Security Engineer

Bring your heart to CVS Health. Every one of us at CVS Health shares a single, clear purpose: Bringing our heart to every moment of your health. This purpose guides our commitment to deliver enhanced human-centric health care for a rapidly changing world. Anchored in our brand - with heart at its center - our purpose sends a personal message that how we deliver our services is just as important as what we deliver.

Our Heart At Work Behaviors™ support this purpose. We want everyone who works at CVS Health to feel empowered by the role they play in transforming our culture and accelerating our ability to innovate and deliver solutions to make health care more personal, convenient and affordable.Position SummaryAs a Security Engineer on the Vulnerability Scanning Team, you will be responsible for ensuring the effectiveness and reliability of our vulnerability scanning processes. You will work closely with various business units to maintain and expand our scanning capabilities, using tools such as Qualys. Your role will involve troubleshooting, documentation, and collaboration to enhance our security posture.

• Maintain Scanner Health: Ensure the health and performance of vulnerability scanners and scan agents, focusing on maintaining cloud agent scan efficacy.
• Troubleshoot and Resolve Issues: Conduct root cause analysis and resolution for failed scans and unreachable assets. Partner with teams to resolve scan authentication issues.
• Expand Agent Coverage: Drive the ongoing expansion of agent coverage across business units to ensure comprehensive vulnerability assessment.
• Documentation Management: Own the team's Standard Operating Procedures (SoP) documentation. Create and maintain a SharePoint site to house technical documentation and team resources.
• Configure and Manage Scanners: Configure and manage external network-based vulnerability scanners. Identify and address failed authenticated scans.
• Vulnerability Review: Conduct routine weekly reviews of vulnerability false positives and assessments using Archer and other tools.

• Minimum of 2 years experience in Cyber Security Vulnerability Management
• 1 year experience in operating, tuning, or maintaining vulnerability scanning tools in large, complex, enterprise environments.
• 2 years of proven experience with Vulnerability scanning tools (any combination, including Qualys, Tenable or Rapid 7)

• Exceptional communication skills, with the ability to translate technical issues into business risks for stakeholders.
• Ability to work under pressure and in complex situations.
• High level of integrity, professionalism, and attention to detail.
• Ability to articulate technical issues, vulnerability results and explain tools limitations.
• Strong understanding of network security principles and practices.
• Experience with cloud environments and agent-based scanning.
• Excellent problem-solving skills and attention to detail.
• Experience with documentation management and SharePoint is a plus.