Job Description To combat cybersecurity threats, CVShas established a robust Security Operations Center (SOC) and a professionalComputer Incident Response Team (CIRT) that utilize advanced SIEM (SecurityIncident Element Manager), security appliances, and technologies to monitor theenvironment for compromise. The CVS Computer Incident Response Team works toeffectively manage incidents according to NIST 800-61 standard recommendations.
In this role as Information SecuritySenior Advisor, you are responsible for assessing, managing, monitoring andcorrelating a wide range of data, and producing actionable information to beused by the business to enable decisions and define actions relating in keepingCVS Intellectual Property, business information, and customer and employee PIIand PHI secure. You will lead advanced threat incident management and responseacross the enterprise. You will conduct forensic image analysis, log analysis,timeline analysis, and Kill Chain analysis. You will prepare incident statusesand craft reports. You will organize resources, establish priorities, and ownthe investigations of information security incidents.
You will communicate and work with:Executive Leadership and Senior Management, System and Network Administrators,Application owners and developers, Law enforcement, and CVS Business Units i.e.Loss Prevention, Security, HR, Privacy, and Office of General Counsel.
We believe for success knowledge ofcurrent and evolving Information security technologies that cover all levels ofIT architecture including those that affect business processes, data,applications, and network and systems infrastructure is key. You should beflexible and adaptable in a fast-growing environment, possess integrity,committed to securing our systems.
years work experience in Information Security preferably in the Health
Services or Financial industries.
years of CIRT incident response and IT Crisis Management experience.
years experience in Information Security techniques from architecture to
planning and implementation; as well as technologies: firewalls, proxies,
VPN, IDS/IPS, SIEM, EDR, AV, DLP, Malware analysis, EuBA, Kill Chain
of information security regulations: PCI, GLBA, and Safe Harbor.
of various industry and government strategies and standards in privacy and
security including ITIL, COBIT, ISO 27001, and NIST standards.
EducationUndergraduate degree in information systems or computer science required. Business Overview
degree in Engineering, Cybersecurity, Information Assurance, Information
Security, Information Systems or Computer Science - preferred.
in DoD, DISA, NSA, and military information security related projects and
programs including those requiring a security clearance.
communications systems and physical security experience desirable.
Security Administration – Department of Homeland Security certification
for NTISSI/CNS standards 4011-4016 – preferred.
Computer Forensics Examiner (Access Data, SANS) – preferred.
Information Security Systems Professional (CISSP) – required.
Information Systems Manager (CISM) – preferred.
- Certified in Information Systems Risk Management
(CRISC) – preferred.
CVS Health, through our unmatched breadth of service offerings, is transforming the delivery of health care services in the U.S. We are an innovative, fast-growing company guided by values that focus on teamwork, integrity and respect for our colleagues and customers. What are we looking for in our colleagues? We seek fresh ideas, new perspectives, a diversity of experiences, and a dedication to service that will help us better meet the needs of the many people and businesses that rely on us each day. As the nation’s largest pharmacy health care provider, we offer a wide range of exciting and fulfilling career opportunities across our three business units – MinuteClinic, pharmacy benefit management (PBM) and retail pharmacy. Our energetic and service-oriented colleagues work hard every day to make a positive difference in the lives of our customers.
CVS Health is an equal opportunity employer. We do not discriminate in hiring or employment against any individual on the basis of race, ethnicity, ancestry, color, religion, sex/gender (including pregnancy), national origin, sexual orientation, gender identity or expression, physical or mental disability, medical condition, age, veteran status, military status, marital status, genetic information, citizenship status, unemployment status, political affiliation, or on any other basis or characteristic prohibited by applicable federal, state or local law. CVS Health will consider qualified job candidates with criminal histories in a manner consistent with federal, state and local laws. CVS Health will not discharge or in any other manner discriminate against any Colleague or applicant for employment because such Colleague or applicant has inquired about, discussed, or disclosed the compensation of the Colleague or applicant or another Colleague or applicant. Furthermore, we comply with the laws and regulations set forth in the following EEO is the Law Poster: EEO IS THE LAW
and EEO IS THE LAW SUPPLEMENT
Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities. If you require assistance to apply for this job, please contact us by clicking EEO AA CVS Health
CVS Health does not require nor expect that applicants disclose their compensation history during the application, interview, and hiring process.
For inquiries related to the application process or technical issues please contact the Kenexa Helpdesk at 1-855-338-5609. For technical issues with the Virtual Job Tryout assessment, contact the Shaker Help Desk at 1-877-987-5352. Please note that we only accept resumes via our corporate website: https://jobs.cvshealth.com/