Description:

McKesson is an impact-driven, Fortune 10 company that touches virtually every aspect of healthcare. We are known for delivering insights, products, and services that make quality care more accessible and affordable. Here, we focus on the health, happiness, and well-being of you and those we serve – we care.

What you do at McKesson matters. We foster a culture where you can grow, make an impact, and are empowered to bring new ideas. Together, we thrive as we shape the future of health for patients, our communities, and our people. If you want to be part of tomorrow's health today, we want to hear from you.

The Role:
The MMS Legal Department is seeking a Senior Counsel to join its Technology, Risk & People (TRP) pillar. This role is critical to MMS's transition to a standalone company. It provides practical, business-aligned legal support across technology, data, and risk-related matters, helping enable innovation while managing legal and regulatory risk. The role reports to the Managing Principal Counsel, Technology, Risk & People.

This position serves as a key legal partner to business, product, IT, and security teams, with primary responsibility for technology transactions and data-related matters (including AI) and supporting cybersecurity and privacy workstreams in coordination with internal stakeholders. The role requires sound judgment, strong collaboration, and the ability to adapt quickly in a dynamic environment with evolving priorities and some ambiguity. The successful candidate will help establish scalable legal frameworks and support responsible adoption of emerging technologies across MMS.

Key Responsibilities:

Legal Counseling: Provide practical, risk-based legal advice supporting day-to-day operations and business initiatives.
Technology Transactions: Draft and negotiate commercial and technology agreements (e.g., SaaS, software, data use, vendor contracts) and advise on key risks and solutions.
Contracting Tools: Develop and operationalize playbooks, templates, and fallback positions to improve contracting speed, consistency, and risk management across the business.
Privacy, Cybersecurity & Data: Translate privacy and data protection requirements (including HIPAA and U.S. privacy laws) into practical guidance and processes, and support cybersecurity and incident response matters in coordination with internal SMEs.
Emerging Technology: Support adoption of AI and other emerging technologies by providing practical legal guidance and helping establish governance approaches aligned with evolving regulatory expectations.
Ownership & Build: Lead legal support for enterprise technology initiatives (including platform implementations, data strategies, and AI-enabled solutions) and build scalable frameworks to support growth and risk management. Partner with Regulatory, Employment, and Litigation counsel to deliver integrated, enterprise-level risk management across the TRP pillar.
Collaboration: Partner with legal, compliance, IT, security, product, and HR teams to address cross-functional issues.
Execution & Adaptability: Manage competing priorities, adjust to changing business needs, and operate effectively with limited structure in certain areas.
Regulatory Awareness: Monitor legal and regulatory developments and translate them into clear, actionable guidance for the business.

Minimum Requirements:

JD and active U.S. bar membership
7–10 years of legal experience, including in-house or comparable advisory experience

Critical Skills & Experience:
Experience with:

Technology and commercial transactions
Privacy, data protection, and/or cybersecurity (including incident response)
Data-related legal and regulatory issues
Working knowledge of HIPAA and U.S. privacy laws
Strong drafting, negotiation, and issue-spotting skills
Demonstrated ability to provide clear, practical, business-oriented legal guidance
Proven ability to adapt to evolving business needs and operate effectively in ambiguous situations
Strong collaboration and communication skills

Preferred Qualifications: