McKesson Sr Network Security Analyst in Alpharetta, Georgia

McKesson is in the business of better health and we touch the lives of patients in virtually every aspect of healthcare. We partner with payors, hospitals, physician offices, pharmacies, pharmaceutical companies and others across the spectrum of care to build healthier organizations that deliver better care to patients in every setting. We believe in the importance of strong, vital organizations because we know that patients can only be healthy when our system is healthy.

Every single McKesson employee contributes to our mission—by joining McKesson you act as a catalyst in a chain of events that helps millions of people all over the globe. Talented, compassionate people are the future of our company—and of healthcare. At McKesson, you’ll collaborate on the products and solutions that help us carry out our mission to improve lives and advance healthcare. Working here is your opportunity to shape an industry that’s vital to us all.

We understand the importance of a system that works together. Your expertise, drive and passion can help us improve everything we touch, from providers to payors to pharmacies. Join our team of leaders to begin a rewarding career.

Wherever you contribute here at McKesson, you will have the ability to make a real impact in the lives of others.

Current Need

We are looking for a security analyst with network security administration skills to join our Risk Management team and to take part in our continuing effort to provide excellent service and security to our internal and external customers. We need a hands-on network security analyst with a broad scope of skills to implement security policies/best practices. This position is extremely dynamic in the skills required, and will require a security professional to grasp the complexities and challenges afforded working for a fast-paced and agile company.

This individual contributor position will be responsible for supporting technical efforts to secure McKesson-wide usage of on-prem and off-prem virtual cloud environments such as VMWare, third party cloud platforms such as Azure, Amazon Web Services (AWS), and Google Cloud Platform (GCP). Success in this role requires deep platform knowledge, experience, an understanding of software development with the ability to participate with teams responsible for building/customizing software to enable critical capabilities within the organization.

This position can be located in our Alpharetta, Scottsdale or Carrollton/Irving offices .

Position Description

McKesson has embarked on an important mission to become the leader in cybersecurity for global healthcare. We are making significant investments to enhance our capabilities through talent development, resource levels, process maturity, and technology enablement.

A key goal of the organization is to quickly migrate appropriate applications and workloads to hosted, third party cloud platforms such as Azure, AWS, and Google Cloud. This position will be a lead technical security resource for such platforms. The role will work closely with partners to define, develop, implement, and sustain solutions that further our cybersecurity goals.

Responsibilities will include:

  • Expertise in Solutions Engineering – Be a subject matter expert and internal/external voice on network security for our Fortune 15 company. Create, design, plan, and help deliver tangible technical and process-based network security controls both for our internal services and for X-as-a-Service models based on leading cloud platforms.

  • Due diligence and ongoing monitoring – Develop and support processes and procedure including:

  • Lead new and recurring network security risk assessments, develop mitigation plans, and assign remediation work to internal stakeholders.

  • Contribute to the cybersecurity program to monitor risks related to network security for McKesson’s and our customers’ critical systems and data.

  • Utilize a wide variety of tools and platforms to manage and monitor networks comprising a complex global enterprise.

  • Implement processes to document and monitor the network portfolio using a risk based approach:

  • Identify supporting collateral for network security group controls (e.g., SOC1/2 reports and other certifications);

  • Review and facilitate on-prem and cloud-based connectivity through risk assessment activities as part of a continuous monitoring program; and

  • Work with Information Security Risk Management teams to extend network visibility by leveraging existing or introducing new toolsets.

  • Development and Support – Develop and support network security controls including:

  • Network security solutions for cloud (X-as-a-Service) systems where security principals are codified and integrated directly into application designs and blueprints/formations

  • Network analysis, project management, and full stack software development efforts that align with devops, devsecops, and agile-related approaches

  • Collaboration, Reporting and Financial Management

  • Work in a self-directed, collaborative, and constructive manner with the business units and other stakeholders to enhance the effectiveness of network processes and controls and to be a conduit to services in security architecture, identity and access management, security systems administration/tools management, application security, and our cybersecurity active defense group to defend our enterprise from quickly evolving threats.

  • Document network environment components and application boundaries using tools and utilities; conducts auditing of implementations including but not limited to production, QA, testing, training, and other environment.

  • Ensure that network process improvements are successfully implemented and monitored to increase efficiency

  • Review processes and procedures for firewall change/management and other secure network engineering controls to conform with policies and standards.

Minimum Requirements

6 years experience in administering security controls in an organization

Critical Skills

  • Network management and hands on support skills (firewall, proxy server, remote access and IPSEC VPN) along with experience in managing network security within modern virtual platforms: VMWare/NSX and AWS, Azure or Google Cloud platforms

  • Experience with Cloud infrastructure security in a hybrid environment

  • Experience with data collection and management platforms and various web services and applications

  • Expertise with Visio to document network diagramming and connectivity to systems to automate network diagramming

  • Ability to work quickly with minimal supervision

  • Strong interpersonal and communications skills to build/ maintain ongoing business relationships

  • Experience with compliance regulations/laws, security frameworks and standards (e.g., NIST, HIPAA, ISO, COBIT, OWASP, ITIL, etc.)

  • Ability to exercise sound professional judgment and security-related ethics

Additional Knowledge & Skills

  • Expert level knowledge of Cisco and Palo Alto Networks firewalls

  • Expert level knowledge of Blue Coat Proxy SG servers

Education

4-year degree in computer science or related field or equivalent experience

Physical Requirements

General Office Demands

Benefits & Company Statement

McKesson believes superior performance – individual and team – that helps us drive innovations and solutions to promote better health should be recognized and rewarded. We provide a competitive compensation program to attract, retain and motivate a high-performance workforce, and it’s flexible enough to meet the different needs of our diverse employee population.

We are in the business of better health and we touch the lives of patients in virtually every aspect of healthcare. We partner with payers, hospitals, physician offices, pharmacies, pharmaceutical companies and others across the spectrum of care to build healthier organizations that deliver better care to patients in every setting.

But we can’t do it without you. Every single McKesson employee contributes to our mission—whatever your title, whatever your role, you act as a catalyst in a chain of events that helps millions of people all over the globe. Talented, compassionate people are the future of our company—and of healthcare. At McKesson, you’ll collaborate on the products and solutions that help us carry out our mission to improve lives and advance healthcare. Working here is your opportunity to shape an industry that’s vital to us all.

McKesson is an equal opportunity and affirmative action employer – minorities/females/veterans/persons with disabilities.

Qualified applicants will not be disqualified from consideration for employment based upon criminal history.

Agency Statement

No agencies please.

Job: Technology

Organization: McKesson Corporate

Title: Sr Network Security Analyst

Location: Georgia-Alpharetta

Requisition ID: 16009744

Other Locations: United States-Arizona-Scottsdale, United States-Texas-Carrollton