McKesson is in the business of better health and we touch the lives of patients in virtually every aspect of healthcare. We partner with payors, hospitals, physician offices, pharmacies, pharmaceutical companies and others across the spectrum of care to build healthier organizations that deliver better care to patients in every setting. We believe in the importance of strong, vital organizations because we know that patients can only be healthy when our system is healthy.
Every single McKesson employee contributes to our mission—by joining McKesson you act as a catalyst in a chain of events that helps millions of people all over the globe. Talented, compassionate people are the future of our company—and of healthcare. At McKesson, you’ll collaborate on the products and solutions that help us carry out our mission to improve lives and advance healthcare. Working here is your opportunity to shape an industry that’s vital to us all.
We understand the importance of a system that works together. Your expertise, drive and passion can help us improve everything we touch, from providers to payors to pharmacies. Join our team of leaders to begin a rewarding career.
Wherever you contribute here at McKesson, you will have the ability to make a real impact in the lives of others.
We are looking for a security analyst with network security administration skills to join our Risk Management team and to take part in our continuing effort to provide excellent service and security to our internal and external customers. We need a hands-on security analyst with a broad scope of skills to implement security policies/best practices. This position is extremely dynamic in the skills required, and will require a security professional to grasp the complexities and challenges afforded working for a fast-paced and agile company.
This position can be located in our Alpharetta, Carrollton, Scottsdale offices and our San Francisco office for internal candidates.
This position requires strong interpersonal and communication skills, an ability to work as part of a team or independently under minimal direction. Interfacing with teams both inside and external to enterprise technology services to gather requirements, collaborate, evangelize and incorporate security policy will be a key component of this role.
4+ years experience in administering security controls in an organization
3-5 years of network security experience.
2-4 years of information security experience.
Strong analytical and troubleshooting skills with an understanding of IT business operations and information security.
Self-Starter that requires minimal supervision and can provide oversight and coaching to others for any assigned projects or tasks.
Hands on experience with CISCO, Juniper, Palo Alto configuration and management.
Hands on experience in private/public network security group management (VMWare NSX, Azure, AWS).
Hands on experience with network security analysis toolsets like AlgoSec, Tufin, StealthWatch.
Hands on experience in analyzing and documenting applications across LANs, VLANs, VNets, WANs in a multi-tenant enterprise network using Visio and other related tools.
Additional Knowledge & Skills
Ability to script or code in a compiled language (i.e., perl, python, PowerShell, Java, C#)
Expert-level understanding of network protocols (TCP/UDP, IP, ARP, DNS, HTTP)
Familiarity with common system and network/application attack vectors.
Experience analyzing, troubleshooting, and investigating network security incidents from a variety of reporting platforms such IPS/IDS, NAC, DLP, SIEM, and vulnerability monitoring systems.
Experience in operationalizing network security solutions to provide optimal value through repeatable metric reporting, standardizing maintenance and continually finding and leading a closure of security gaps.
Experience in developing and exercising network security controls satisfying internal/external assessments/attestations/audits.
Knowledge and practice of network, system, and application security Best Practices.
Design of infrastructure security concepts including firewalls, DMZs, WAFs, intrusion detection/prevention systems, network security.
Commit and abide by the McKesson’s ICARE and ILEAD principles. These principles reflect McKesson’s core values and dedication to providing quality health care.
Experience working in a regulated environment is desired,
4-year degree in computer science or related field or equivalent experience
CCNA, CCNA Security, or CCNP.
Also CISSP, CISM, SSCP, SANS, CEH, or OSCP.