McKesson Senior Security Architect in Scottsdale, Arizona

McKesson Corporation (NYSE: MCK) is a leading healthcare services company dedicated to delivering the vital medicines, supplies and information technologies and services that enable the healthcare industry to provide patients better, safer care. McKesson is in the business of better health and we touch the lives of patients in virtually every aspect of healthcare. We partner with health care providers, hospitals, physician offices, pharmacies, pharmaceutical companies and others across the spectrum of care to build healthier organizations that deliver better care to patients in every setting. We believe in the importance of strong, vital organizations because we know that patients can only be healthy when our system is healthy.

Every single McKesson employee contributes to our mission—by joining McKesson you act as a catalyst in a chain of events that helps millions of people all over the globe. Talented, compassionate people are the future of our company—and of healthcare. At McKesson, you’ll collaborate on the products and solutions that help us carry out our mission to improve lives and advance healthcare. Working here is your opportunity to shape an industry that’s vital to us all.

We understand the importance of a system that works together. Your expertise, drive and passion can help us improve everything we touch, from providers to payors to pharmacies. Join our team of leaders to begin a rewarding career. Wherever you contribute here at McKesson, you will have the ability to make a real impact in the lives of others.

McKesson operates in 14 countries in Europe, serving over 2 million customers every day at about 2,200 pharmacies of its own and over 4,300 participants in brand partnership schemes. The proactive and preventive approach ensures that patients receive the products and support that they require for optimum care. With more than 38,000 colleagues and with 134 wholesale branches, McKesson Europe supplies 65,000 pharmacies and hospitals every day with up to 130,000 pharmaceutical products. The services benefit a patient pool of about 15 million per day.

McKesson Corporation reported revenue of $190 billion in FY2016 and was ranked #5 on the Fortune 500 in 2017.

Position Description:

This position is part of McKesson’s Information Security and Risk Management (ISRM) Security Architecture team and is responsible for building and promoting information security capabilities and compliance for the enterprise network and applications across McKesson Corporation.

As a McKesson Information Security Architect, you will be a key member of our ISRM team Security Architecture team. The candidate will have a deep background in keys aspect of security architecture needed to enable and securely deliver infrastructure and applications hosted within McKesson infrastructure and public cloud providers space. S/he will work collaboratively with the Enterprise Architecture team, ISRM Security Architecture and Global ISRM Service owners to ensure solutions and services are designed and adopted effectively by McKesson business units. The position works closely with stakeholders in Infrastructure, Network Engineering, Operations, Applications, and Compliance management to ensure alignment to our Global service capabilities.

S/he will be an enthusiastic advocate of the globally-led Information Protection Strategy, ensuring that all global initiatives and services are appropriately adopted by Business Units, following our strategic principle of global oversight, local insight and applying outside in thinking approach.

Responsibilities will include:

  • Develop and maintain a comprehensive vision and strategy for network security architecture to accomplish department objectives of protecting McKesson systems and data hosted in the McKesson data centers and the cloud

  • Understand, research, design and develop secure implementations of technology solutions, and oversee large rollouts of the same

  • End to end analysis, requirements development, design, and governance of the security processes and tools ecosystem within McKesson Technology infrastructure, partnering with IT and business colleagues as appropriate

  • Understands the drivers and requirements of the business and translates those into technology solutions, serving as a liaison between technical teams and management

  • Security technical and Information Protection leadership for fine grained solutions including developing secure and sustainable security reference architectures where applicable

  • Identify and document critical path decisions, make recommendations, and influence program leaders / business process owners

  • Able to communicate processes’ and tool automation needs to Automation Team to drive infrastructure as a code mentality

  • Participate in Scaled Agile planning and activities deploying enterprise program creating Global Network Security Services within McKesson, identify customer needs, converting those into functional requirements and creating program roadmap, driving objectives and managing program backlog

Minimum Requirements:

12 years’ experience in software engineering and/or software architecture

Critical Skills:

  • Experience in network security architecture design, documentation and best practices; understand enterprise architecture frameworks and can independently author and assess technical architectures

  • Proven experience working in engineering and / or architecture capacity supporting network security and capabilities such as Firewalls, Intrusion Detection and Prevention Systems, Proxies, DLP, Network Deception, micro-segmentation, Network Access Control (NAC), wired and wireless security

  • Deep level understanding of TCP/IP (Transmission Control Protocol/Internet Protocol) networking and the OSI (Open Systems Interconnection) 7-layer model

  • Detailed understanding of attack vectors, current threats, and their remediation strategies;

  • Strong time management skills planning, organizing, and leading architecture development efforts

  • Strong interpersonal and communications skills to build/ maintain ongoing business relationships

  • Self-Starter that requires minimal supervision, multi-tasks effectively, and can provide oversight and coaching to others for any assigned projects or tasks

  • Detailed understanding of control frameworks and reference architectures such as NIST, Cybersecurity kill chain

  • Understanding of various compliance regulations/laws, and standards (e.g., PCI DSS, HIPAA)

  • Able to stay on top of latest cybersecurity developments and next gen platforms

Additional Knowledge & Skills:

  • Knowledge of healthcare, privacy, and financial compliance regulations are a great asset

  • Experience of working with SAFe (Scaled Agile Framework for the enterprise)

  • Previous hands-on network security engineering knowledge and experience, implementing and operationalizing security toolsets

  • Strong analytical and troubleshooting skills with an understanding of IT business operations and information security

  • Able to work with suppliers and vendors to assess a true value of cybersecurity capabilities vs what they are offering as a sales pitch and how those capabilities would apply to McKesson as a whole, from integrations to existing cybersecurity eco-system to their operationalization

Certifications/Licensure:

Cloud Cyber Security related qualification(s) such as CCSP, CISSP, PCS, CCSK preferred

Education:

4-year degree in computer science or related field or equivalent experience

Physical Requirements:

General Office Demands

Benefits & Company Statement:

McKesson believes superior performance – individual and team – that helps us drive innovations and solutions to promote better health should be recognized and rewarded. We provide a competitive compensation program to attract, retain and motivate a high-performance workforce, and it’s flexible enough to meet the different needs of our diverse employee population.

We are in the business of better health and we touch the lives of patients in virtually every aspect of healthcare. We partner with payers, hospitals, physician offices, pharmacies, pharmaceutical companies and others across the spectrum of care to build healthier organizations that deliver better care to patients in every setting.

But we can’t do it without you. Every single McKesson employee contributes to our mission—whatever your title, whatever your role, you act as a catalyst in a chain of events that helps millions of people all over the globe. Talented, compassionate people are the future of our company—and of healthcare. At McKesson, you’ll collaborate on the products and solutions that help us carry out our mission to improve lives and advance healthcare. Working here is your opportunity to shape an industry that’s vital to us all.

McKesson is an equal opportunity and affirmative action employer -minorities/females/veterans/persons with disabilities.

Qualified applicants will not be disqualified from consideration for employment based upon criminal history.

Agency Statement

No agencies pleas

Job: Technology

Organization: McKesson Corporate

Title: Senior Security Architect

Location: Arizona-Scottsdale

Requisition ID: 18003384