Senior Azure Data platform Compliance Engineer

$116,000 - $193,300/Yr

McKesson - Irving, TX

posted 4 months ago

Full-time - Senior
Irving, TX
1-10 employees
Merchant Wholesalers, Nondurable Goods

About the position

As a Senior Azure Data Security and Compliance Engineer at McKesson, you will play a crucial role in ensuring the security and compliance of our Azure Data Platforms, specifically focusing on Azure Data Bricks and Delta Lake technologies. This position is part of a highly collaborative Cloud platform team that is dedicated to delivering innovative data solutions that enhance healthcare accessibility and affordability. Your expertise in data security and compliance will be instrumental in our digital transformation efforts, helping to protect sensitive data and maintain regulatory compliance across our platforms. In this role, you will be responsible for implementing and maintaining security controls, policies, and procedures that safeguard our data platforms from potential threats and vulnerabilities. You will work closely with cross-functional teams to assess risks, monitor security incidents, and ensure adherence to industry standards and regulations such as SOX, GDPR, and HIPAA. Your contributions will also extend to developing security strategies and providing guidance on best practices to various stakeholders within the organization. The position requires a proactive approach to risk management, including conducting risk assessments, collaborating with incident response teams, and participating in security audits. You will also be tasked with developing and delivering security awareness training programs to educate employees on best practices related to Azure cloud data platform security. Your ability to maintain accurate documentation and generate reports on security metrics will be essential for keeping management and stakeholders informed about compliance status and incidents.

Responsibilities

  • Implement and maintain security controls across Azure Data Bricks / Delta Lake platform and Data Ingestion and orchestration platforms including access controls, encryption, network security, and vulnerability management.
  • Monitor and ensure compliance with relevant industry standards, regulations (e.g., SOX, GDPR, HIPAA), and internal security policies.
  • Conduct risk assessments on Azure cloud data platforms to identify potential vulnerabilities and threats, providing recommendations and implementing remediation measures.
  • Collaborate with incident response teams to investigate and respond to security incidents related to data platforms, developing incident response plans and participating in incident response exercises.
  • Participate in security audits and assessments to evaluate the effectiveness of security controls and identify areas for improvement, addressing findings and implementing necessary changes.
  • Develop and deliver security awareness and training programs to educate employees on Azure cloud data platform security best practices.
  • Maintain accurate documentation of security controls, policies, and procedures, generating reports on security metrics, compliance status, and incidents for management and stakeholders.
  • Contribute to the development and execution of the organization's data platform security strategy, staying updated on emerging threats and security technologies.

Requirements

  • Bachelor's degree in Computer Science, Information Security, or a related field.
  • At least 7+ years of relevant experience in information security, compliance, or a related role.
  • Proven hands-on experience with Azure Data Bricks data platform, Delta Lake, ADF, Unity Catalog, and security technologies.
  • Hands-on experience coding Python/SQL Jupyter Notebooks is desirable.
  • Strong understanding of security controls, risk assessment methodologies, and compliance frameworks (SOX, GDPR, and general ITGC controls).
  • Knowledge of data protection laws and regulations is essential.
  • Proficiency in implementing and managing security controls within data platforms.
  • Familiarity with Role-Based and Fine-Grained Access Controls, security tools, vulnerability scanning, and log management systems.
  • Ability to assess risks, analyze security incidents, and provide recommendations for improvement.
  • Excellent written and verbal communication skills, with the ability to collaborate with cross-functional teams and effectively communicate complex security concepts to technical and non-technical stakeholders.
  • Strong attention to detail to ensure accurate documentation and compliance with security standards.
  • Proactive approach to stay updated on emerging security threats, technologies, and industry best practices.

Nice-to-haves

  • Relevant certifications such as CISSP, CISA, or CISM are desirable.

Benefits

  • Competitive compensation package including base pay and potential annual bonuses or long-term incentives.
  • Health, happiness, and well-being support for employees and their families.
  • Opportunities for professional growth and development within a Fortune 10 company.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service