McKesson Database Security Engineer in Scottsdale, Arizona

McKesson is in the business of better health and we touch the lives of patients in virtually every aspect of healthcare. We partner with payors, hospitals, physician offices, pharmacies, pharmaceutical companies and others across the spectrum of care to build healthier organizations that deliver better care to patients in every setting. We believe in the importance of strong, vital organizations because we know that patients can only be healthy when our system is healthy.

Every single McKesson employee contributes to our mission—by joining McKesson you act as a catalyst in a chain of events that helps millions of people all over the globe. Talented, compassionate people are the future of our company—and of healthcare. At McKesson, you’ll collaborate on the products and solutions that help us carry out our mission to improve lives and advance healthcare. Working here is your opportunity to shape an industry that’s vital to us all.

We understand the importance of a system that works together. Your expertise, drive and passion can help us improve everything we touch, from providers to payors to pharmacies. Join our team of leaders to begin a rewarding career. Wherever you contribute here at McKesson, you will have the ability to make a real impact in the lives of others.

This position will be responsible for delivering world-class security systems and tools management related to the Database Activity Monitoring security space. The role will provide guidance to database and security teams to optimize the security value of the solution. They will also work with other engineers and business units to help spec, build, administer/configure, and maintain critical preventive and detective security infrastructure related to McKesson’s database security infrastructure.

Position Description:

McKesson has embarked on an important mission to become the leader in cybersecurity for global healthcare. We are making significant investments to enhance our capabilities through talent development, resource levels, process maturity, and technology enablement.

As Database Security Engineer, you will be a key component of our team. This position will be responsible for delivering highly available and scalable database security infrastructure across on prem and cloud environments for a very large enterprise. The ideal candidate has deep technical security knowledge/expertise, systems management and administration experience, previous work experience with large projects, good oral and written communication skills with a proven track record with service management skills.

Responsibilities include:

  • Develops and executes security controls, defenses and countermeasures to intercept and prevent internal or external attacks or attempts to infiltrate company systems

  • Researches attempted and/or successful efforts to compromise systems security and designs countermeasures

  • Monitors, maintains and provisions the hardware, and software to support the database activity monitoring solutions and other database security services including, key management and encryption

  • Insuring the overall health of the system is kept up to date including but not limited to patching, updating and configuring and maintaining the system

  • Administers security policies to control physical and virtual access to databases, encryption of sensitive and confidential data, and software patching

  • Security scans including database vulnerability tests, data classification, user rights and other scans and reports to support the management of the database security across the enterprise

  • Provides advice on tuning the solutions or providing additional solutions for the database security space

  • Capacity management for database security solutions to insure performance and scalability and advice management on the need for investment in new hardware and/or software required to meet new regulatory functions or to handle the expected load increases

  • Provides information to management and or the iSOC regarding confidential investigations and forensic evidence gathering via the database security solution. As well as the negative impact on the business caused by theft, destruction, alteration, or denial of access to information

  • Engage in solution deployment activities with the system application and database owner

Information Security Compliance, Design & Administration:

  • Monitors and administers information security processes and policies

  • Completes customer and vendor assurance projects

  • Works with systems or applications teams to understand compliance requirements

  • Coordinates and analyzes compliance with regulations

  • Analyzes emerging technology trends with security vendors and subject matter experts

  • Designs and architect’s new information security infrastructure solutions

  • Designs and/or adapts security policies

Minimum Requirements:

4 years’ experience in administering security controls in an organization

Critical Skills:

  • Minimum of 4 years’ experience in cybersecurity services, security engineering, other IT, and/or technical risk management

  • 2 years’ experience of database security tool sets and processes (database activity monitoring and encryption) experience, especially Imperva Securesphere DAM and Vormetric Data Encryption

  • Knowledge of Windows and Linux administration

Additional Knowledge & Skills:

  • Knowledge of industry specific, healthcare sector regulations appropriate for business unit supported (e.g. HIPAA)

  • Data encryption standards as well as key management

  • Relational and Non-Relational Database Administration as well as database languages such as SQL

  • Security certifications such as CISSP, CEH, CMA are preferred but not required

  • Familiarity with the security body of knowledge

  • Familiarity with the Safe/Agile methodology and framework

  • Strong interpersonal and communications skills to build/ maintain ongoing business relationships

Education:

4-year degree in computer science or related field or equivalent experience

Physical Requirements:

General Office Demands

Benefits & Company Statement:

McKesson believes superior performance – individual and team – that helps us drive innovations and solutions to promote better health should be recognized and rewarded. We provide a competitive compensation program to attract, retain and motivate a high-performance workforce, and it’s flexible enough to meet the different needs of our diverse employee population.

We are in the business of better health and we touch the lives of patients in virtually every aspect of healthcare. We partner with payers, hospitals, physician offices, pharmacies, pharmaceutical companies and others across the spectrum of care to build healthier organizations that deliver better care to patients in every setting.

But we can’t do it without you. Every single McKesson employee contributes to our mission—whatever your title, whatever your role, you act as a catalyst in a chain of events that helps millions of people all over the globe. Talented, compassionate people are the future of our company—and of healthcare. At McKesson, you’ll collaborate on the products and solutions that help us carry out our mission to improve lives and advance healthcare. Working here is your opportunity to shape an industry that’s vital to us all.

McKesson is an equal opportunity and affirmative action employer – minorities/females/veterans/persons with disabilities.

Qualified applicants will not be disqualified from consideration for employment based upon criminal history.

Agency Statement:

No agencies please

Job: Technology

Organization: McKesson Corporate

Title: Database Security Engineer

Location: Arizona-Scottsdale

Requisition ID: 18005215

Other Locations: United States-Georgia-Alpharetta