SIGN IN
Lead DevSecOps Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

McKesson · 16 hours ago

Lead DevSecOps Engineer

positionUSA, TX, Irving
timeFull-time
remoteHybrid
senioritySenior Level, Lead/Staff
money$150K/yr - $251K/yr
date10+ years exp
McKesson is an impact-driven, Fortune 10 company that touches virtually every aspect of healthcare. They are seeking an experienced Lead DevSecOps Engineer to drive cloud infrastructure and security initiatives, focusing on designing, implementing, and maintaining secure, scalable infrastructure on Azure.
BiotechnologyHealthcarePharmaceuticalInformation TechnologyBiopharmaHealth Care
check
H1B Sponsor Likelynote

Responsibilities

Design and implement Infrastructure as Code (IaC) solutions on Azure using Terraform and Bicep
Manage and optimize Azure Kubernetes Service (AKS) clusters, including cluster operations and application deployments
Deploy and manage applications using Kubernetes manifests through SCCM (System Center Configuration Manager)
Design and implement secure CI/CD pipelines using GitHub Actions with integrated security scanning
Implement and maintain GitHub Advanced Security (GHAS) across repositories, including code scanning, secret scanning, and dependency reviews
Develop and enforce secure coding practices and security policies within GitHub workflows
Build automated security gates and compliance checks in CI/CD pipelines
Develop automation scripts using Python and Bash to streamline operations
Configure and optimize GHAS features including CodeQL analysis and security advisories
Lead incident response for security vulnerabilities identified through GHAS
Mentor team members on DevSecOps practices, GitHub security features, and cloud technologies
Collaborate with development, security, and operations teams to ensure secure delivery
Establish branch protection rules, security policies, and access controls in GitHub

Qualification

Azure Infrastructure as CodeAzure Kubernetes ServiceGitHub ActionsTerraformGitHub Advanced SecuritySecure CI/CD PracticesPythonBashContainer securityAzure security servicesLeast-privilege accessGitOps workflowsCompliance frameworksMonitoring toolsOWASP Top 10Infrastructure security scanning

Required

Expert-level experience designing and implementing Azure infrastructure using IaC principles
Strong experience as a cluster operator, including cluster configuration, scaling, and management
Proven ability to deploy and manage applications using Kubernetes manifests through SCCM
Advanced proficiency in writing, testing, and maintaining Terraform modules and configurations
Expert-level experience designing and implementing CI/CD pipelines using GitHub Actions
Strong knowledge of GitHub workflows, reusable actions, and workflow security best practices
Experience with secure secrets management in GitHub (GitHub Secrets, Azure Key Vault integration)
Hands-on experience implementing and managing GHAS features
Proficiency with CodeQL for custom security queries and code scanning
Experience with secret scanning, dependency scanning, and security advisories
Ability to triage and remediate security findings from GHAS
Strong understanding of supply chain security and SLSA framework
Experience implementing security scanning at multiple pipeline stages
Knowledge of artifact signing, provenance, and attestation
Familiarity with SAST, DAST, SCA, and container scanning tools
Strong Python and Bash scripting skills for automation and tooling
Deep understanding of container security and Kubernetes security best practices
Knowledge of Azure security services (Azure Security Center, Key Vault, Azure Policy, etc.)
Experience with least-privilege access controls and identity management
Bachelor's degree in Computer Science, Engineering, or related field (or equivalent experience)
10+ years of experience in DevOps/DevSecOps roles
3+ years of hands-on experience with Azure and Kubernetes
2+ years of experience with GitHub Actions and GitHub Advanced Security
Strong understanding of networking, security, and cloud architecture principles
Demonstrated ability to build security into development workflows without impeding velocity

Preferred

Experience with Azure Bicep for infrastructure deployment
GitHub certifications or advanced training
Azure certifications (e.g., Azure Solutions Architect, Azure Security Engineer)
Experience with GitOps workflows and tools (ArgoCD, Flux)
Knowledge of compliance frameworks (SOC 2, ISO 27001, PCI-DSS, NIST)
Experience with monitoring and observability tools (Prometheus, Grafana, Azure Monitor)
Familiarity with OWASP Top 10 and secure coding standards
Experience with infrastructure security scanning tools (Checkov, tfsec, Trivy)

Benefits

Annual bonus
Long-term incentive opportunities

Company

McKesson

twittertwittertwitter
Glassdoor3.7
company-logo
McKesson distributes medical supplies, information technology, and care management products and services.
dateFounded in 1833
location
Irving, Texas, USA
people-size10001+ employees
web-link
http://www.mckesson.com

H1B Sponsorship

McKesson has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (149)
2024 (129)
2023 (82)
2022 (142)
2021 (144)
2020 (154)

Funding

Current Stage
Public Company
Total Funding
unknown
1994-11-18IPO

Leadership Team

leader-logo
Brian Tyler
CEO
linkedin
leader-logo
Jim McAuliffe
CFO
linkedin

Recent News

Digital Commerce 360
McKesson ties AI, automation, and specialty tech to operating momentum
2026-02-08
IndiaTimes
Alphabet and discouraging data on the US job market drag Wall Street lower
2026-02-06
The Blade
Falling tech stocks and a plunge for bitcoin hit Wall Street
2026-02-06
Company data provided by crunchbase