Senior Security Engineer - Enterprise Remediation

At CVS Health, we're building a world of health around every consumer and surrounding ourselves with dedicated colleagues who are passionate about transforming health care.

As the nation's leading health solutions company, we reach millions of Americans through our local presence, digital channels and more than 300,000 purpose-driven colleagues - caring for people where, when and how they choose in a way that is uniquely more connected, more convenient and more compassionate. And we do it all with heart, each and every day.

Position Summary

The Senior Security Engineer will serve as a technical expert focused on driving enterprise risk reduction through hands-on remediation support. This role partners directly with engineering teams and senior leadership to resolve high-impact vulnerabilities, accelerate remediation timelines, and reduce the organization's overall attack surface.

Enterprise Remediation Enablement: Partner with technical and business leaders across the enterprise to accelerate remediation efforts, eliminate recurring risks, and reduce the organization's overall attack surface through targeted remediation campaigns and coordinated response efforts.

Technical Remediation Guidance: Track progress of enterprise-wide remediation activities, verify resolution, and escalate unresolved risks as needed. Serve as a subject matter expert on remediation techniques and best practices, delivering technical support and guidance to internal teams. Partner with system and application owners to apply security patches, harden configurations, and resolve vulnerabilities based on risk and criticality.

Vulnerability Data Analysis & Correlation: Analyze scan data across multiple tools and environments to identify recurring issues, misconfigurations, and systemic gaps, providing insights to improve long-term remediation effectiveness.

Executive Report Development: Lead the development, maintenance, and delivery of all recurring reporting materials related to remediation progress, including executive-level and technical slide decks.

CDTO Reporting: Coordinate and lead recurring remediation status meetings with CDTOs to review vulnerability metrics, track resolution of high-risk findings, and drive technical accountability for remediation progress across infrastructure and application teams.

Required Qualifications

• 5+ years of experience in cybersecurity, IT operations, or vulnerability management roles.
• 5+ years of experience working with vulnerability scanning and management tools (e.g., Qualys, Tenable, Rapid7).
• 2+ years of experience creating executive or technical reports using data from security tools and platforms.
• 2+ years of experience preparing leadership presentations or reporting for security or IT programs.
• 2+ year of experience working with cloud infrastructure (e.g., AWS, Azure, Google Cloud Platform) or cloud security tools.

Preferred Qualifications

• Strong understanding of vulnerability management lifecycle and remediation processes.
• Familiarity with application security and common vulnerability types (e.g., OWASP Top 10).
• Experience supporting enterprise-level security initiatives or compliance programs.
• Proficiency with business intelligence tools (e.g., Power BI, Tableau, Splunk).
• Experience writing or interpreting SQL queries for data analysis or reporting.
• Ability to communicate effectively with stakeholders at varying levels of technical expertise.
• Exceptional attention to detail and comfort with compiling, formatting, and delivering metrics and reports.
• Strong organizational and coordination skills for managing meetings, agendas, and stakeholder follow-ups.
• Familiarity with risk-based vulnerability prioritization and remediation workflows.
• Understanding of relevant compliance and regulatory requirements (e.g., PCI DSS, SOC 2, HIPAA).

Education

Bachelor's degree, or equivalent experience (HS diploma + 4 years relevant experience)

Anticipated Weekly Hours
40

Time Type
Full time

Pay Range

The typical pay range for this role is:

$101,970.00 - $203,940.00

This pay range represents the base hourly rate or base annual full-time salary for all positions in the job grade within which this position falls. The actual base salary offer will depend on a variety of factors including experience, education, geography and other relevant factors. This position is eligible for a CVS Health bonus, commission or short-term incentive program in addition to the base pay range listed above.

Our people fuel our future. Our teams reflect the customers, patients, members and communities we serve and we are committed to fostering a workplace where every colleague feels valued and that they belong.

Great benefits for great people

We take pride in our comprehensive and competitive mix of pay and benefits - investing in the physical, emotional and financial wellness of our colleagues and their families to help them be the healthiest they can be. In addition to our competitive wages, our great benefits include:

• Affordable medical plan options, a 401(k) plan (including matching company contributions), and an employee stock purchase plan.
• No-cost programs for all colleagues including wellness screenings, tobacco cessation and weight management programs, confidential counseling and financial coaching.
• Benefit solutions that address the different needs and preferences of our colleagues including paid time off, flexible work schedules, family leave, dependent care resources, colleague assistance programs, tuition assistance, retiree medical access and many other benefits depending on eligibility.

For more information, visit ;br>
We anticipate the application window for this opening will close on: 05/19/2025

Qualified applicants with arrest or conviction records will be considered for employment in accordance with all federal, state and local laws.