Cybersecurity Engineer

McKessonRichmond, VA
$98,900 - $164,900Onsite

About The Position

The Cybersecurity Engineer is responsible for implementing and supporting secure solutions and contributing to operational security effectiveness. Working under the direction of senior engineers and architects, this role helps deploy and manage security controls, monitors for issues, supports incident response activities, and participates in projects that enhance the organizations security posture. The Cybersecurity Engineer takes initiative to assist with planning and execution, performs assigned tasks within scope and guidance, and follows established security policies, standards, and standard operating procedures. The engineer leverages internal and external research tools, documents work performed, escalates risks or issues appropriately, and contributes to a positive security culture through collaboration and continuous learning.

Requirements

  • 4+ years of experience in cybersecurity and/or IT security operations, systems administration, networking, or a related technical area (internship/co-op experience considered).
  • Experience supporting or implementing security controls such as endpoint protection, vulnerability scanning, identity/access management, firewall rules, logging/monitoring, or secure configuration baselines.
  • Ability to follow change management processes, document work, and meet SLA expectations for assigned tasks and tickets.
  • Demonstrated willingness to learn new tools and technologies and to participate in training and continuous improvement activities.
  • Working knowledge of common security controls and technologies such as SIEM, IDS/IPS, firewalls, antivirus/EDR, IAM, and vulnerability management tools.
  • Experience implementing or supporting security solutions in on-prem and/or cloud environments; familiarity with basic cloud security concepts is preferred.
  • Ability to follow documented procedures, troubleshoot technical issues, and document work clearly (tickets, runbooks, change records).
  • Basic understanding of compliance and risk concepts and the importance of adhering to security policies and standards.
  • Strong collaboration and communication skills; able to escalate issues appropriately and work effectively with diverse teams.
  • Track record of acting with integrity, being curious and adaptable, and continuously improving technical skills.

Nice To Haves

  • Familiarity with one or more cloud platforms (AWS, Azure, or GCP) and foundational cloud security concepts (IAM, networking, logging, encryption).
  • Basic scripting or automation skills (e.g., Python, PowerShell, Bash) to assist with routine tasks and reporting.
  • Working knowledge of Windows and Linux administration fundamentals and common troubleshooting techniques.
  • Familiarity with security frameworks and standards (e.g., NIST, CIS Benchmarks, ISO 27001) and willingness to learn compliance obligations relevant to the business.
  • Highly organized with the ability to manage multiple tasks and follow through on assigned work.
  • Ability to participate in on-call or after-hours incident support as needed.
  • Preferred (not required): Security+, SSCP, or equivalent foundational security certification.
  • TDR/SecOps certifications (a plus): Google Cloud Professional Cloud Security Engineer and/or Associate Cloud Engineer, Google Professional Cloud DevOps Engineer, and/or GIAC certifications (e.g., GSEC, GCIH) depending on role focus.

Responsibilities

  • Implement, configure, and maintain security controls and tools according to documented designs, standards, and change-management procedures.
  • Provide day-to-day operational support for security technologies (hardware, software, customer applications, and managed solutions), including monitoring, troubleshooting, and routine maintenance.
  • Respond to service requests and escalation tickets within defined SLAs; document actions taken and outcomes.
  • Support incident response activities by collecting logs and evidence, assisting with containment/eradication tasks, and participating in post-incident remediation activities as directed.
  • Participate in security projects that assess existing controls and implement improvements; track tasks, risks, and dependencies and escalate issues when needed.
  • Develop and execute security test plans based on provided requirements; identify deficiencies and recommend enhancements to avoid production impact.
  • Work with security operations, infrastructure, and application teams to support secure configurations, vulnerability remediation, and compliance activities.
  • Stay current on new security threats and relevant technologies; leverage research tools and share findings with the team.
  • Perform other duties as assigned.

Benefits

  • competitive compensation package
  • annual bonus or long-term incentive opportunities
  • For more information regarding benefits at McKesson, please click here.
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service