Business Information Security Officer - Corporate Functions
Irving, TexasSuccess Profile
What makes a successful Business Information Security Officer - Corporate Functions? Here are the top traits.
- Conceptual
- Proactive
- Problem-Solver
- Strategic
- Technologically Savvy
- Visual Thinker
Culture
Accomplish
Make a meaningful impact by using your problem-solving skills to push the boundaries of innovation in healthcare, while maintaining a healthy work-life balance.
Innovate
Foster a digital mindset to drive IT transformation across McKesson through our evolving data and technology tools.
Grow
Join a supportive environment where you can advance your career and develop both personally and professionally.
Benefits
-
Coverage you can rely on
- Medical, Dental, and Vision
- Health Spending Accounts
- Flexible Spending Accounts
-
Benefits that go beyond your base pay
- 401(k) (U.S.)
- Pension (Canada)
- Employee Stock Purchase Plan
-
Support for total well-being
- Mental Health Programs
- Flexible Schedules
- Paid Time Off
- Wellness Program
- Education Reimbursement
- Volunteer Opportunities
- Flexible Work Environment
-
A global leader of inclusion
McKesson’s commitment to diversity and inclusion starts at the top. We have also been named a Best Employer for Diversity by Forbes.
Responsibility
McKesson is an impact-driven, Fortune 10 company that touches virtually every aspect of healthcare. We are known for delivering insights, products, and services that make quality care more accessible and affordable. Here, we focus on the health, happiness, and well-being of you and those we serve – we care.
What you do at McKesson matters. We foster a culture where you can grow, make an impact, and are empowered to bring new ideas. Together, we thrive as we shape the future of health for patients, our communities, and our people. If you want to be part of tomorrow’s health today, we want to hear from you.
Job Description:
McKesson’s Corporate Functions Business Information Security Officer (BISO) will lead, plan, direct, and control activities for assurance, security (information, application, and infrastructure), and compliance across McKesson Corporate Functions, including Technology, HR, Legal, Finance, Privacy, and Compliance. This Security Principal (P5) role ensures successful delivery of Information Security and IT risk management services in compliance with McKesson Cyber Security policies, standards, and the NIST framework.
The ideal candidate has high energy,strongpresence, and a passion for delivering value from the cybersecurity function. Theypossessdeep technical security, governance, and riskexpertiseand will be the primary advocate for security initiatives across these functions,maintainingconsistent alignment with the McKesson Cyber Security organization.
The candidate will work directly with senior leaders from each of those functions and should have the requisite capabilities to succeed at that level. This individual will work as part of a large team of security professionals in a structure designed to help them succeed in delivering best-in-class security to this stakeholder group.
This role reports directly to the Senior Director of Cyber Governance and Risk Management.
Key Accountabilities:
Risk Management:
Manage corporate function cyber security and risk requirements, ensuring high-quality execution.
Co-ordinate IT risk, compliance, and audit reviews, andassistwith remediation of findings.
Ensure technology programscomply withrelevant laws, regulations, and McKesson cyber security policies.
Compliance:
Participate in corporate function initiatives torepresentthe cybersecurity function.
Ensure security programs address IT risk management findings and follow relevant laws, regulations, and policies.
Stakeholder Engagement:
Report Key Riskand cyber securityperformanceIndicators to corporatefunctionsleadership for informed decision-making.
Develop strong partnerships with IT leaders and Cyber Security service teams to managecorporatefunctionIT and security risk.
Minimum Qualifications:
Bachelor’s Degree or equivalent experience in Information Security, Computer Science, or related field.
15+ years ofrelevantprofessional experience, including 8+ years inimpactful rolesinteracting withsenior stakeholders in a cyber security or technology function
Required Skills:
Strategic thinker with the ability to communicate and influence at both technicalteamand senior management levels.
Ability to integrate various security and data protection controls to mitigate risk effectively.
Deep knowledge of regulatory, operational, information, and technology risk areas.
Strong familiarity with information, application, and infrastructure security control mechanisms.
Experienceutilizingthe NIST framework for effective cybersecurity and risk management.
Strong understanding of privacy laws, data protection regulations,breachnotification practices, and incident response management.
Ability to act as a trusted advisor and partner.
Preferred Certifications:
CISSP, CISM, or equivalent certifications.
We are proud to offer a competitive compensation package at McKesson as part of our Total Rewards. This is determined by several factors, including performance, experience and skills, equity, regular job market evaluations, and geographical markets. The pay range shown below is aligned with McKesson's pay philosophy, and pay will always be compliant with any applicable regulations. In addition to base pay, other compensation, such as an annual bonus or long-term incentive opportunities may be offered. For more information regarding benefits at McKesson, please click here.
Our Base Pay Range for this position
$152,000 - $253,400McKesson has become aware of online recruiting-related scams in which individuals who are not affiliated with or authorized by McKesson are using McKesson’s (or affiliated entities, like CoverMyMeds or RxCrossroads) name in fraudulent emails, job postings or social media messages. In light of these scams, please bear the following in mind:
McKesson Talent Advisors will never solicit money or credit card information in connection with a McKesson job application.
McKesson Talent Advisors do not communicate with candidates via online chatrooms or using email accounts such as Gmail or Hotmail. Note that McKesson does rely on a virtual assistant (Gia) for certain recruiting-related communications with candidates.
McKesson job postings are posted on our career site: careers.mckesson.com.
McKesson is an Equal Opportunity Employer
McKesson provides equal employment opportunities to applicants and employees, without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability, age, genetic information, or any other legally protected category. For additional information on McKesson’s full Equal Employment Opportunity policies, visit our Equal Employment Opportunity page.
McKesson welcomes and encourages applications from people with disabilities. Accommodations are available on request for candidates taking part in all aspects of the selection process. If you require accommodation please contact us by sending an email to Disability_Accommodation@McKesson.com.
Join us at McKesson!
McKesson has become aware of online recruiting-related scams in which individuals who are not affiliated with or authorized by McKesson are using McKesson’s (or affiliated entities, like CoverMyMeds or RxCrossroads) name in fraudulent emails, job postings or social media messages. In light of these scams, please bear the following in mind:
- McKesson Talent Advisors will never solicit money or credit card information in connection with a McKesson job application.
- McKesson Talent Advisors do not communicate with candidates via online chatrooms or using email accounts such as Gmail or Hotmail. Note that McKesson does rely on a virtual assistant (Gia) for certain recruiting-related communications with candidates.
- McKesson job postings are posted on our career site: careers.mckesson.com.