MTA – Senior IAM Platform Engineer

McKesson is an impact-driven, Fortune 10 company that touches virtually every aspect of healthcare. We are known for delivering insights, products, and services that make quality care more accessible and affordable. Here, we focus on the health, happiness, and well-being of you and those we serve – we care.

What you do at McKesson matters. We foster a culture where you can grow, make an impact, and are empowered to bring new ideas. Together, we thrive as we shape the future of health for patients, our communities, and our people. If you want to be part of tomorrow’s health today, we want to hear from you.

Position Description:

We are seeking a detail-oriented and proactive Senior IAM Platform Engineer to join our team to optimize the daily operations of our Identity and Access Management platforms. This role is pivotal in ensuring secure, reliable, and scalable identity services across the enterprise, covering areas such as Identity Life Cycle Management, Access Management, Privileged Access Management, Secrets Management, and PKI. The ideal candidate will bring technical depth, automation experience and a service-oriented mindset. 

Responsibilities: 

• Operate and maintain IAM platform including Okta, Entra, Active Directory, and SailPoint. Ensure uptime, performance, and compliance across all IAM services.  

• Manage user Identity lifecycle (Joiner / Mover / Leaver), role-based access controls (RBAC), and access request workflows. 

• Support and Administer PAM solutions like CyberArk and HashiCorp.

• Manage Public Key Infrastructure (PKI), including certificate issuance, renewal, and troubleshooting for internal/external systems. 

• Troubleshoot complex IAM issues including access delays, MFA failures, provisioning errors, system performance and network bottlenecks. 

• Drive problem management by identifying root cause of issues, implementing long term fixes, and contributing to system and process resilience. 

• Participate in and support on-call rotations for 24 x7 incident response and shift based coverage including off-hours.

• Identify and remediate IAM-related vulnerabilities in collaboration with InfoSec and risk teams. 

• Collaborate with teams in SCRUM / Agile and processes to deliver IAM Projects effectively and on schedule. 

• Create, update, and maintain metrics and reports to show progress and value of IAM program. 

• Ensure operational compliance with internal security policies and external regulations (e.g, SOX, HIPAA). 

• Support internal and external audits by providing documentation, evidence and process insights. 

• Maintain and enhance standard operating procedures, ensuring they reflect current processes and controls. 

• Proven ability to train and mentor junior administrators, fostering their professional growth and enhancing team capabilities. 

Qualifications:

Minimum Requirements:

• 7+ years of experience in IAM platforms. 

• Strong understanding in IAM technologies such as Active Directory, Entra, IGA, RBAC, MFA, SSO, OAuth, SAML, PKI and PAM tools. 

• Excellent problem-solving, communication and stakeholder management skills. 

• Familiarity with compliance framework (SOX, HIPPA, etc.) and audit processes. 

Additional/Critical Skills:

• Industry certification such as CISSP, CISM or Certified Identity and Access Manager (CIAM) a plus. 

• Experience with scripting or automation (e.g., PowerShell, Python). 

• Experience in a regulated environment (Healthcare, Pharma or Financial Services) 

Education: 

• Bachelor’s degree (Information Technology, Computer Science, or related field), or equivalent experience.

At McKesson, we care about the well-being of the patients and communities we serve, and that starts with caring for our people. That’s why we have a Total Rewards package that includes comprehensive benefits to support physical, mental, and financial well-being. Our Total Rewards offerings serve the different needs of our diverse employee population and ensure they are the healthiest versions of themselves.

As part of Total Rewards, we are proud to offer a competitive compensation package at McKesson. This is determined by several factors, including performance, experience and skills, equity, regular job market evaluations, and geographical markets. The pay range shown below is aligned with McKesson's pay philosophy, and pay will always be compliant with any applicable regulations.  In addition to base pay, other compensation, such as an annual bonus or long-term incentive opportunities may be offered. 

Our Base Pay Range for this position