McKesson Systems Engineer - IAM in Alpharetta, Georgia
McKesson is in the business of better health and we touch the lives of patients in virtually every aspect of healthcare. We partner with payors, hospitals, physician offices, pharmacies, pharmaceutical companies and others across the spectrum of care to build healthier organizations that deliver better care to patients in every setting. We believe in the importance of strong, vital organizations because we know that patients can only be healthy when our system is healthy.
Every single McKesson employee contributes to our mission—by joining McKesson you act as a catalyst in a chain of events that helps millions of people all over the globe. Talented, compassionate people are the future of our company—and of healthcare. At McKesson, you’ll collaborate on the products and solutions that help us carry out our mission to improve lives and advance healthcare. Working here is your opportunity to shape an industry that’s vital to us all.
We understand the importance of a system that works together. Your expertise, drive and passion can help us improve everything we touch, from providers to payors to pharmacies. Join our team of leaders to begin a rewarding career.
Wherever you contribute here at McKesson, you will have the ability to make a real impact in the lives of others.
We are looking for a Senior Systems Engineer – IAM to join our Digital Identity Services organization in either our Scottsdale, AZ, Alpharetta GA, or San Francisco, CA office.
The Digital Identity Services organization is responsible for the architecture, design, implementation and support of IAM tools and technologies that protect McKesson’s critical IT assets, including customer-facing and workforce applications. The Senior IAM Engineer would architect, design and implement Identity Data Services as well as a focus on identity governance and administration. The candidate should have extensive experience with identity management concepts and tools, implementation, and integration with various data sources and application stacks. Responsibilities will include interacting with client technical and functional staff and preferably have software development skills.
Key areas of responsibility include:
User Access Review (UAR)
Architect, design, and support technologies that implement the UAR functions, such as Saviynt, CA compliance manager, and Oracle compliance manager
Expert understanding of databases and data modeling including SQL
User Access Governance
Architect, design, and support the user access entitlement structure and provide feedback to the application team to help align the application with the appropriate recommended technical practices
Provide consulting on the suite of available IAM solutions supported by the organization
Provided IAM feedback to the organization to help model recommended practices through the product selection and deployment processes
Support the overall cyber security program by validation of existing controls related to access review and governance
Design the tools and configuration related to the implementation of Identity Data Services.
Expertise with identity management concepts, implementation, and integration with various data sources.
Interaction with client technical and functional staff, bridging the gap between business and technical disciplines.
Manage customer support cases: promptly reply to customers, collect customer technical information, perform data analysis and cleanup
Provide technical consulting to customers via telephone/email/on-line meetings. Be able to explain complex technical concepts, both at high and low levels
Develop in-depth knowledge of Virtual Directory, Meta Directory and other IAM technologies that interact with them such as directory servers, databases and networking tools
Document and report issues to vendor solutions support portal; ensure issues resolved
Provide 3 rd level production support to identity management systems developed
Very proficient running various IAM tools with experience with Windows and Linux O/S
6 years of experience in administering security controls in an organization and as a Senior member of an IAM team
Experience in analysis and design work, with potential ability to develop and communicate architectural concepts, end state vision, and technology roadmaps.
Experience with the following systems and tools from design thru implementation:
LDAP V3 directories: Microsoft Active Directory, OpenDJ, OpenLDAP
Virtual Directory technologies: Radiant Logic VDS
IAM Governance products such as Saviynt, Sailpoint, or Oracle Identity Governance
PingFederate Federated Single Sign on (SSO)
Solid understanding of current web and web application servers.
Experience with relational Databases such as MySQL, Oracle, Microsoft SQL Server
Administrative experience in Windows and Linux operating systems
Understanding of architecture concepts, large system development (particularly web-based .Net and/or Java/J2EE).
Knowledge of system, network, and architecture security best practices
Understanding of one or more control frameworks such as NIST, HIPAA-HITECH, SSAE 16, PCI, HITRUST, ISO 27001, etc. Solid understanding of SOX and other regulations related to Identity and Access Management including GDPR.
Experience on ETL (extract, transformation, loading) tools from IBM, SAP or Informatica
Strong Project and Time Management skills
Strong customer service and communication skills
Strong interpersonal and influencing skills
Able to exercise professional judgment within defined policies and procedures
Ability to mentor junior staff and be a technical leader
Additional Knowledge & Skills
Experience with cloud-based Identity services such as Microsoft Azure AD.
Experience in application security, e.g. OAuth, multi-factor authentication, and PKI
Knowledge of OWASP top 10 security issues for web/ mobile and remediation patterns.
Understanding of information security and risk management challenges, issues mitigations and remediation.
Familiar with healthcare, privacy, or financial compliance regulations and IT and security frameworks and standards
Firm understanding of REST API architectural style
Programming experience in SQL, tuning and optimization.
Batch file and Shell scripting
A professional certification in an information security domain such as CISSP, CISM, or CISA
4-year degree in computer science or related field or equivalent experience
General Office Demands
Benefits & Company Statement
McKesson believes superior performance – individual and team – that helps us drive innovations and solutions to promote better health should be recognized and rewarded. We provide a competitive compensation program to attract, retain and motivate a high-performance workforce, and it’s flexible enough to meet the different needs of our diverse employee population.
We are in the business of better health and we touch the lives of patients in virtually every aspect of healthcare. We partner with payers, hospitals, physician offices, pharmacies, pharmaceutical companies and others across the spectrum of care to build healthier organizations that deliver better care to patients in every setting.
But we can’t do it without you. Every single McKesson employee contributes to our mission—whatever your title, whatever your role, you act as a catalyst in a chain of events that helps millions of people all over the globe. Talented, compassionate people are the future of our company—and of healthcare. At McKesson, you’ll collaborate on the products and solutions that help us carry out our mission to improve lives and advance healthcare. Working here is your opportunity to shape an industry that’s vital to us all.
McKesson is an equal opportunity and affirmative action employer – minorities/females/veterans/persons with disabilities.
Qualified applicants will not be disqualified from consideration for employment based upon criminal history.
No agencies please.
Organization: McKesson Corporate
Title: Systems Engineer - IAM
Requisition ID: 18004644
Other Locations: United States-Arizona-Scottsdale, United States-California-San Francisco