McKesson is an impact-driven Fortune 10 company that touches virtually every aspect of healthcare. We are known for delivering insights products and services that make quality care more accessible and affordable. Here we focus on the health happiness and well-being of you and those we serve we care.

What you do at McKesson matters. We foster a culture where you can grow make an impact and are empowered to bring new ideas. Together we thrive as we shape the future of health for patients our communities and our people. If you want to be part of tomorrows health today we want to hear from you.

McKesson Canada Business Information Security Officer (BISO)

Job Description:

McKesson Canada is one of the largest healthcare companies in Canada. Through our many divisions McKesson Canada touches virtually every Canadian from coast to coast fromdelivering 1/3 of medications to Canadians as the largest pharmaceutical distributor in Canadato evolving pharmacy care as the largest pharmacy network in Canada under such brands as Rexall Guardian I.D.A. RemedysRxand The Medicine Shoppe or Proxim and Uniprix in Quebec. Together with divisions focused on rare diseases specialty medication and care our robust offering is what differentiates us within the healthcare spectrum.

At McKesson Canada our purpose is to advance health outcomes for all Canadians.

We are looking for a Business Information Security Officer (BISO) who will lead plan direct and control activities for assurance security (information application and infrastructure) and compliance across the McKesson Canada Business Unit. This Security Principal (P6) role ensures successful delivery of Information Security and IT risk management services in compliance with McKesson Cyber Security policies standards and the NIST framework.

The ideal candidate has high energy strong presence and a passion for delivering value from the cybersecurity function. They possess deep technical security governance and risk expertise and will be the primary advocate for security initiatives in the BU maintaining consistent alignment with the McKesson Cyber Security organization.

The candidate will work directly with senior leaders across the business and should have the requisite capabilities to succeed at that level. This individual will work as part of a large team of security professionals in a structure designed to help them succeed in delivering best-in-class security to this stakeholder group.

This role reports directly to the Senior Director of Business Engagement

Required Skills:

• Demonstratable track record of impactful execution in this space.

• Strategic thinker with the ability to communicate and influence at both technical team and senior management levels.

• Ability to integrate various security and data protection controls to identify and mitigate risk effectively.

• Strong knowledge of cyber technology platforms that assist with Detect and Protect and the ability to interact with those teams as a peer.

• Strong familiarity with information application and infrastructure security control mechanisms.

• Experience utilizing the NIST framework for effective cybersecurity and risk management.

• Strong understanding of privacy laws data protection regulations breach notification practices and incident response management.

• Ability to act as a trusted advisor and partner to the McKesson Canada BU clearly articulating the risk landscape and providing input as to where the BU should focus their attention and resources from a cyber risk perspective.

Key Accountabilities:

Risk Management:

• Manage McKesson Canada specific cyber security and risk requirements ensuring high-quality execution.

• Co-ordinate IT risk compliance and audit reviews and assist with remediation of findings.

• Ensure technology programs comply with relevant laws regulations and McKesson cyber security policies.

Compliance:

• Proactively lead Participate in corporate function initiatives to represent the cybersecurity function.

• Ensure security programs address IT risk management findings and follow relevant laws regulations and policies.

Stakeholder Engagement:

• Provide practical advice and direction enabling the BU to make cyber risk-based prioritization decisions.

• Report Key Risk and cyber security performance Indicators to McKesson Canada leadership for informed decision-making.

• Develop strong partnerships with IT leaders and Cyber Security service teams to manage McKesson Canada cyber security risk.

Minimum Qualifications:

• 15 years of relevant professional experience including 8 years in impactful roles interacting with senior stakeholders in a cyber security or technology function.

Education:

Bachelors Degree or equivalent experience in Information Security Computer Science or related field.

Preferred Certifications:

CISSP CISM or equivalent certifications.

Work location expectation: Candidates must be willing to work onsite at least three days per week.

We are proud to offer a competitive compensation package at McKesson as part of our Total Rewards. This is determined by several factors including performance experience and skills equity regular job market evaluations and geographical markets. The pay range shown below is aligned with McKessons pay philosophy and pay will always be compliant with any applicable regulations. In addition to base pay other compensation such as an annual bonus or long-term incentive opportunities may be offered. For more information regarding benefits at McKesson pleaseclick here.

Our Base Pay Range for this position

McKesson has become aware of online recruiting-related scams in which individuals who are not affiliated with or authorized by McKesson are using McKessons (or affiliated entities like CoverMyMeds or RxCrossroads) name in fraudulent emails job postings or social media light of these scams please bear the following in mind:

McKesson Talent Advisors will never solicit money or credit card information in connection with a McKesson job application.

McKesson Talent Advisors do not communicate with candidates via online chatrooms or using email accounts such as Gmail or Hotmail. Note that McKesson does rely on a virtual assistant (Gia) for certain recruiting-related communications with candidates.

McKesson job postings are posted on our career site: .

McKesson is an Equal Opportunity Employer

McKesson provides equal employment opportunities to applicants and employees without regard to race color religion sex sexual orientation gender identity national origin protected veteran status disability age genetic information or any other legally protected category. For additional information on McKessons full Equal Employment Opportunity policies visit our Equal Employment Opportunity page.

McKesson welcomes and encourages applications from people with disabilities. Accommodations are available on request for candidates taking part in all aspects of the selection process. If you require accommodation please contact us by sending an email to .

Join us at McKesson!