Sr. Associate, Information Security Analyst - McKesson

Key Responsibilities

• Conduct comprehensive risk assessments and vulnerability analyses to identify and mitigate security gaps across cloud and on‑prem infrastructures.
• Lead incident response efforts, coordinating cross‑functional teams to contain, investigate, and remediate security incidents.
• Design and implement security architecture controls, including network segmentation, encryption, and identity & access management.
• Develop and maintain security policies, procedures, and compliance frameworks aligned with industry regulations (HIPAA, GDPR, ISO 27001).
• Provide threat intelligence analysis and actionable insights to enhance threat detection and prevention capabilities.

Requirements

• 5+ years of experience in information security, with a focus on risk management and incident response.
• Strong knowledge of cloud security (AWS, Azure, GCP) and network security fundamentals.
• Hands‑on experience with SIEM, SOAR, and vulnerability management tools.
• Excellent analytical, communication, and problem‑solving skills.
• Relevant certifications (CISSP, CISM, or equivalent) preferred.