Business Information Security Officer - Corporate Functions

Job Description:

McKesson’s Corporate Functions Business Information Security Officer (BISO) will lead, plan, direct, and control activities for assurance, security (information, application, and infrastructure), and compliance across McKesson Corporate Functions, including Technology, HR, Legal, Finance, Privacy, and Compliance. This Security Principal (P6) role ensures successful delivery of Information Security and IT risk management services in compliance with McKesson Cyber Security policies, standards, and the NIST framework.

The ideal candidate has high energy, strong presence, and a passion for delivering value from the cybersecurity function. They possess deep technical security, governance, and risk expertise and will be the primary advocate for security initiatives across these functions, maintaining consistent alignment with the McKesson Cyber Security organization.

This role reports directly to the Senior Director of Cyber Governance and Risk Management. Manage corporate function cyber security and risk requirements, ensuring high-quality execution.

Minimum Qualifications:

Bachelor’s Degree or equivalent experience in Information Security, Computer Science, or related field.  15+ years of relevant professional experience, including 8+ years in impactful  roles interacting with senior stakeholders in a cyber security or technology function

Required Skills:

Strategic thinker with the ability to communicate and influence at both technical team and senior management levels. Ability to integrate various security and data protection controls to mitigate risk effectively. Deep knowledge of regulatory, operational, information, and technology risk areas.
Strong familiarity with information, application, and infrastructure security control mechanisms.  Experience utilizing the NIST framework for effective cybersecurity and risk management. Ability to act as a trusted advisor and partner.
#J-18808-Ljbffr