We’re building a world of health around every individual — shaping a more connected, convenient and compassionate health experience. At CVS Health®, you’ll be surrounded by passionate colleagues who care deeply, innovate with purpose, hold ourselves accountable and prioritize safety and quality in everything we do. Join us and be part of something bigger – helping to simplify health care one person, one family and one community at a time.
We’re looking for an experienced Security Engineer who’s comfortable jumping into code when needed and has a solid grasp of core software‑engineering concepts—knowing when and why to use objects, classes, and functions.
You care deeply about building and operating secure, reliable systems at scale and enjoy using code and automation to make security stronger and more efficient. You bring hands‑on experience across application, cloud, data, and network security, and you’re familiar with modern, multi‑cloud environments, including containerized, serverless, and microservices‑based architectures.
You also understand how security fits into the full software development lifecycle, with experience working alongside CI/CD pipelines and deployment automation. You’re comfortable securing both Windows and Linux server environments and have a working knowledge of configuration management, version control, and supporting DevOps operations.
- Develop and enforce engineering security policies and standards
- Develop and enforce data security policies and standards
- Drive security awareness across the organization
- Drive accountability in collaborative team Kanban practices
- Collaborate with Engineering and Business teams to develop secure engineering practices
- Serve as a Subject Matter Expert for Application Security
- Work with cross-functional teams to ensure security is considered throughout the software development lifecycle
- Analyze, develop, and configure security solutions across multi-cloud, on-premises, and colocation environments, ensuring application security, integrity, confidentiality, and availability of data
- Lead security testing, vulnerability analysis, and documentation
- Design, develop, and maintain enterprise-level reporting utilizing platforms such as PowerBI, Grafana, Tableau, and similar tools
- Participate in operational on-call duties to support infrastructure across the enterprise
- Develop incident response and recovery strategies
- 3-4+ years of experience in developing and deploying security technologies
- Experience with modern Software Development Lifecycles and CI/CD practices
- Experience for the remediation of vulnerabilities sourced from Static Analysis, Open Source Scanning, Mobile Scanning, and API Scanning
- Proficiency in Public Cloud (AWS/Azure/GCP) & Network Security
- Experience with Docker, Kubernetes, Security-as-Code, and Infrastructure-as-Code
- Experience with one or more general-purpose programming/script languages including but not limited to: Java, C/C++, C#, Python, JavaScript, Shell Script, PowerShell
- Experience with implementing and managing data protection measures and compliance with data protection regulations (e.g., GDPR, CCPA)
- Familiarity with OWASP Application Security Verification Standard
- Experience with direct, remote, and virtual teams.
- Understanding of at least one compliance framework (HIPAA, HITRUST, PCI, NIST, CSA).
- Proficient technical expertise with Static Analysis, Open Source Scanning, Mobile Scanning, and API Scanning security solutions for data warehouses and big data platforms, particularly with technologies like GitHub Advanced Security, Checkmarx, and Snyk.
- Proficient technical expertise in defining and implementing cyber resilience standards, policies, and programs for distributed cloud and network infrastructure, ensuring robust redundancy and system reliability.
- Demonstrated ability to oversee metric collection, perform analysis, and deliver insights to senior leadership through clear, data‑driven presentations
- Experience helping manage and optimize workflow for a Kanban-based team
- Proficient data analytics skills, including identifying trends, deriving actionable insights, and supporting decision-making
- Proficient in utilizing data analytics and reporting platforms, including PowerBI, Grafana, Tableau, and related tools.
- Demonstrated expertise in developing security automation solutions within CI/CD pipelines
- A minimum of a bachelor's degree in Computer Science, Software Development, Software Engineering, or a related field, or equivalent alternative education, skills, and/or practical experience
Anticipated Weekly Hours
40Time Type
Full timePay Range
The typical pay range for this role is:
$72,100.00 - $173,040.00This pay range represents the base hourly rate or base annual full-time salary for all positions in the job grade within which this position falls. The actual base salary offer will depend on a variety of factors including experience, education, geography and other relevant factors. This position is eligible for a CVS Health bonus, commission or short-term incentive program in addition to the base pay range listed above.
Our people fuel our future. Our teams reflect the customers, patients, members and communities we serve and we are committed to fostering a workplace where every colleague feels valued and that they belong.
Great benefits for great people
We take pride in offering a comprehensive and competitive mix of pay and benefits that reflects our commitment to our colleagues and their families.
Additional details about available benefits are provided during the application process and on Benefits Moments.
Qualified applicants with arrest or conviction records will be considered for employment in accordance with all federal, state and local laws.
What We Do
CVS Health is the leading health solutions company that delivers care in ways no one else can. We reach people in more ways and improve the health of communities across America through our local presence, digital channels and our nearly 300,000 dedicated colleagues – including more than 40,000 physicians, pharmacists, nurses and nurse practitioners. Wherever and whenever people need us, we help them with their health – whether that’s managing chronic diseases, staying compliant with their medications, or accessing affordable health and wellness services in the most convenient ways. We help people navigate the health care system – and their personal health care – by improving access, lowering costs and being a trusted partner for every meaningful moment of health. And we do it all with heart, each and every day.
.png){kind=logo}
