, writing, and communication skills in English.
• Ability to work independently and collaboratively in a remote, global team environment.
  
  

• Experience in the healthcare or pharmaceutical sector.
• Familiarity with the MITRE ATT&CK framework and threat actor profiling.
• Exposure to SIEM platforms (e.g., Splunk) and scripting languages (e.g., Python).
• Understanding of brand enforcement workflows and takedown procedures.
• Knowledge of geopolitical risk frameworks and regional threat landscapes.
  
  

• Opportunity to work with a global cybersecurity team in a mission-critical industry.
• Exposure to advanced threat intelligence tools and methodologies.
• Professional development and training in CTI, OSINT, and digital risk protection.
• A collaborative and inclusive work culture with global impact.