McKesson Senior Cloud Security Architect in Scottsdale, Arizona
McKesson is in the business of better health and we touch the lives of patients in virtually every aspect of healthcare. We partner with payors, hospitals, physician offices, pharmacies, pharmaceutical companies and others across the spectrum of care to build healthier organizations that deliver better care to patients in every setting. We believe in the importance of strong, vital organizations because we know that patients can only be healthy when our system is healthy.
Every single McKesson employee contributes to our mission—by joining McKesson you act as a catalyst in a chain of events that helps millions of people all over the globe. Talented, compassionate people are the future of our company—and of healthcare. At McKesson, you’ll collaborate on the products and solutions that help us carry out our mission to improve lives and advance healthcare. Working here is your opportunity to shape an industry that’s vital to us all.
We understand the importance of a system that works together. Your expertise, drive and passion can help us improve everything we touch, from providers to payors to pharmacies. Join our team of leaders to begin a rewarding career. Wherever you contribute here at McKesson, you will have the ability to make a real impact in the lives of others.
This position is part of McKesson’s Information Security and Risk Management (ISRM) team and is responsible for building and promoting information security capabilities and compliance for public cloud enabled infrastructure and cloud enabled applications across Enterprise IT organizations .
As a McKesson Information Security Architect, you will be a key member of our ISRM team. The candidate will have a deep background in keys aspect of security architecture needed to enable and securely deliver infrastructure and applications hosted within public cloud providers space. S/he will work collaboratively with the Enterprise Architecture team and Global ISRM Service owners to ensure solutions and services are adopted effectively in business units. The position works closely with stakeholders in Infrastructure, Cloud Enablement and Adoption, Operations, Applications, and Compliance management to ensure alignment to our Global service capabilities.
This position will also support and promote global governance and control measures for public cloud usage, process improvements and efficiencies in support of the global organisation in alignment with Global IT services.
S/he will be an enthusiastic advocate of the globally-led Information Protection Strategy, ensuring that all global initiates and services are appropriately adopted in the market, following our strategic principle of global oversight, local insight.
Responsibilities will include:
Develop and maintain a comprehensive vision and strategy for cloud security architecture to accomplish department objectives of protecting McKesson systems and data hosted in the cloud
Understand, research, design and develop secure implementations of technology solutions that maximize the use of Microsoft Azure services
End to end analysis, requirements development, design, and governance of the security processes and tools ecosystem within public cloud space, partnering with IT and business colleagues as appropriate
Understands the drivers and requirements of the business and translates those into technology solutions, serving as a liaison between technical teams and management
Security technical and Information Protection leadership for fine grained solutions including developing secure and sustainable security reference architectures where applicable
Identify and document critical path decisions, make recommendations, and influence program leaders / business process owners
Able to communicate processes’ and tool automation needs to Automation Team to drive infrastructure as a code mentality
Participate in Scaled Agile planning and activities deploying enterprise program creating Global Network Security Services within McKesson, identify customer needs, converting those into functional requirements and creating program roadmap, driving objectives and managing program backlog
12 years’ experience in software engineering and/or software architecture
Experience in cloud security architecture design, documentation and best practices; understand enterprise architecture frameworks and can independently author and assess technical architectures
Proven experience working in engineering and / or architecture capacity supporting network security and cloud security technologies and capabilities ( Eg. Azure Security Center, Network Security Groups, security Network virtual appliances hosted, Advanced Threat Detection for Azure, Azure Security Policy Manager, OMS, other native Azure capabilities)
Detailed understanding of attack vectors, current threats, and remediation strategies available for public cloud space; experience with computer forensics practices and procedures, basic investigations, and evidence handling is preferred
Detailed understanding of control frameworks and reference architectures such as CSA CCM, CSA TCI, NIST Cloud Computing
Experience with compliance regulations/laws, and standards (e.g., GDPR, HIPAA, ITIL, SOX)
Additional Knowledge & Skills:
Azure Solutions Architect Certification (preferred but not required with demonstrated professional work experience)
Cloud Security DevOps technical courses and skills are a great asset
Knowledge of healthcare, privacy, and financial compliance regulations
Experience of working with SAFe (Scaled Agile Framework for the enterprise)
Experience with law enforcement, defense, or intelligence community
Cloud Provider infrastructure security engineering knowledge and experience (MS Azure preferred, GCP and AWS are an asset)
Strong analytical and troubleshooting skills with an understanding of IT business operations and information security
Strong management skills planning, organizing, and leading architecture development efforts
Strong interpersonal and communications skills to build/ maintain ongoing business relationships
Self-Starter that requires minimal supervision, multi-tasks effectively, and can provide oversight and coaching to others for any assigned projects or tasks
Cloud Cyber Security related qualification(s) such as CCSP, CISSP, PCS, CCSK preferred
4-year degree in computer science or related field or equivalent experience
General Office Demands
Benefits & Company Statement:
McKesson believes superior performance – individual and team – that helps us drive innovations and solutions to promote better health should be recognized and rewarded. We provide a competitive compensation program to attract, retain and motivate a high-performance workforce, and it’s flexible enough to meet the different needs of our diverse employee population.
We are in the business of better health and we touch the lives of patients in virtually every aspect of healthcare. We partner with payers, hospitals, physician offices, pharmacies, pharmaceutical companies and others across the spectrum of care to build healthier organizations that deliver better care to patients in every setting.
But we can’t do it without you. Every single McKesson employee contributes to our mission—whatever your title, whatever your role, you act as a catalyst in a chain of events that helps millions of people all over the globe. Talented, compassionate people are the future of our company—and of healthcare. At McKesson, you’ll collaborate on the products and solutions that help us carry out our mission to improve lives and advance healthcare. Working here is your opportunity to shape an industry that’s vital to us all.
McKesson is an equal opportunity and affirmative action employer -minorities/females/veterans/persons with disabilities.
Qualified applicants will not be disqualified from consideration for employment based upon criminal history.
No agencies please
Organization: McKesson Corporate
Title: Senior Cloud Security Architect
Requisition ID: 18002454