McKesson

Senior Penetration Testing Engineer

McKesson$127K — $212K *
Irving, TX 75061Hybrid
Information Technology
5 - 7 years of experience
Today
Be an Early Applicant
Job Overview by Ladders

Qualifications

  • 7+ years of relevant experience in offensive security and penetration testing.
  • Proficiency in scripting languages: Python, Bash, or PowerShell.
  • Expertise in tools such as Burp Suite Pro, OWASP ZAP, Nmap, and Kali Linux.
  • Experience in cloud penetration testing on platforms like AWS, Azure, GCP.
  • Strong analytical, problem-solving, and communication skills.

Responsibilities

  • Plan and execute penetration tests on web applications, APIs, and cloud environments.
  • Identify vulnerabilities using both automated tools and manual techniques.
  • Assist application owners in understanding risks and implementing remediation.
  • Develop customized tools for advanced testing engagements.
  • Collaborate with external penetration testing vendors.
  • Contribute to security tooling and CI/CD integration.
  • Deliver detailed reports to both technical and non-technical audiences.

Benefits

  • Comprehensive health benefits including medical, dental, and vision coverage.
  • 401(k) plan with company match and profit-sharing opportunities.
  • Generous paid time off policy and work-life balance support.
  • Professional development and education reimbursement programs.
  • Employee wellness programs and resources.
Full Job Description

The McKesson Pentest Team (MPT) is seeking a seasoned Senior Penetration Testing Engineer to join our team and organization. At its core, our mission is to identify what truly breaks security and ensure those weaknesses are resolved before they can be exploited.

This role is critical in proactively identifying and mitigating security vulnerabilities across our applications, infrastructure, and cloud environments. The ideal candidate will have extensive experience in offensive security, red teaming, and vulnerability exploitation, and will strengthen our security posture through rigorous testing and threat simulation.

Key Responsibilities:

Penetration Testing

  • Plan, execute, and report on penetration tests targeting web applications, APIs, mobile applications, infrastructure, and cloud environments across McKesson.

  • Identify exploitable vulnerabilities with both automated tools and manual techniques.

  • Assist system and application owners in understanding risk and implementing effective remediation.

  • Develop customized tools and exploitation techniques to support advanced testing tailored to specific engagements.

  • Collaborate and communicate effectively with external penetration testing vendors and service providers.

Security Tooling & Automation

  • Develop and maintain custom scripts and tools to support testing activities.

  • Contribute to the integration of security tools and processes within CI/CD pipelines to improve testing coverage and efficiency.

  • Evaluate and deploy commercial and open-source security testing tools.

Project Management

  • Partner with application teams to gain a thorough understanding of environments and define scope for business critical McKesson applications.

  • Define scope and track compliance of applications and entities with penetration testing policy requirements, including PCI DSS, HIPAA, and SOC.

  • Schedule and coordinate outreach with application teams to manage engagements with internal or external vendor resources.

Reporting & Communication

  • Deliver detailed, actionable reports to technical and non-technical stakeholders.

  • Present findings and recommendations to engineering, operations, and leadership teams.

  • Maintain documentation of testing methodologies, tools, and results.

Security Research & Innovation

  • Stay current with emerging threats, vulnerabilities, and offensive security techniques.

  • Participate in threat modeling and contribute to the development of attack simulations.

  • Mentor junior team members and contribute to internal knowledge sharing.

Minimum Requirements:

  • Degree or equivalent andtypically requires 7+ years ofrelevant experience.

Critical Experience/Technical Skills:

  • Proficiency in scripting languages such as Python, Bash, or PowerShell.

  • Expertise in tools such as Burp Suite Pro, Owasp ZAP, Nmap, and Kali Linux suite of tools for Web and Network Penetration testing.

  • Experience with cloud penetration testing (AWS, Azure, GCP).

  • Familiarity with MITRE ATT&CK framework and threat emulation techniques.

  • Understanding of secure coding practices and common vulnerabilities (e.g., OWASP Top 10)

  • Strong analytical and problem-solving abilities.

  • Excellent written and verbal communication skills.

  • Project and time management skills.

Preferred Knowledge & Skills:

  • Bachelors degree (in Computer Science, Cybersecurity, or a related field) or equivalent work experience.

  • Advanced certifications (e.g., OSCP, OSWA, OSWE, OSEP, OSCE, BSCP, HTB CWES, HTB CWEE, or other).

  • Experience in purple teaming and collaboration with defensive security teams.

  • Experience managing application security tools, including SAST, DAST, SCA, and WAF solutions.

  • Experience with bug bounty programs, including platforms such as HackerOne and Bugcrowd.

  • Knowledge of regulatory frameworks, including PCI DSS, HIPAA, and NIST standards.

  • Interest in and experience with AI, including development, infrastructure, agents, penetration testing, or red teaming use cases (e.g., XBOW, Hadrian NOVA, Horizon3, Pentera, vPenTest, or open source alternatives).

We are proud to offer a competitive compensation package at McKesson as part of our Total Rewards. This is determined by several factors, including performance, experience and skills, equity, regular job market evaluations, and geographical markets. The pay range shown below is aligned with McKesson's pay philosophy, and pay will always be compliant with any applicable regulations. In addition to base pay, other compensation, such as an annual bonus or long-term incentive opportunities may be offered. For more information regarding benefits at McKesson, please

Our Base Pay Range for this position

$127,600 - $212,600

About McKesson

McKesson Corporation provides medicines, pharmaceutical supplies, information and care management products and services across the healthcare industry. The Company operates in two segments. The McKesson Distribution Solutions segment delivers ethical drugs, medical-surgical supplies and equipment and health and beauty care products throughout North America. This segment also provides specialty pharmaceutical solutions for biotech and pharmaceutical manufacturers, sells financial, operational and clinical solutions for pharmacies (retail, hospital, long-term care) and provides consulting, outsourcing and other services. The McKesson Technology Solutions segment delivers enterprise-wide clinical, patient care, financial, supply chain, strategic management and software solutions. In July 2011, the Company acquired Portico Systems from Safeguard Scientifics, Inc. On March 25, 2012, it acquired the independent banner and franchise businesses of Katz Group Canada Inc. McKesson Distribution Solutions delivers pharmaceuticals to retail pharmacies and institutional providers like hospitals and health systems. They operate pharmaceutical distribution centers across the country, serving customers in all 50 states. They also deliver a comprehensive offering of health care products, technology, equipment and related services to the alternate site market, including physician offices, surgery centers, long-term care facilities and home care businesses across the country. McKesson is currently the largest pharmaceutical distributor in North America. McKesson also operates McKesson Canada and has an equity holding in Nadro, a leading distributor in Mexico.

McKesson Careers

Join McKesson, a leading global healthcare company, and be part of a team that is redefining the future of healthcare. With a variety of job opportunities available, McKesson is the perfect place to advance your career, whether you're a seasoned professional or just starting out. Work You’ll Do At McKesson, we are committed to improving care in every setting—one product, one partner, one patient at a time. We’re seeking talented professionals to join our team and contribute to a culture of innovation, diversity, and leadership. Our employees are driven by a deep sense of purpose and a desire for continuous growth and improvement. Empower Your Future in Healthcare With positions ranging from internships to leadership roles, McKesson offers unparalleled employment opportunities to develop your skills and advance your career. Our commitment to diversity training ensures that all team members have the opportunity to thrive. Join a team where your skills will be honed, your professional growth will be supported, and where you can genuinely see the difference you make in the lives of patients around the world. Innovative Work Environment McKesson is at the forefront of healthcare innovation. Our team is constantly exploring new ways to improve patient outcomes and streamline care processes. This commitment to innovation is what sets us apart and what makes McKesson an exciting place to work. Career Development and Benefits McKesson believes in nurturing the potential of its employees through robust career development programs and comprehensive benefits designed to support your life and well-being. From leadership training to health and wellness benefits, we ensure our team members are equipped to meet their professional and personal goals. Explore Job Opportunities Whether you’re looking for an internship to kickstart your career, or a senior position to utilize your extensive experience, McKesson offers a range of opportunities. Explore our open positions and find where you can make a difference at McKesson. Stay Connected Join Our Team Search for open positions that match your skills and interests. We are looking for passionate, curious, and solution-driven team players who are ready to take the next step in their careers. Keep Up to Date Stay ahead with career tips, insider perspectives, and industry-leading insights you can put to use today—all from the people who work here. Networking and Professional Growth At McKesson, networking and professional growth are part of our everyday environment. We encourage our employees to connect, share, and learn from each other to foster personal and professional development. Job Alert Emails Personalize your subscription to receive job alerts, latest news, and insider tips tailored to your preferences. Discover the exciting and rewarding career opportunities that await you at McKesson. Join McKesson today and be part of a team that is dedicated to shaping the future of healthcare.
Learn more about McKesson
Size
58,000 employees
Market Cap
$53.7 billion
Industry
Pharmaceuticals & Biotech
Net Income
-$4.1 billion
Founded
1833
5 Year Trend
+5.9%
Revenue
$237.6 billion
NASDAQ
MCK
* Ladders Estimates

Similar Jobs

Ad banner background

Get Ready For Your
Next Interview

More Jobs at McKesson

More Information Technology Jobs

Find similar Senior Penetration Testing Engineer jobs:

NationwideIrving, TX