Application Security & Software Assurance Analyst - (18001934) Description McKesson is in the business of better health and we touch the lives of patients in virtually every aspect of healthcare. We partner with payors, hospitals, physician offices, pharmacies, pharmaceutical companies and others across the spectrum of care to build healthier organizations that deliver better care to patients in every setting. We believe in the importance of strong, vital organizations because we know that patients can only be healthy when our system is healthy. Every single McKesson employee contributes to our mission-by joining McKesson you act as a catalyst in a chain of events that helps millions of people all over the globe. Talented, compassionate people are the future of our company-and of healthcare. At McKesson, you'll collaborate on the products and solutions that help us carry out our mission to improve lives and advance healthcare. Working here is your opportunity to shape an industry that's vital to us all. We understand the importance of a system that works together. Your expertise, drive and passion can help us improve everything we touch, from providers to payors to pharmacies. Join our team of leaders to begin a rewarding career. Wherever you contribute here at McKesson, you will have the ability to make a real impact in the lives of others. Current Need: The qualified candidate will possess experience working within medium to large commercial entities, institutions or enterprises having a central governance model and federated structure of business units, a strong understanding of critical build-in security practices, good vulnerability management reporting and tracking. To be effective in this role, the candidate seeking our Analyst role must have demonstrate a comprehensive understanding of secure development practices, software security testing, great written and oral communications skills, be highly efficient in the use of security tools used to assess the security quality and risk of software, Microsoft Office productivity tools, Agile methodology and associated SAFe, SCRUM or Kan-Ban methods. This individual will perform as an individual contributor of a global application security functional service discipline, and program and support of broadening secure development practices globally. Position Description: Primary responsibility is to perform and ensure service delivery within prescribed service level objectives by working closely with managers, analysts and designated representatives across enterprise technology services, business unit technology and risk functions Perform and facilitate security remediation priorities of software weaknesses and vulnerabilities identified in software components of McKesson-branded applications and products; and in components comprised of commercial and open-source software Execute internal client initiatives and program-driven taskings on time and within budget allocations while completing deliverables and meeting performance parameters Serve as an escalation point of contact for individual contributors, manager peer group across the enterprise and internal clients to ensure processes effectively address challenges and promote best practices that proactively resolve issues Prepare monthly or as required detailed, high caliber security quality and risk documentation that can be easily consumed by mixed audiences of technologists/non-technologists, risk management teams and business leaders Identify opportunities that continuously streamline and/or enhance built-in security practices and report business risks related to software technologies used by McKesson Participate in and help produce reports as required for oversight activities by outside regulators, inte... For full info follow application link. McKesson is an equal opportunity and affirmative action employer - minorities/females/veterans/persons with disabilities.