McKesson Sr Network Security Analyst in Alpharetta, Georgia
McKesson is in the business of better health and we touch the lives of patients in virtually every aspect of healthcare. We partner with payors, hospitals, physician offices, pharmacies, pharmaceutical companies and others across the spectrum of care to build healthier organizations that deliver better care to patients in every setting. We believe in the importance of strong, vital organizations because we know that patients can only be healthy when our system is healthy.
Every single McKesson employee contributes to our mission—by joining McKesson you act as a catalyst in a chain of events that helps millions of people all over the globe. Talented, compassionate people are the future of our company—and of healthcare. At McKesson, you’ll collaborate on the products and solutions that help us carry out our mission to improve lives and advance healthcare. Working here is your opportunity to shape an industry that’s vital to us all.
We understand the importance of a system that works together. Your expertise, drive and passion can help us improve everything we touch, from providers to payors to pharmacies. Join our team of leaders to begin a rewarding career.
Wherever you contribute here at McKesson, you will have the ability to make a real impact in the lives of others.
We are looking for a security analyst with network security administration skills to join our Risk Management team and to take part in our continuing effort to provide excellent service and security to our internal and external customers. We need a hands-on network security analyst with a broad scope of skills to implement security policies/best practices. This position is extremely dynamic in the skills required, and will require a security professional to grasp the complexities and challenges afforded working for a fast-paced and agile company.
This individual contributor position will be responsible for supporting technical efforts to secure McKesson-wide usage of on-prem and off-prem virtual cloud environments such as VMWare, third party cloud platforms such as Azure, Amazon Web Services (AWS), and Google Cloud Platform (GCP). Success in this role requires deep platform knowledge, experience, an understanding of software development with the ability to participate with teams responsible for building/customizing software to enable critical capabilities within the organization.
This position can be located in our Alpharetta, Scottsdale or Carrollton/Irving offices .
McKesson has embarked on an important mission to become the leader in cybersecurity for global healthcare. We are making significant investments to enhance our capabilities through talent development, resource levels, process maturity, and technology enablement.
A key goal of the organization is to quickly migrate appropriate applications and workloads to hosted, third party cloud platforms such as Azure, AWS, and Google Cloud. This position will be a lead technical security resource for such platforms. The role will work closely with partners to define, develop, implement, and sustain solutions that further our cybersecurity goals.
Responsibilities will include:
Expertise in Solutions Engineering – Be a subject matter expert and internal/external voice on network security for our Fortune 15 company. Create, design, plan, and help deliver tangible technical and process-based network security controls both for our internal services and for X-as-a-Service models based on leading cloud platforms.
Due diligence and ongoing monitoring – Develop and support processes and procedure including:
Lead new and recurring network security risk assessments, develop mitigation plans, and assign remediation work to internal stakeholders.
Contribute to the cybersecurity program to monitor risks related to network security for McKesson’s and our customers’ critical systems and data.
Utilize a wide variety of tools and platforms to manage and monitor networks comprising a complex global enterprise.
Implement processes to document and monitor the network portfolio using a risk based approach:
Identify supporting collateral for network security group controls (e.g., SOC1/2 reports and other certifications);
Review and facilitate on-prem and cloud-based connectivity through risk assessment activities as part of a continuous monitoring program; and
Work with Information Security Risk Management teams to extend network visibility by leveraging existing or introducing new toolsets.
Development and Support – Develop and support network security controls including:
Network security solutions for cloud (X-as-a-Service) systems where security principals are codified and integrated directly into application designs and blueprints/formations
Network analysis, project management, and full stack software development efforts that align with devops, devsecops, and agile-related approaches
Collaboration, Reporting and Financial Management
Work in a self-directed, collaborative, and constructive manner with the business units and other stakeholders to enhance the effectiveness of network processes and controls and to be a conduit to services in security architecture, identity and access management, security systems administration/tools management, application security, and our cybersecurity active defense group to defend our enterprise from quickly evolving threats.
Document network environment components and application boundaries using tools and utilities; conducts auditing of implementations including but not limited to production, QA, testing, training, and other environment.
Ensure that network process improvements are successfully implemented and monitored to increase efficiency
Review processes and procedures for firewall change/management and other secure network engineering controls to conform with policies and standards.
6 years experience in administering security controls in an organization
Network management and hands on support skills (firewall, proxy server, remote access and IPSEC VPN) along with experience in managing network security within modern virtual platforms: VMWare/NSX and AWS, Azure or Google Cloud platforms
Experience with Cloud infrastructure security in a hybrid environment
Experience with data collection and management platforms and various web services and applications
Expertise with Visio to document network diagramming and connectivity to systems to automate network diagramming
Ability to work quickly with minimal supervision
Strong interpersonal and communications skills to build/ maintain ongoing business relationships
Experience with compliance regulations/laws, security frameworks and standards (e.g., NIST, HIPAA, ISO, COBIT, OWASP, ITIL, etc.)
Ability to exercise sound professional judgment and security-related ethics
Additional Knowledge & Skills
Expert level knowledge of Cisco and Palo Alto Networks firewalls
Expert level knowledge of Blue Coat Proxy SG servers
4-year degree in computer science or related field or equivalent experience
General Office Demands
Benefits & Company Statement
McKesson believes superior performance – individual and team – that helps us drive innovations and solutions to promote better health should be recognized and rewarded. We provide a competitive compensation program to attract, retain and motivate a high-performance workforce, and it’s flexible enough to meet the different needs of our diverse employee population.
We are in the business of better health and we touch the lives of patients in virtually every aspect of healthcare. We partner with payers, hospitals, physician offices, pharmacies, pharmaceutical companies and others across the spectrum of care to build healthier organizations that deliver better care to patients in every setting.
But we can’t do it without you. Every single McKesson employee contributes to our mission—whatever your title, whatever your role, you act as a catalyst in a chain of events that helps millions of people all over the globe. Talented, compassionate people are the future of our company—and of healthcare. At McKesson, you’ll collaborate on the products and solutions that help us carry out our mission to improve lives and advance healthcare. Working here is your opportunity to shape an industry that’s vital to us all.
McKesson is an equal opportunity and affirmative action employer – minorities/females/veterans/persons with disabilities.
Qualified applicants will not be disqualified from consideration for employment based upon criminal history.
No agencies please.
Organization: McKesson Corporate
Title: Sr Network Security Analyst
Requisition ID: 16009744
Other Locations: United States-Arizona-Scottsdale, United States-Texas-Carrollton