At CVS Health, we’re building a world of health around every consumer and surrounding ourselves with dedicated colleagues who are passionate about transforming health care.
As the nation’s leading health solutions company, we reach millions of Americans through our local presence, digital channels and more than 300,000 purpose-driven colleagues – caring for people where, when and how they choose in a way that is uniquely more connected, more convenient and more compassionate. And we do it all with heart, each and every day.

POSITION OVERVIEW:

This role will provide oversight and act in an advisory capacity to ensure compliance and enhance operational effectiveness focus on infrastructure vulnerability management and remediation.

Key Responsibilities:

• Serve as the primary vulnerability liaison for the IOSD organization, providing oversight and advisory support Qualys Identified vulnerabilities for Server, Database, Storage.
• Educate and communicate expectations regarding Policy, Process, and Control Standard reviews to ensure understanding and compliance.
• Advise issue owners on proper remediation strategies and milestone planning to address audit findings.
• Collaborate with process engineers and operational Subject Matter Experts (SMEs) to review identified technical and operational gaps and drive process improvements.
• Ensure consistency and accountability in remediation processes, reporting weekly/monthly status updates to leadership, highlighting high-risk items
• Drive accountability and responsibility by ensuring proper technical resource assignment
• Foster continuous improvement by contextualizing control language and mapping it to operational processes to generate required compliance evidence.

REQUIRED QUALIFICATIONS

• 5+ years of total experience in a technology centered role.
• 3+ years or experience with operational support focused on stakeholder management and executive communication.
• 2+ years of experience working with or adjacent to infrastructure technologies

PREFERRED QUALIFICATIONS

• Deep knowledge of Qualys and vulnerability management
• Hands on experience with infrastructure engineering
• Technical background in Risk and Controls
• Strong written and verbal communication skills

EDUCATION

• Bachelor’s degree or equivalent experience (High School Diploma and 4 years relevant experience)

• Serve as the primary vulnerability liaison for the IOSD organization, providing oversight and advisory support Qualys Identified vulnerabilities for Server, Database, Storage.
• Educate and communicate expectations regarding Policy, Process, and Control Standard reviews to ensure understanding and compliance.
• Advise issue owners on proper remediation strategies and milestone planning to address audit findings.
• Collaborate with process engineers and operational Subject Matter Experts (SMEs) to review identified technical and operational gaps and drive process improvements.
• Ensure consistency and accountability in remediation processes, reporting weekly/monthly status updates to leadership, highlighting high-risk items
• Drive accountability and responsibility by ensuring proper technical resource assignment
• Foster continuous improvement by contextualizing control language and mapping it to operational processes to generate required compliance evidence