Tomorrow’s health is… Tackling challenges no one else can. (2024)

• Conceptual
• Proactive
• Problem-Solver
• Strategic
• Technologically Savvy
• Visual Thinker

Job Description:

McKesson is seeking a talented and experienced Sr. IAM (SSO/MFA) Automation Engineer to join our team. As a Sr. IAM Automation Engineer, you will be part of McKesson’s Centralized Authentication Services team. You will contribute during phases of design, configuration, deployments, and operations in areas of Identity and Access Management (IAM) Multi-factor authentication. This position is expected to have hands-on engineering experience in a fast-paced environment, working with Business and Internal customers to deliver complex access management solutions.

Expectations also include strong debugging and issue triaging skills to mitigate risks, resolve issues and deliver modern access management solutions.

This role will focus on engineering execution with responsibilities to sustain support, governance and oversee McKesson's authentication infrastructure and patient impacting applications.

The individual will also support the engineering, building, and scaling of our authentication infrastructure to deliver authentication, orchestration, and impersonation solutions and capabilities.

Essential Responsibilities and Functions:

• Deliver modern authentication integrations flawlessly for B2B, B2C and B2E customers using Okta, Azure Active Directory/Entra ID.
• Provide subject matter knowledge and expertise on Azure Active Directory/Entra ID and Okta Active Directory synchronization.
• Collaborate with business and technical partners to integrate systems and applications with centralized authentication such as Active Directory or Azure Active Directory/Entra ID.
• Strong experience in Okta versions, Okta Classic and Okta Identity Engine (OIE).
• Good experience in engineering identity orchestration solutions such as Strata’s Maverics Identity Orchestration software and/or other comparable industry solutions.
• Strong experience in the development of authentication workflows.
• Strong experience in configuring and enabling Single-Sign On (SSO) and Multi-factor authentication (MFA) for internal or external facing application systems.
• Good experience in engineering adaptive and behavioral authentication solutions.
• Good experience in Okta Access Gateway (OAG) and/or other comparable industry access gateway solutions.
• Work with Product and Application Teams closely to collaborate with other engineers and teams to implement new features, improvements, and fixes that are needed to handle our current and future scale.
• Lead the collaboration and discussion with business, application, and system stakeholders on meeting the Identity and Access Management (IAM) policies and standards through adopting enterprise IAM solutions or identifying alternatives on exceptions.
• Lead design and code review and perform quality inspections to ensure the consistent application of good engineering practices in adherence with McKesson standards, processes, and best practices.
• Partner with Leadership in implementing IAM processes per the evolving needs of the team and the solutions.
• Collaborate with business and technical partners to identify and scope the opportunities, quantify costs, outline potential value and ROI, identify risks, benefits, and constraints.
• Socialize and collaborate on IAM strategy with senior leadership and executives.
• Ensure compliance with audit requirements by proactively educating the teams on compliance requirements and integrating compliance requirements in their applications and systems.
• Identify opportunities to update the IAM policies and standards to align with evolving security, industry, and business requirements.
• Perform Proofs of Concepts (PoCs) to assess and identify the technologies per the needs of the organization.
• Develop documentation templates and direct and enforce the development of documentation throughout the development lifecycle of the solution.
• Seek opportunities to modify and enhance standards per the needs of the department.
• Provide recommendation to Senior Management on selection of technologies and strategic technical direction for the department.
• Develop multi-year next generation CIAM strategy and roadmap.
• Abide by McKesson’s security policies and practices.

Minimum Requirements

• Typically requires 7+ years of relevant experience.

Preferred Skills:

• Programming languages (PowerShell, Python, Ansible, Terraform, etc.)
• Advanced manipulation of authentication and authorization tokens (SAML assertions, OAuth claims, grants, and scopes, etc.)
• Certifications such as CISSP, CISM, Okta, or Azure are a plus.

Education:

• 4-year degree in IT or related field or equivalent experience

At McKesson, we care about the well-being of the patients and communities we serve, and that starts with caring for our people. That’s why we have a Total Rewards package that includes comprehensive benefits to supportphysical, mental, and financial well-being. Our Total Rewards offerings serve the different needs of our diverse employee population and ensure they are the healthiest versions of themselves.

As part of Total Rewards, we are proud to offer a competitive compensation package at McKesson. This is determined by several factors, including performance, experience and skills, equity, regular job market evaluations, and geographical markets. In addition to base pay, other compensation, such as an annual bonus or long-term incentive opportunities may be offered.

Our Base Pay Range for this position

€67,700 - €112,800

Apply