Tomorrow’s health is… Tackling challenges no one else can.

IAM Engineer

Position Description:

As an IAM Engineer, you will be part of a highly collaborative team and work environment that delivers cutting edgesolutions for Enterprise Access Management at McKesson. Successful candidates will have experience in Information Security Engineering, Identity and Access Management, development, scripting, and a proven ability to influence and drive change.  This position does require strong scripting orsoftware development skills. This role will be instrumental tothe success of our digital transformational efforts in the IAM space.

Key Responsibilities:  

Will be responsible for following the standards of McKesson for Identity, IGA, Access Management, and related environments.

Performs hands-on support and integration of IAM solutions across multiple platforms as required, including but not limited to Identity Governance, Federation and custom development as needed.

Provide expert advice and assistance relating to all aspects of identity Management to broader IT, BU, and international teams, while communicating concepts of IAM to a broad range of audiences inside and outside of the team

Support integration activities with IGA, Access Management, Privileged Access Services etc.

Collaborate closely with the various global Security, Information Technology, BU, and application teams to ensure IAM tools, configurations, and industry best practices are implemented uniformly across the enterprise.

Frequently evaluate IAM technologies and services and stay current on the latest technologies and trends.

Create and maintain technical documentation such as SOPs, design documents, operational drawings, manuals, etc.

Provide support when needed for Directory, IAM services, servers, and databases.

Perform additional work as requested.

Required/Basic Qualifications

1+ Years with SailPoint or equivalent IGA tool

1+ years leading and implementing User Access reviews with IGA tools

1+ years of experience in integrating, developing, or administering security solutions Knowledge of Active Directory, Azure AD, LDAP, or other directory systems.

Knowledge of Identity and Access Management tools and concepts.

Deep experience with Sarbane Oxley, SOC, PCI and HIPPA compliance

Experience in analysis and design work, with the ability to communicate technology concepts and end-state vision.

Understanding of one or more control frameworks such as NIST, HIPAA-HITECH, SSAE 16, PCI, HITRUST, ISO 27001, etc.

Preferred Qualifications:

Preferred hands-on experience with Identity Governance tools and best practices.

Preferred hands-on experience with SailPoint, Okta, Azure AD, and/or Active Directory

Preferred experience with healthcare, privacy, or financial compliance regulations and IT and security frameworks and standards

OSCP, SANS/GIAC, CISSP or similar professional certifications is a plus.

Able to exercise professional judgment within defined policies and procedures.

Proactive, self-motivated, and goal oriented

Excellent troubleshooting skills with an aptitude for learning new technologies.

Strong customer service and communication (written and verbal) skills

Strong interpersonal and influencing skills.