Senior Security Engineer - Enterprise Remediation

At CVS Health were building a world of health around every consumer and surrounding ourselves with dedicated colleagues who are passionate about transforming health care.

As the nations leading health solutions company we reach millions of Americans through our local presence digital channels and more than 300000 purposedriven colleagues caring for people where when and how they choose in a way that is uniquely more connected more convenient and more compassionate. And we do it all with heart each and every day.

Position Summary

The Senior Security Engineer will serve as a technical expert focused on driving enterprise risk reduction through handson remediation support. This role partners directly with engineering teams and senior leadership to resolve highimpact vulnerabilities accelerate remediation timelines and reduce the organizations overall attack surface.

Enterprise Remediation Enablement: Partner with technical and business leaders across the enterprise to accelerate remediation efforts eliminate recurring risks and reduce the organizations overall attack surface through targeted remediation campaigns and coordinated response efforts.

Technical Remediation Guidance: Track progress of enterprisewide remediation activities verify resolution and escalate unresolved risks as needed. Serve as a subject matter expert on remediation techniques and best practices delivering technical support and guidance to internal teams. Partner with system and application owners to apply security patches harden configurations and resolve vulnerabilities based on risk and criticality.

Vulnerability Data Analysis & Correlation: Analyze scan data across multiple tools and environments to identify recurring issues misconfigurations and systemic gaps providing insights to improve longterm remediation effectiveness.

Executive Report Development: Lead the development maintenance and delivery of all recurring reporting materials related to remediation progress including executivelevel and technical slide decks.

CDTO Reporting: Coordinate and lead recurring remediation status meetings with CDTOs to review vulnerability metrics track resolution of highrisk findings and drive technical accountability for remediation progress across infrastructure and application teams.

Required Qualifications

• 5 years of experience in cybersecurity IT operations or vulnerability management roles.

• 5 years of experience working with vulnerability scanning and management tools (e.g. Qualys Tenable Rapid7.

• 2 years of experience creating executive or technical reports using data from security tools and platforms.

• 2 years of experience preparing leadership presentations or reporting for security or IT programs.

• 2 year of experience working with cloud infrastructure (e.g. AWS Azure GCP) or cloud security tools.

Preferred Qualifications

• Strong understanding of vulnerability management lifecycle and remediation processes.

• Familiarity with application security and common vulnerability types (e.g. OWASP Top 10.

• Experience supporting enterpriselevel security initiatives or compliance programs.

• Proficiency with business intelligence tools (e.g. Power BI Tableau Splunk).

• Experience writing or interpreting SQL queries for data analysis or reporting.

• Ability to communicate effectively with stakeholders at varying levels of technical expertise.

• Exceptional attention to detail and comfort with compiling formatting and delivering metrics and reports.

• Strong organizational and coordination skills for managing meetings agendas and stakeholder followups.

• Familiarity with riskbased vulnerability prioritization and remediation workflows.

• Understanding of relevant compliance and regulatory requirements (e.g. PCI DSS SOC 2 HIPAA).

Education

Bachelors degree or equivalent experience (HS diploma 4 years relevant experience)

Anticipated Weekly Hours

Time Type

Pay Range

The typical pay range for this role is:

This pay range represents the base hourly rate or base annual fulltime salary for all positions in the job grade within which this position falls. The actual base salary offer will depend on a variety of factors including experience education geography and other relevant factors. This position is eligible for a CVS Health bonus commission or shortterm incentive program in addition to the base pay range listed above.

Our people fuel our future. Our teams reflect the customers patients members and communities we serve and we are committed to fostering a workplace where every colleague feels valued and that they belong.

Great benefits for great people

We take pride in our comprehensive and competitive mix of pay and benefits investing in the physical emotional and financial wellness of our colleagues and their families to help them be the healthiest they can be. In addition to our competitive wages our great benefits include:

• Affordable medical plan options a 401(k) plan (including matching company contributions) and an employee stock purchase plan.

• Nocost programs for all colleagues including wellness screenings tobacco cessation and weight management programs confidential counseling and financial coaching.

• Benefit solutions that address the different needs and preferences of our colleagues including paid time off flexible work schedules family leave dependent care resources colleague assistance programs tuition assistance retiree medical access and many other benefits depending on eligibility.

For more information visit anticipate the application window for this opening will close on: 05/19/2025

Qualified applicants with arrest or conviction records will be considered for employment in accordance with all federal state and local laws.