Job Specifications
McKesson is an impact-driven, Fortune 10 company that touches virtually every aspect of healthcare. We are known for delivering insights, products, and services that make quality care more accessible and affordable. Here, we focus on the health, happiness, and well-being of you and those we serve - we care.
What you do at McKesson matters. We foster a culture where you can grow, make an impact, and are empowered to bring new ideas. Together, we thrive as we shape the future of health for patients, our communities, and our people. If you want to be part of tomorrow's health today, we want to hear from you.
Job Title
Lead Automation Engineer
Summary We are seeking a Lead Automation Engineer (P5) to design, deliver, and scale automation that powers our cybersecurity platforms and operations. You will own the automation strategy and execution across SIEM, SOAR, endpoint, vulnerability, and cloud-security workflows-eliminating manual toil, standardizing deployments, and embedding reliability into the way we operate.
Location note: this is a remote role within 50km of Mississagua Ontario or St Laurent Quebec, or Calgary, AB, or Vancouver, BC
What You'll Do
Own the automation roadmap aligned to platform runbooks and quarterly objectives; prioritize high-value use cases that reduce manual effort and improve speed/quality.
Design, implement, and maintain Python-based playbooks, micro-services, and scripts for enrichment, decisioning, remediation, and evidence collection.
Deliver self-service capabilities (CLI/ChatOps/UI) that enable platform teams and SOC/IR to perform standardized actions safely and repeatedly.
Build robust API integrations between security tools and enterprise systems (eg, SIEM/SOAR, endpoint, vulnerability scanners, ticketing/ServiceNow, CMDB, identity, cloud services).
Implement CI/CD workflows (GitHub Actions/Azure DevOps/GitLab CI), environment promotion, secrets management, and rollback safety for automation code.
Add observability to automation (structured logging, metrics, traces, alerts); track playbook success/failure, latency, and error budgets.
Act as technical lead for automation initiatives; mentor engineers on Python, integration patterns, and CI/CD.
Partner closely with SOC/IR, Platform Ops, Cloud/Infra, and GRC to align automation to operational, resilience, and compliance needs. What You Bring
Expert-level Python (designing maintainable packages/services, async patterns where useful, testing, packaging, dependency management).
Practical experience building API integrations (REST/GraphQL), handling auth flows (OAuth2, JWT), and working with JSON/structured logs.
Demonstrated DevOps capability: CI/CD pipelines, artifact versioning, release orchestration, and basic container familiarity (Docker).
Hands-on with at least two security/platform domains (eg, SIEM/SOAR, endpoint/EDR, vulnerability management, email/data security, cloud security).
Strong communication skills and a track record of shipping reliable automation that measurably improves operations. Minimum Requirements
Degree or equivalent and typically requires 10+ years of relevant experience. Less years required if has relevant Master's or Doctorate qualifications. Preferable Skills & Experience
Experience with Terraform or Ansible for provisioning/configuration.
Familiarity with event-driven patterns (webhooks, message queues) and serverless runtimes.
Experience optimizing cost/throughput for data pipelines or security platform ingestion.
Comfort with basic Front End for internal self-service tools (eg, lightweight UIs, ChatOps). What Success Would Look Like
Toil reduction and time-to-complete improvements for automated workflows.
Playbook success rate, latency, and reduction in manual escalations.
Coverage of automation across priority platforms (eg, % alerts triaged/enriched automatically, % standard changes automated).
Deployment reliability (pipeline success, rollback readiness, change-related incident reduction).
Quality and completeness of audit-ready evidence produced automatically by automation jobs. Tools & Environment
Language: Python (primary)
DevOps: GitHub/GitHub Actions or Azure DevOps; container builds; secrets management (eg, Key Vault/Secrets Manager)
Integrations: REST/GraphQL APIs, ServiceNow/CMDB, identity platforms, cloud provider SDKs
Security platforms: SIEM/SOAR (eg, Splunk, Cortex XSIAM/XSOAR), EDR (eg, SentinelOne/Defender), Vulnerability Mgmt (eg, Rapid7/Tenable), Email/Data Security (eg, MDO/Proofpoint)
Nice-to-have: Terraform/Ansible, message queues (Event Hub/Kafka/SQS), simple UI/ChatOps front-ends
Intitule du poste
Ingenieur/e principal en automatisation
Resume Nous recherchons un/e Ingenieur/e principal en automatisation (P5) pour concevoir, livrer et faire evoluer des automatisations qui alimentent nos plateformes et operations de cybersecurite. Vous serez responsable de la strategie et de l'execution de l'automatisation a travers les flux SIEM, SOAR, endpoints, gestion des vu