Information Security Compliance Analyst

McKesson

Experience
Qualifications
Workhours

Description

McKesson is in the business of better health and we touch the lives of patients in virtually every aspect of healthcare. We partner with payors, hospitals, physician offices, pharmacies, pharmaceutical companies and others across the spectrum of care to build healthier organizations that deliver better care to patients in every setting. We believe in the importance of strong, vital organizations because we know that patients can only be healthy when our system is healthy.


Every single McKesson employee contributes to our mission—by joining McKesson you act as a catalyst in a chain of events that helps millions of people all over the globe. Talented, compassionate people are the future of our company—and of healthcare. At McKesson, you’ll collaborate on the products and solutions that help us carry out our mission to improve lives and advance healthcare. Working here is your opportunity to shape an industry that’s vital to us all.


We understand the importance of a system that works together. Your expertise, drive and passion can help us improve everything we touch, from providers to payors to pharmacies. Join our team of leaders to begin a rewarding career. Wherever you contribute here at McKesson, you will have the ability to make a real impact in the lives of others.


Position Description:

 

Key areas of responsibility include:

  • Monitoring and administering information security compliance processes and policies

  • Working with systems or applications teams to understand compliance requirements, with an emphasis on PCI compliance

  • Coordinating and analyzing compliance frameworks with regulations and existing policies

  • Analyzing emerging technology trends with security vendors and subject matter experts

  • Designing and/or adapting security policies

  • Consulting on various compliance topics (e.g., security architecture, POS solutions, secure development lifecycle, cloud services, physical and environmental security issues) as needed. 

  • Assist with M&A integration activities related to relevant frameworks including SOX/SOC/ISO27001/PCI as needed

  • Assist in internal cybersecurity initiatives by providing guidance and validation of controls implementation

Qualifications

Minimum Requirements:
4+ years experience in administering security controls in an organization

Critical Skills:

  • Knowledge of PCI-DSS with prior work experience in a PCI-compliant environment strongly preferred

  • Prior experience in auditing and risk management, as well as contract and vendor negotiations
  • Prior policy development, management and enforcement experience in a regulated environment
  • Experience in working with complex applications, networks, virtual environment security, cloud services, and systems operations

  • Ability to relate business requirements and risks to policy and technology implementations to key business stakeholders

  • Proven ability to manage projects and implementations across organizations in a complex enterprise environment

  • Strong interpersonal skills with the ability to deal effectively with people at all organizational levels and external vendors

  • Strong project management and time management skills, ability to manage through ambiguity and be confident and effective in high-pace/high-demand environments
  • Ability to work independently with limited supervision
  • Excellent oral and written communications skills with the ability to prepare and deliver concise, understandable reports and presentations

Additional Knowledge & Skills:

  • CIPP, CISSP, CISM, CISA, CRISC, or other similar professional designations are a pl
  • Familiarity with Archer GRC

Education:
4-year degree in computer science or related field or equivalent experience

Physical Requirements:
General Office Demands

Benefits & Company Statements:
McKesson believes superior performance – individual and team – that helps us drive innovations and solutions to promote better health should be recognized and rewarded. We provide a competitive compensation program to attract, retain and motivate a high-performance workforce, and it’s flexible enough to meet the different needs of our diverse employee population.

We are in the business of better health and we touch the lives of patients in virtually every aspect of healthcare. We partner with payers, hospitals, physician offices, pharmacies, pharmaceutical companies and others across the spectrum of care to build healthier organizations that deliver better care to patients in every setting.

But we can’t do it without you. Every single McKesson employee contributes to our mission—whatever your title, whatever your role, you act as a catalyst in a chain of events that helps millions of people all over the globe. Talented, compassionate people are the future of our company—and of healthcare. At McKesson, you’ll collaborate on the products and solutions that help us carry out our mission to improve lives and advance healthcare. Working here is your opportunity to shape an industry that’s vital to us all.

McKesson is an equal opportunity and affirmative action employer – minorities/females/veterans/persons with disabilities.

Qualified applicants will not be disqualified from consideration for employment based upon criminal history.

Agency Statement
No agencies please.

Primary Location

United States-Georgia-Alpharetta

Job

Technology

Organization

McKesson Corporate

Schedule

Regular

Shift

Standard

Job Type

Full-time

Day Job

Travel

Yes, 25 % of the Time

Job Posting

Sep 22, 2017

Read Full DescriptionHide Full Description
Confirmed an hour ago. Posted 26 days ago.

Discover Similar Jobs

Suggested Articles

One Step Register
Need an account? Sign Up