Lead Data Security Architect

McKesson is an impact-driven, Fortune 10 company that touches virtually every aspect of healthcare. We are known for delivering insights, products, and services that make quality care more accessible and affordable. Here, we focus on the health, happiness, and well-being of you and those we serve – we care.

What you do at McKesson matters. We foster a culture where you can grow, make an impact, and are empowered to bring new ideas. Together, we thrive as we shape the future of health for patients, our communities, and our people. If you want to be part of tomorrow’s health today, we want to hear from you.

CoverMyMeds’ Technology is looking for a Lead Data Security Architect to join our Data Engineering team. Our Data Engineering Team is a highly technical group of results-driven Engineers, Analysts, and Architects focused on providing our internal and external clients with high-quality, repeatable, and scalable data solutions. Together with our various business units, the work our Data Engineering team does ultimately helps get more people the medicine they need to live healthier lives.

What You'll Do:

The Lead Data Security Architect will support and expand the secure design of data platforms that process, store, and deliver data critical for the enterprise. This role will define the technical strategy for data security across Databricks, reporting environments, and integrated systems, ensuring compliance with legal, privacy, security, and data rights requirements. The Lead will proactively partner with business and technology stakeholders to design trusted, stable, reliable, responsive, and secure solutions, and will work closely with engineering teams to embed security into data flows and reporting environments.

Our preferred candidate will reside in the Columbus, OH area, however, we will consider a highly qualified candidate who resides in our other hub cities of Atlanta GA or Irving TX, or a fully remote candidate.

We are not able to offer sponsorship for employment visas at this time. This includes individuals currently on F-1 OPT, STEM OPT, or any other visa status that would require future sponsorship. Candidates must be authorized to work in the United States on a permanent basis without the need for current or future sponsorship.

Position Description:

• Define and lead the data security architecture strategy for Databricks, reporting tools, and downstream analytical and transactional environments.
• Develop architectural patterns, standards, and controls for data classification, access, encryption, masking, tokenization, and auditing.
• Partner closely with data engineering teams to translate security requirements into technical designs, providing guidance, mentorship, and reference implementations.
• Work with enterprise security, compliance, and governance teams to ensure adherence to HIPAA, GDPR, CCPA, SOX, and internal data rights policies.
• Assist engineers in building secure ingestion and reporting pipelines, ensuring controls are implemented consistently and effectively.
• Design and oversee role-based and attribute-based access models (RBAC/ABAC) using Databricks Unity Catalog and other IAM integrations.
• Develop and maintain security playbooks, design guides, and reusable frameworks to accelerate secure solution delivery.
• Collaborate with business and technology partners to anticipate risks, conduct threat modeling, and ensure security by design in data solutions.
• Serve as a liaison between Data Tech and enterprise security, translating needs, managing dependencies, and leveraging enterprise capabilities where appropriate.
• Mentor engineers and analysts to increase organizational expertise in data security and privacy.

Skills You’ll Need:

• Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or related field, or equivalent, and typically requires 10+ years of technical and professional experience with data security, enterprise data architecture, or cloud data engineering.
• Strong expertise in data security controls (encryption at rest/in transit, masking, tokenization, key management, secure data flows).
• Deep experience with cloud data platforms (Databricks, Snowflake, Azure Data Lake, etc.) and associated governance frameworks (Unity Catalog or equivalent).
• Familiarity with healthcare and/or financial regulatory requirements (HIPAA, HITRUST, GDPR, SOX, CCPA).
• Hands-on understanding of role-based access models, data classification, and metadata-driven security.
• Experience partnering with engineers to design secure ingestion, storage, and reporting pipelines.
• Proven ability to operate in hybrid cloud / real-time / batch data environments.
• Demonstrated expertise in data governance and compliance within large-scale programs.

Preferred Skills:

• Excellent written and verbal communication; ability to simplify complex security concepts for business and engineering stakeholders.
• Strong collaboration skills; able to build consensus across data engineering, governance, platform, and enterprise security teams.
• Experience mentoring engineers and analysts to build organizational knowledge of secure data design.
• Creative problem solver, with ability to balance regulatory requirements, business needs, and technical feasibility.
• Strong sense of urgency and ownership for secure delivery of data solutions.
• Adept at influencing across multiple business and technical functions to achieve results.

We offer a competitive compensation package, including a base pay range of $142,700 - $237,900, as well as other benefits. For more information, please visit our website.

McKesson is an Equal Opportunity Employer, committed to a diverse and inclusive environment. We provide equal employment opportunities to applicants and employees without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability, age, or genetic information.