Job Category: Information Systems
Clinical Licensure Required : N/A
Job Type: Full Time Position Summary:
The Enterprise Information Security Architect (EISA) will be working on creating architecture standards, frameworks, roadmaps also provide project lifecycle information security support to designated application development teams other internal teams.
Key responsibilities for this role will be to engage in the initial requirements definition (including analysis of threats and risks and alignment with CVS Caremark security standards); conduct and facilitate security reviews including Vulnerability Management, testing requirements throughout the development lifecycle; facilitate communication with other Subject Matter Experts; and plan the resolution of any identified vulnerabilities/issues. They will monitor changes in the risk profile and exposure for the application, help other security teams perform regular assessments based on changes in the threat landscape and industry incidents. Work with the project owners to review all proposed changes to ensure that effective controls remain in effect.
This role will also work with other Security Architects, Privacy, Compliance and the Risk Management teams to report any Risk exceptions / Business variances and help remediate them according to the CVS Caremark guidelines. This role will help Policy management teams to update the respective Security policies and standards documents.
This role will assist in publishing technology blueprints, defining roadmaps and evaluating tools and processes.
This role will also assist other application teams and IS functions including in the following areas: Provide ad-hoc security advice; Support technical risk assessments; Assist Security Incident Response Teams in the investigation of incidents ,if needed; Assist the system development and infrastructure units in identifying IS risks and the appropriate controls for development, day-to-day operation, and emerging technologies.
Additional skills critical to this role: In depth, hands-on understanding and application architectures and technology (including web applications, mobile technology, web 2.0 technology, identity and access management); Thorough understanding of industry and corporate technology standards for Information Security; familiarity with security hacking tools and techniques; Strong understanding of business processes in support of online and mobile channels for retail industries; Strong judgment and decision-making skills; Excellent skills in preparing and present strategies, recommendations, and value propositions to senior leadership teams. Required Qualifications:
5 to 10 years in Information Technology and/or Information Security as Security Architect or Application Architect with Security knowledge and skill BS degree in Information Security/ Computer Science/Electronics and Engineering /Information Technology Experience in research and development Self-motivated with the ability to work independently and as a team member with minimal direction Preferred Qualifications:
Excellent writing and interpersonal skills Strong knowledge of Central Log Management and SEIM implementations Strong knowledge of Vulnerability management tools. Strong knowledge on how the SOC (Security Operations Centers) and Security Incident Management teams work. Strong knowledge of software development/deployment methodologies in web/mobile based environments. Strong knowledge of software security for web and mobile applications Background with mobile hardware and software technologies Strong understanding of information security and risk analysis processes (e.g. threat modeling) Education:
BS degree in Information Security/ Computer Science/Electronics and Engineering /Information Technology Experience in research and development Business Overview:
CVS Caremark, through our unmatched breadth of service offerings, is transforming the delivery of health care services in the U.S. We are an innovative, fast-growing company guided by values that focus on teamwork, integrity and respect for our colleagues and customers. What are we looking for in our colleagues? We seek fresh ideas, new perspectives, a diversity of experiences, and a dedication to service that will help us better meet the needs of the many people and businesses that rely on us each day.
As the nation’s largest pharmacy health care provider, we offer a wide range of exciting and fulfilling career opportunities across our three business units – MinuteClinic, pharmacy benefit management (PBM) and retail pharmacy. Our energetic and service-oriented colleagues work hard every day to make a positive difference in the lives of our customers.
CVS Health is a pharmacy innovation company helping people on their path to better health. Through our 7,800 CVS/pharmacy retail pharmacies,...