McKesson is an impact-driven, Fortune 10 company that touches virtually every aspect of healthcare. We are known for delivering insights, products, and services that make quality care more accessible and affordable. Here, we focus on the health, happiness, and well-being of you and those we serve – we care.

What you do at McKesson matters. We foster a culture where you can grow, make an impact, and are empowered to bring new ideas. Together, we thrive as we shape the future of health for patients, our communities, and our people. If you want to be part of tomorrow’s health today, we want to hear from you.

McKesson is looking for a Sr. Information Security Analyst, Operational Technology to help implement and manage tools, and technologies for the Operational Technology area within the Global Information Security and Risk Management function (ISRM). The role leads multiple engineering efforts addressing cyber-risk mitigation activities at McKesson’s distribution centers and expanding outwards to various other solutions and services within the McKesson portfolio (Specialty Health, robotics etc.).

The Sr. Information Security Analyst works with the Sr. Manager OT Security on cyber-risk mitigation activities at McKesson’s distribution centers within a specific business unit and/or geographical region and expanding outwards to various other solutions and services within the McKesson portfolio.

Flexibility regarding travel estimated to be 50% - domestic as well as international

Position Description

The Sr. Information Security Analyst, OT Security, is responsible for implementation and manages security policies, standards, and hardening guidelines for tools and technologies connected to and/or protecting McKesson’s Operational Technology environment.  Working with the deployment teams, the role will assess current protection level of the network, infrastructure and Industrial Control Systems and the compliance of these assets in compliance with McKesson policies, industry standards, customer expectations, threat intelligence and applicable legislation.  (S)he supports projects, assess the effectiveness of the security of the network, infrastructure and ICS environment, and together with involved stakeholders, determines the solution strategy for detected security posture within this scope.  Where applicable the role supports investigations / forensics activities upon the network and ICS environment. Focus will be on protection and security of:

• Network devices such as (not limited to): routers, switches, firewalls, DHCP and DNS
• Network and Datacenters (e.g. network access, network, and DC segmentation)
• The Industrial Control Systems and the applicable infrastructure
• Support and conduct audits upon the above scope          

Responsibilities include:

• Provides support of solution implementation in the field of Operational Technology (OT) Security
• Understands and documents security policies, standards, support implementation of hardening guidelines for network, infrastructure, and OT networks
• Assesses current protection level of the networks, infrastructure and Industrial Control Systems
• Supports compliance of OT Security assets in accordance with policies, standards and applicable legislation
• Oversees the implementation of architecture, tools, and technology protecting the OT/ICS environments
• Supports projects, assess the effectiveness of the security of the network, infrastructure and ICS environment
• Supports Business Continuity and Disaster Recovery processes

We are proud to offer a competitive compensation package at McKesson as part of our Total Rewards. This is determined by several factors, including performance, experience and skills, equity, regular job market evaluations, and geographical markets. In addition to base pay, other compensation, such as an annual bonus or long-term incentive opportunities may be offered. For more information regarding benefits at McKesson, please click here.

Our Base Pay Range for this position

$118,100 - $196,900

McKesson is an Equal Opportunity Employer

 

McKesson provides equal employment opportunities to applicants and employees and is committed to a diverse and inclusive environment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability, age or genetic information. For additional information on McKesson’s full Equal Employment Opportunity policies, visit our Equal Employment Opportunity page.

 

Join us at McKesson!