We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
New
McKesson Corporation jobs

Lead Integrations Architect

McKesson Corporation
United States, Virginia, Richmond
9954 Mayland Drive (Show on map)
Mar 10, 2026

McKesson is an impact-driven, Fortune 10 company that touches virtually every aspect of healthcare. We are known for delivering insights, products, and services that make quality care more accessible and affordable. Here, we focus on the health, happiness, and well-being of you and those we serve - we care.

What you do at McKesson matters. We foster a culture where you can grow, make an impact, and are empowered to bring new ideas. Together, we thrive as we shape the future of health for patients, our communities, and our people. If you want to be part of tomorrow's health today, we want to hear from you.

Lead Integrations Architect

On-site, Hybrid, or Fully Remote: Richmond, VA, USA - 9954 Mayland Drive

About Medical-Surgical

McKesson Medical-Surgical (MMS) is a subsidiary and publicly reported segment of the McKesson Corporation. MMS distributes medical-surgical supplies, pharmaceuticals, diagnostic equipment and supplies, along with other solutions and services to virtually every type of healthcare setting and provider outside of the traditional hospital. These markets - often referred to as Alternate Care or Non-Acute Care - include physician offices, surgery centers, long-term care providers, laboratories, home health and hospice agencies, health systems, government facilities and online marketplaces and retailers.

Alternate Care markets are growing rapidly and MMS is proud to be a leader in this space. With a team of approximately 8,000 employees, a network of 15 distribution centers and approximately 900 delivery vehicles, we partner with more than 2,200 leading manufacturers and serve over 200,000 customer accounts across the U.S. Our catalog includes more than 280,000 SKUs of branded and private-label medical-surgical products - from bandages to specialty pharmaceuticals and COVID-19 tests.

Looking Ahead: A New Chapter for MMS

McKesson has announced its intent to separate MMS into an independent company - an exciting evolution that builds on MMS's strong foundation and proven leadership in the Alternate Care space. As a standalone company, MMS would be positioned to unlock new opportunities to innovate, grow and lead with even greater agility and focus. We will also continue to be one of the largest medical-surgical distributors in the U.S., with over $11B in annual sales. This separation would accelerate our mission and empower us to shape a future defined by customer-centricity, bold thinking and operational excellence. For job seekers, it's a unique moment to join a team that's already making a meaningful impact and leading the way in shaping the future of healthcare delivery in Alternate Care settings - with even greater opportunity ahead as we prepare to become an independent company.

Key Responsibilities:

MuleSoft Migration

  • Own the end-to-end architecture and technical leadership for migrating NewCo's MuleSoft integration platform to a Java Spring Boot / GCP-native model.

  • Conduct a full inventory and assessment of the existing MuleSoft integration estate, cataloguing all APIs, flows, connectors, policies, and dependencies across every application in scope.

  • Classify integrations by migration complexity, business criticality, and latency sensitivity producing a prioritized migration backlog that sequences latency-critical and ERP-dependent APIs first.

  • Design the target-state Spring Boot integration architecture: shared security starter libraries, DTO patterns, serialization controls, CORS and header configuration templates, Spring Security wiring standards, and observability instrumentation.

  • Define and enforce migration patterns for common MuleSoft constructs, DataWeave transformations to Java/Map Struct, MuleSoft connectors to Spring Boot clients, MuleSoft error handling to Spring exception patterns, and policy enforcement to Apigee gateway controls.

  • Establish the CI/CD pipeline standards for Spring Boot integration services: GitHub Advanced Security (GHAS) for SAST, container signing and scanning, GKE deployment gates, and environment promotion contry

  • Lead the pilot API migration end-to-end from MuleSoft assessment through Spring Boot implementation, Apigee configuration, load testing, pen test validation, and production cutover.

  • Provide technical oversight and code review across the migration engineering team, ensuring consistency with architecture standards and catching security or performance issues before they reach production.

  • Manage the transitional state where MuleSoft and Spring Boot coexist - defining clear boundaries, traffic routing, and deprecation timelines that avoid ambiguity about which platform owns which integrations.

Apigee API Gateway & API Management

  • Design and own the Apigee API gateway strategy that replaces MuleSoft's policy enforcement layer across all NewCo integrations.

  • Replicate all MuleSoft policies in Apigee X: Client-ID enforcement, OAuth 2.0 / JWT validation, rate limiting, quota management, threat protection, and IP allowlisting.

  • Define API design standards and governance: naming conventions, versioning strategy, error response schemas, pagination patterns, and OpenAPI specification requirements for all NewCo APIs.

  • Establish the API lifecycle management process from design review through publication, versioning, deprecation, and retirement using Apigee's developer portal and catalog capabilities.

  • Define API security architecture in coordination with the Security team: token scopes, service account permissions, mTLS for service-to-service communication, and network-layer controls via VPC Service Controls.

  • Produce and maintain the API registry for all NewCo integrations a single source of truth for what APIs exist, who owns them, what they do, and what their SLA commitments are.

Confluent Kafka Migration

  • Own the architecture and migration execution for transitioning NewCo's event streaming platform from Confluent Kafka

  • Assess the existing Confluent Kafka estate: topic inventory, producer/consumer application mapping, schema registry dependencies, connector configurations, and consumer group lag profiles.

  • Design the Google Managed Kafka target architecture: topic partitioning strategy, consumer group design, schema management (Apicurio or equivalent), dead letter queue patterns, and monitoring integration with Cloud Monitoring.

  • Define the migration approach for each topic and consumer group - including dual-publish transition strategies, consumer cutover sequencing, and rollback procedures for each migration wave.

  • Establish Kafka operational standards for NewCo: topic naming conventions, retention policies, partition sizing guidelines, consumer group ownership, and alerting thresholds.

  • Coordinate with Data Engineering and Platform teams to ensure Kafka-dependent pipelines (Snowflake, Databricks, BigQuery) are validated against the new platform before cutover.

IBM MFT and Go Anywhere Migration

  • Own the architecture and migration execution for replacing IBM MFT & GoAnywhere MFT as NewCo's managed file transfer platform.

  • Inventory all IBM MFT & Go Anywhere workflows: trading partners, transfer schedules, file formats, protocol configurations (SFTP, FTPS, AS2, HTTPS), encryption requirements, and downstream system dependencies.

  • Design the target architecture: project structure, workflow configurations, trading partner profiles, encryption key management, and audit/logging integration with GCP Cloud Logging.

  • Map each IBM MFT and GoAnywhere workflows, identifying configuration gaps, protocol differences, and any custom scripting that requires re-implementation.

  • Define the migration sequencing for file transfer workflows, prioritizing by business criticality and coordinating cutover timing with trading partners and downstream system owners.

  • Establish file transfer security standards for NewCo: key and certificate lifecycle management, protocol enforcement policies, PGP encryption standards, and access control for transfer accounts.

  • Validate all migrated workflows end-to-end including file delivery confirmation, error alerting, retry behavior, and audit trail completeness

Solution Architecture & Integration Design

  • Serve as the lead solution architect for all integration work across NewCo - not just the three migration programs, but the integration of any new SaaS platform, internal service, or data pipeline.

  • Own the integration architecture for NewCo's full SaaS stack: Salesforce, Snowflake, Databricks, BigQuery, JDE (ERP), HCM, and any net-new platforms onboarded during or after the carve-out.

  • Design integration patterns appropriate to each use case: synchronous REST APIs for real-time transactional integrations, event-driven Kafka patterns for high-throughput async flows, and managed file transfer for batch and trading partner exchanges.

  • Define the boundary between API-managed integrations (Apigee + Spring Boot), event-driven integrations (Google Kafka), and file-based integrations and govern which pattern is used for which use case.

  • Conduct architecture reviews for all integration designs produced by the engineering team providing structured feedback against NewCo's integration standards before development begins.

  • Produce architecture artifacts: integration design documents, sequence diagrams, data flow diagrams, API specifications (OpenAPI 3.x), and event schema definitions (Avro or JSON Schema).

Security, Observability & Operational Standards

  • Establish the security and observability baseline that ensures NewCo's integration platform is production-ready from day one.

  • Define and enforce the pre-configured Spring Security starter library used by all Spring Boot integration services, covering CORS, security headers, authentication wiring, CSRF protection, and GCP Cloud Logging integration.

  • Implement end-to-end observability for the integration platform: distributed tracing (Cloud Trace), structured logging (Cloud Logging), metrics (Cloud Monitoring), and Apigee analytics correlated across the full request path.

  • Define alerting and SLA monitoring for all production integrations - with particular attention to synchronous JDE APIs where latency thresholds are business-critical.

  • Own the integration security posture in coordination with the CISO and Security Architecture team: OWASP API Top 10 controls, penetration test scope for the Pilot API, DAST roadmap, and ongoing vulnerability management.

Documentation & Knowledge Transfer

  • Produce and maintain comprehensive integration architecture documentation: platform architecture diagrams, migration decision records, API standards, pattern libraries, and operational runbooks.

  • Build the internal Spring Boot integration capability across the engineering team through code reviews, design reviews, pair programming, and structured enablement sessions.

  • Transfer knowledge from the MuleSoft era to the Spring Boot era in a structured way ensuring the team understands not just what was migrated but why design decisions were made.

Minimum Requirements

  • Degree or equivalent and typically requires 10+ years of relevant experience. Less years required if has relevant Master's or Doctorate qualifications.

Additional Skills

  • Deep, hands-on MuleSoft expertise - including Anypoint Platform, DataWeave, Runtime Fabric (RTF), Anypoint Exchange, API Manager, and MuleSoft connector development. You must be capable of assessing a MuleSoft estate, not just describing its concepts.

  • Strong Java and Spring Boot engineering capability including Spring Security, Spring MVC, Spring Data, Spring Cloud, REST API design, JPA/Hibernate, and containerized deployment on GKE. Code review-level proficiency is required.

  • Proven experience leading or contributing to a MuleSoft-to-Spring Boot (or equivalent integration platform) migration including pattern mapping, phased transition, and coexistence management.

  • Hands-on experience with Apache Kafka or Confluent Kafka including topic design, producer/consumer development, schema registry, and operational management. Google Managed Kafka experience is a strong differentiator.

  • Experience with managed file transfer platforms IBM MFT, Go Anywhere, or equivalent including trading partner management, protocol configuration, and workflow migration.

  • Hands-on experience with Apigee X or Apigee Edge for API lifecycle management, policy enforcement, and developer portal management.

  • Experience with GCP-native services relevant to integration: Cloud Pub/Sub, GKE, Cloud Run, Cloud SQL, BigQuery, Cloud Logging, Cloud Monitoring, and VPC networking basics.

Technical Skills:

  • Integration Platforms: MuleSoft Anypoint Platform (deep), Apache Kafka / Confluent Kafka, Google Managed Kafka, GoAnywhere MFT, IBM MFT assessment, design, and migration capability across all.

  • API Development & Management: Spring Boot REST APIs, Spring Security, OpenAPI 3.x specification, Apigee X policy configuration (OAuth, Client-ID, rate limiting, threat protection), API versioning and lifecycle management.

  • Java Ecosystem: Java 17+, Spring Boot 3.x, Spring Security 6.x, Spring Cloud, Maven/Gradle, JUnit 5, Mockito, Docker, Kubernetes (GKE), Helm.

  • Event Streaming: Kafka topic design, Avro/JSON Schema, Schema Registry, consumer group management, Kafka Streams basics, dead letter queue patterns, and monitoring with Cloud Monitoring.

  • File Transfer: SFTP, FTPS, AS2, HTTPS, PGP encryption, certificate and key management, Go Anywhere project and workflow design, audit logging.

  • Cloud & GCP: GCP VPC networking basics, GKE deployment, Cloud Run, Cloud SQL, Cloud Logging, Cloud Monitoring, Cloud Trace, Secret Manager, IAM and Service Account management.

  • Security: OWASP API Top 10 controls, Spring Security configuration, OAuth 2.0 / JWT, mTLS, CORS, security headers, SAST (GitHub Advanced Security), container signing and scanning.

  • DevOps & IaC: GitHub Actions or equivalent CI/CD, SAST/DAST integration, Terraform for infrastructure provisioning, Git-based branching and change management, container image management.

  • Documentation & Design: OpenAPI 3.x, Avro schema definition, architecture decision records (ADRs), sequence and data flow diagramming, integration pattern documentation.

Education and Certifications:

  • Bachelor's or master's degree in computer science, Data Science, Information Technology, or a related field OR equivalent experience

  • MuleSoft Certified Integration Architect (MCIA) or MuleSoft Certified Developer - Level 1/2 confirms depth of MuleSoft platform knowledge required for migration assessment.

  • Google Professional Cloud Developer or Google Professional Cloud Architect required or to be obtained within 6 months.

  • Spring Professional Certification (VMware/Broadcom) desirable confirmation of Spring Boot depth.

Work Environment & Travel

  • Fully remote, hybrid, or On-site position - Richmond, VA

  • Travel - Minimal.

Career Level -P5

We are proud to offer a competitive compensation package at McKesson as part of our Total Rewards. This is determined by several factors, including performance, experience and skills, equity, regular job market evaluations, and geographical markets. The pay range shown below is aligned with McKesson's pay philosophy, and pay will always be compliant with any applicable regulations. In addition to base pay, other compensation, such as an annual bonus or long-term incentive opportunities may be offered. For more information regarding benefits at McKesson, pleaseclick here.

Our Base Pay Range for this position

$143,300 - $238,800

McKesson has become aware of online recruiting-related scams in which individuals who are not affiliated with or authorized by McKesson are using McKesson's (or affiliated entities, like CoverMyMeds or RxCrossroads) name in fraudulent emails, job postings or social media messages. In light of these scams, please bear the following in mind:

McKesson Talent Advisors will never solicit money or credit card information in connection with a McKesson job application.

McKesson Talent Advisors do not communicate with candidates via online chatrooms or using email accounts such as Gmail or Hotmail. Note that McKesson does rely on a virtual assistant (Gia) for certain recruiting-related communications with candidates.

McKesson job postings are posted on our career site: careers.mckesson.com.

McKesson is an Equal Opportunity Employer

McKesson provides equal employment opportunities to applicants and employees, without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability, age, genetic information, or any other legally protected category. For additional information on McKesson's full Equal Employment Opportunity policies, visit our Equal Employment Opportunity page.

McKesson welcomes and encourages applications from people with disabilities. Accommodations are available on request for candidates taking part in all aspects of the selection process. If you require accommodation please contact us by sending an email to Disability_Accommodation@McKesson.com.

Join us at McKesson!

Applied = 0
MORE JOBS LIKE THIS

(web-6bcf49d48d-ksmjz)