McKesson's Senior Director of Security Architecture will be a key component of our global team. This position will be responsible for leading a high performing team for designing, building, testing and implementing security systems within McKesson's Information network. The Senior Director is expected to have a thorough understanding of complex IT systems and stay up to date with the latest security standards, systems and authentication protocols, as well as best practice security products.
As a senior member of the CISO leadership team, the position is responsible to cultivate a culture of security awareness and arrange continuing education of teams to ensure security policies are adhered to at all times. The ideal candidate has deep technical security knowledge/expertise, systems management and administration experience, proven service management skills, and the ability to manage a team facing unique market challenges in talent attraction, development, and retention. The leader will help define and implement robust security architecture strategies, frameworks and governance processes.
Reviewing current system security measures and recommending and implementing enhancements
Conducting regular system tests and ensuring continuous monitoring of network security
Developing project timelines for ongoing system upgrades
Ensuring all personnel have access to the IT system limited by need and role
Partnering with Incident Response to establish disaster recovery procedures and conduct breach of security drills
Promptly responding to all security incidents and providing thorough post-event analyses
Develop a set of secure architecture patterns/blueprints that support the delivery of standardized and repeatable solutions developed to meet the enterprise needs.
Measure the maturity of our architecture against accepted best practices; internal policies and industry peers.
Degree or equivalent experience.
Typically requires 13+ years of professional experience and 6+ years of diversified leadership, planning, communication, organization, and people motivation skills (or equivalent experience).
13+ years' experience of professional experience in related IT field
6+ years' experience in leadership, planning and communication roles.
Extensive experience in information security and/or IT risk management with a focus on security, performance and reliability
Solid understanding of security protocols, cryptography, authentication, authorization and security
Good working knowledge of current IT risks and experience implementing security solutions
Experience implementing multi-factor authentication, single sign-on, identity management or related technologies
Minimum of 6 years experience in security services, other IT, and/or technical risk management
Strong management skills planning, organizing, leading, and measuring service driven teams
Strong interpersonal and communications skills to build/ maintain ongoing business relationships
Ability to exercise and mentor others on good professional judgment and security-related ethics
Experiences with designing successful implementation of secure cloud-native applications, platforms, core services and security controls across public and private environments.
Acknowledgement of meeting the demands and regulatory requirements, for NIST, PCI, ISO 27001, HIPAA, GDPR, HITRUST, FedRamp, etc.
Prior knowledge in enterprise risk management, forensic investigations, regulatory, law enforcement and related topics.
Knowledge of the healthcare, distribution, or software industries is a plus
Strong technical aptitude and experience with a wide variety of technologies
Ability to rapidly learn and if required evaluate a new tool or technology
Strong verbal & written communication skills
Demonstrated technical leadership experience
Be an innovative thinker
Must have a strong customer and quality focus
Have been successful in working across organizational boundaries, bringing together people with diverse perspectives and experience to find solutions to complex technical issues
B.S. Degree or equivalent experience
Master Degree preferable
McKesson is an Equal Opportunity/Affirmative Action employer.
All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.Qualified applicants will not be disqualified from consideration for employment based upon criminal history.
McKesson is committed to being an Equal Employment Opportunity Employer and offers opportunities to all job seekers including job seekers with disabilities. If you need a reasonable accommodation to assist with your job search or application for employment, please contact us by sending an email to McKessonTalentAquisition@McKesson.com . Resumes or CVs submitted to this email box will not be accepted.
Current employees must apply through the internal career site.
Join us at McKesson!