McKesson Information Security Architect in Munster, Ireland

McKesson Corporation (NYSE: MCK) is a leading healthcare services company dedicated to delivering the vital medicines, supplies and information technologies and services that enable the healthcare industry to provide patients better, safer care. McKesson is in the business of better health and we touch the lives of patients in virtually every aspect of healthcare. We partner with health care providers, hospitals, physician offices, pharmacies, pharmaceutical companies and others across the spectrum of care to build healthier organizations that deliver better care to patients in every setting. We believe in the importance of strong, vital organizations because we know that patients can only be healthy when our system is healthy.

Every single McKesson employee contributes to our mission—by joining McKesson you act as a catalyst in a chain of events that helps millions of people all over the globe. Talented, compassionate people are the future of our company—and of healthcare. At McKesson, you’ll collaborate on the products and solutions that help us carry out our mission to improve lives and advance healthcare. Working here is your opportunity to shape an industry that’s vital to us all.

We understand the importance of a system that works together. Your expertise, drive and passion can help us improve everything we touch, from providers to payors to pharmacies. Join our team of leaders to begin a rewarding career.

Wherever you contribute here at McKesson, you will have the ability to make a real impact in the lives of others.

McKesson operates in 14 countries in Europe, serving over 2 million customers every day at about 2,200 pharmacies of its own and over 4,300 participants in brand partnership schemes. The proactive and preventive approach ensures that patients receive the products and support that they require for optimum care. With more than 38,000 colleagues and with 134 wholesale branches, McKesson Europe supplies 65,000 pharmacies and hospitals every day with up to 130,000 pharmaceutical products. The services benefit a patient pool of about 15 million per day.

McKesson Corporation reported revenue of $190 billion in FY2016 and was ranked #5 on the Fortune 500 in 2017.

Position Description

  • This position is part of McKesson’s Information Security and Risk Management (ISRM) team and is responsible for building and promoting information security capabilities and compliance across the European Health Care Business units and Enterprise IT organisations.

  • As a McKesson Information Security Architect, you will be a key member of our ISRM team. The candidate will have a deep background in all aspects of security architecture including infrastructure, application, cloud, and mobile. S/he will work collaboratively with the Enterprise Architecture team and Global ISRM Service owners to ensure solutions and services are adopted effectively in business units. The position works closely with stakeholders in Infrastructure, Operations, Applications, and Compliance management to ensure alignment to our Global service capabilities. He or she will also help represent the European ISRM team on various projects and boards.

  • This position will also support and promote global governance and control measures, process improvements and efficiencies in support of the global organisation in alignment with Global IT services.

  • S/he will be an enthusiastic advocate of the globally-led Information Protection Strategy, ensuring that all global initiates and services are appropriately adopted in the market, following our strategic principle of global oversight, local insight.

Key Responsibilities

Responsibilities will include:

  • Develop and maintain a comprehensive vision and strategy for network and cloud security architecture to accomplish department objectives of protecting McKesson systems and data while facilitating new and existing business models highly dependent on technology.

  • Manage a portfolio of network security architecture related solutions including a demand pipeline of projects/tasks to create, evolve, and change them as needed.

  • End to end analysis, requirements development, design, and governance of the security processes and tools ecosystem, partnering with IT and business colleagues as appropriate

  • Analyses systems and processes from end to end, partnering with IT and business colleagues as appropriate

  • Develops an understanding how business strategy, risk, regulation and technical constraints influence organisational responses to cyber security.

  • Understands the drivers and requirements of the business and translates those into technology solutions, serving as a liaison between technical teams and management

  • Security technical and Information Protection leadership for fine grained solutions including developing secure and sustainable security reference architectures where applicable

  • Provide technical and/or project leadership function for assigned security projects including; the protection of information systems assets, corporate information, and intellectual property

  • Identify and document critical path decisions, make recommendations, and influence program leaders / business process owners

  • Maintain a detailed knowledge of the cyber security capabilities of operating systems, networking devices, control systems, and vendor offerings and provides solutioning and architecture for advanced detective, preventative and respond capabilities

  • Participate in Scaled Agile planning and activities deploying enterprise program creating Global Network Security Services within McKesson, identify customer needs, converting those into functional requirements and creating program roadmap, driving objectives and managing program backlog.


Experience, Education, Skills and Competencies:

  • 8 years security architecture experience

  • 4-year degree in computer science or related field or equivalent experience

  • Cyber Security related qualification(s) such as CISSP, CISM, CREST Technical Security Architect, ISO Lead Auditor etc

Critical Skills

  • Proven experience working in engineering and / or architecture capacity supporting network security and cloud security technologies and capabilities ( Eg. Firewalls, IDPS, Proxies, VPNs, DLP, SIEM, Mobile Security, EndPoint security, Azure Cloud Security)

  • Strong management skills planning, organizing, and leading architecture development efforts

  • Strong interpersonal and communications skills to build/ maintain ongoing business relationships

  • Self-Starter that requires minimal supervision, multi-tasks effectively, and can provide oversight and coaching to others for any assigned projects or tasks.

  • Experience of industry standard architectural methodologies and frameworks such as SABSA and TOGAF.

  • Detailed understanding of control frameworks such as HITRUST, ISO 27001/2, NIST CSF, COBIT

  • Experience with compliance regulations/laws, and standards (e.g., GDPR, HIPAA, ITIL, SOX).

Additional Knowledge & Skills

  • Knowledge of healthcare, privacy, and financial compliance regulations.

  • Experience of working with SAFe (Scaled Agile Framework for the enterprise)

  • Experience with law enforcement, defense, or intelligence community

  • Cloud Provider infrastructure security engineering knowledge and experience are a plus (Azure, GCP, AWS)

  • Strong analytical and troubleshooting skills with an understanding of IT business operations and information security.

Job: Technology

Organization: McKesson Corporate

Title: Information Security Architect

Location: Ireland-Munster-Cork

Requisition ID: 18002775