Sr. Manager, IT Audit

Position Overview

McKesson is an impact-driven, Fortune 10 company that touches virtually every aspect of healthcare by delivering insights, products, and services to make quality care more accessible and affordable. In this role as Senior Manager, IT Audit, you will join a culture where you can grow, make an impact, and bring new ideas. Location: Hybrid Work Environment. At McKesson, we help transform the healthcare system and shape the future of health for patients, communities, and our people. If you want to be part of tomorrow’s health today, we want to hear from you.

Key Responsibilities

• Lead strategic IT audit initiatives that safeguard McKesson’s technology ecosystem.
• Oversee multiple audit engagements—from planning to reporting—ensuring comprehensive risk coverage and operational excellence.
• Partner with executives and subject matter experts to strengthen controls and mitigate risk.
• Provide thought leadership on audit frameworks and emerging technologies.
• Recruit, develop, and inspire a high-performing team to deliver exceptional results.
• Influence enterprise-wide risk management strategies through collaboration and insight.

Required Qualifications

• 8+ years of relevant IT or technology experience, including at least 2 years in a leadership role. IT audit experience is a plus.
• Strong understanding of IT risk, cybersecurity, and audit controls.
• Ability to manage complex projects and competing priorities.
• Exceptional communication and presentation skills, with the confidence to engage both senior executives and technical experts.
• Professional certifications (CISA, CISSP, CRISC, CISM, CPA) are preferred.

Preferred Qualifications

• Proven leadership experience in building high-performing teams, mentoring talent, and driving strategic initiatives in IT risk management and cybersecurity.
• Experience applying recognized risk and control frameworks to strengthen IT environments.
• Familiarity with AI governance frameworks, AI/ML operational controls, or emerging technology risk management.
• In-depth knowledge of cybersecurity domains, including identity & access management, asset security, security architecture, security operations, and secure software development.
• Experience with ERP systems and cloud platforms, especially SAP S/4HANA, SAP Analytics Cloud, and cloud security best practices.
• Understanding of third-party risk management and managed service oversight.
• Experience with M&A technology integration and separation planning, including cybersecurity and network considerations.
• Background in business continuity and resiliency planning, including data center and network security strategies.

Benefits & Perks

• Compensation: Competitive compensation and annual incentive plan.
• Benefits: Comprehensive benefits including Medical, Dental, Vision, 401(k), and Stock Purchase Program.
• Paid time off, including parental leave.
• Hybrid work flexibility.
• A mission-driven culture where your work truly matters.
• Salary: $107,100 - $178,500 per year.