McKesson Systems Engineer - IAM in Alpharetta, Georgia

McKesson is in the business of better health and we touch the lives of patients in virtually every aspect of healthcare. We partner with payors, hospitals, physician offices, pharmacies, pharmaceutical companies and others across the spectrum of care to build healthier organizations that deliver better care to patients in every setting. We believe in the importance of strong, vital organizations because we know that patients can only be healthy when our system is healthy.

Every single McKesson employee contributes to our mission—by joining McKesson you act as a catalyst in a chain of events that helps millions of people all over the globe. Talented, compassionate people are the future of our company—and of healthcare. At McKesson, you’ll collaborate on the products and solutions that help us carry out our mission to improve lives and advance healthcare. Working here is your opportunity to shape an industry that’s vital to us all.

We understand the importance of a system that works together. Your expertise, drive and passion can help us improve everything we touch, from providers to payors to pharmacies. Join our team of leaders to begin a rewarding career.

Wherever you contribute here at McKesson, you will have the ability to make a real impact in the lives of others.

Current Need

We are looking for a Senior Systems Engineer – IAM to join our Digital Identity Services organization in either our Scottsdale, AZ, Alpharetta GA, or San Francisco, CA office.

The Digital Identity Services organization is responsible for the architecture, design, implementation and support of IAM tools and technologies that protect McKesson’s critical IT assets, including customer-facing and workforce applications. The Senior IAM Engineer would architect, design and implement Identity Data Services as well as a focus on identity governance and administration. The candidate should have extensive experience with identity management concepts and tools, implementation, and integration with various data sources and application stacks. Responsibilities will include interacting with client technical and functional staff and preferably have software development skills.

Position Description

Key areas of responsibility include:

  • User Access Review (UAR)

  • Architect, design, and support technologies that implement the UAR functions, such as Saviynt, CA compliance manager, and Oracle compliance manager

  • Expert understanding of databases and data modeling including SQL

  • User Access Governance

  • Architect, design, and support the user access entitlement structure and provide feedback to the application team to help align the application with the appropriate recommended technical practices

  • Provide consulting on the suite of available IAM solutions supported by the organization

  • Provided IAM feedback to the organization to help model recommended practices through the product selection and deployment processes

  • Support the overall cyber security program by validation of existing controls related to access review and governance

  • Design the tools and configuration related to the implementation of Identity Data Services.

  • Expertise with identity management concepts, implementation, and integration with various data sources.

  • Interaction with client technical and functional staff, bridging the gap between business and technical disciplines.

  • Manage customer support cases: promptly reply to customers, collect customer technical information, perform data analysis and cleanup

  • Provide technical consulting to customers via telephone/email/on-line meetings. Be able to explain complex technical concepts, both at high and low levels

  • Develop in-depth knowledge of Virtual Directory, Meta Directory and other IAM technologies that interact with them such as directory servers, databases and networking tools

  • Document and report issues to vendor solutions support portal; ensure issues resolved

  • Provide 3 rd level production support to identity management systems developed

  • Very proficient running various IAM tools with experience with Windows and Linux O/S

Minimum Requirements

6 years of experience in administering security controls in an organization and as a Senior member of an IAM team

Critical Skills

  • Experience in analysis and design work, with potential ability to develop and communicate architectural concepts, end state vision, and technology roadmaps.

  • Experience with the following systems and tools from design thru implementation:

  • LDAP V3 directories: Microsoft Active Directory, OpenDJ, OpenLDAP

  • Virtual Directory technologies: Radiant Logic VDS

  • IAM Governance products such as Saviynt, Sailpoint, or Oracle Identity Governance

  • PingFederate Federated Single Sign on (SSO)

  • Solid understanding of current web and web application servers.

  • Experience with relational Databases such as MySQL, Oracle, Microsoft SQL Server

  • Administrative experience in Windows and Linux operating systems

  • Understanding of architecture concepts, large system development (particularly web-based .Net and/or Java/J2EE).

  • Knowledge of system, network, and architecture security best practices

  • Understanding of one or more control frameworks such as NIST, HIPAA-HITECH, SSAE 16, PCI, HITRUST, ISO 27001, etc. Solid understanding of SOX and other regulations related to Identity and Access Management including GDPR.

  • Experience on ETL (extract, transformation, loading) tools from IBM, SAP or Informatica

  • Strong Project and Time Management skills

  • Strong customer service and communication skills

  • Strong interpersonal and influencing skills

  • Able to exercise professional judgment within defined policies and procedures

  • Ability to mentor junior staff and be a technical leader

Additional Knowledge & Skills

  • Experience with cloud-based Identity services such as Microsoft Azure AD.

  • Experience in application security, e.g. OAuth, multi-factor authentication, and PKI

  • Knowledge of OWASP top 10 security issues for web/ mobile and remediation patterns.

  • Understanding of information security and risk management challenges, issues mitigations and remediation.

  • Familiar with healthcare, privacy, or financial compliance regulations and IT and security frameworks and standards

  • Firm understanding of REST API architectural style

  • Programming experience in SQL, tuning and optimization.

  • Batch file and Shell scripting

  • A professional certification in an information security domain such as CISSP, CISM, or CISA

Education

4-year degree in computer science or related field or equivalent experience

Physical Requirements

General Office Demands

Benefits & Company Statement

McKesson believes superior performance – individual and team – that helps us drive innovations and solutions to promote better health should be recognized and rewarded. We provide a competitive compensation program to attract, retain and motivate a high-performance workforce, and it’s flexible enough to meet the different needs of our diverse employee population.

We are in the business of better health and we touch the lives of patients in virtually every aspect of healthcare. We partner with payers, hospitals, physician offices, pharmacies, pharmaceutical companies and others across the spectrum of care to build healthier organizations that deliver better care to patients in every setting.

But we can’t do it without you. Every single McKesson employee contributes to our mission—whatever your title, whatever your role, you act as a catalyst in a chain of events that helps millions of people all over the globe. Talented, compassionate people are the future of our company—and of healthcare. At McKesson, you’ll collaborate on the products and solutions that help us carry out our mission to improve lives and advance healthcare. Working here is your opportunity to shape an industry that’s vital to us all.

McKesson is an equal opportunity and affirmative action employer – minorities/females/veterans/persons with disabilities.

Qualified applicants will not be disqualified from consideration for employment based upon criminal history.

Agency Statement

No agencies please.

Job: Technology

Organization: McKesson Corporate

Title: Systems Engineer - IAM

Location: Georgia-Alpharetta

Requisition ID: 18004644

Other Locations: United States-Arizona-Scottsdale, United States-California-San Francisco