Senior Endpoint Security Manager

Job DescriptionThe Endpoint Security team, which falls under Infrastructure Security Services, is focused on hardening and defending endpoint assets against threats that could lead to compromise. This includes Workstation encryption, Antivirus, Endpoint Detection and Response, Host based IPS, Host based Firewall, System Hardening, Mobile Security, File Integrity Monitoring and Database Activity Monitoring. As the Senior Advisor for Endpoint Security, you will be responsible for the development and execution of endpoint security related capabilities for both on-prem and cloud assets, establishing relationships across CVS Health IT to adopt and maintain adherence to security control standards and to continuously look for opportunities to be more efficient and reduce risk. Primary Responsibilities include:- Subject matter expert for the Secure Configuration program ensuring that assets remain hardened throughout their lifecycle.- Oversee the creation and maintenance of Minimum-Security Baseline documents for endpoint technologies including Workstation and Server Operating Systems, database platforms, network devices, etc. - Define and continually enhance Endpoint Security practices for Cloud environments- Collaborate with stakeholders to drive conformance to control standards - Develop KPIs, KRIs and metrics to measure the effectiveness of controlsOther Responsibilities- Provide technical leadership and mentorship to more junior members of the team.- Coordinate and perform Proofs of Concept for emerging technologiesRequired Qualifications8+ years of cyber security experienceCOVID RequirementsCOVID-19 Vaccination RequirementCVS Health requires certain colleagues to be fully vaccinated against COVID-19 (including any booster shots if required), where allowable under the law, unless they are approved for a reasonable accommodation based on disability, medical condition, religious belief, or other legally recognized reasons that prevents them from being vaccinated. You are required to have received at least one COVID-19 shot prior to your first day of employment and to provide proof of your vaccination status or apply for a reasonable accommodation within the first 10 days of your employment. Please note that in some states and roles, you may be required to provide proof of full vaccination or an approved reasonable accommodation before you can begin to actively work.Preferred Qualifications- Information security related certification(s), such as CISSP, CIS, CSSP,CEH, AZ-500- Regulatory audit compliance (PCI-DSS, Sarbanes-Oxley, FTC, etc)- Security Frameworks (CIS, HITRUST, NIST)- Experience with risk assessment and development of effective mitigation strategies- Experience with enterprise GRC Policies, Control Standards and Control Procedures- Have excellent written and verbal communication skills.- Require minimal direction, works well independently, is an informal leader, is a source or wealth of information for others and provides technical guidance for other team members.- Have a deep understanding of the cybersecurity vendor landscape and how tools and technologies can be leveraged to achieve desired outcomes.Experience with:- Server Operating Systems (Windows, RHEL, AIX)- Workstation Operating Systems (Windows, MacOS)- Database platforms (Oracle, MS SQL, DB2)- Experience with Regular Expressions (regex) and/or Kibana is a plusEducationBachelor's degree or equivalent experienceBusiness OverviewBring your heart to CVS HealthEvery one of us at CVS Health shares a single, clear purpose: Bringing our heart to every moment of your health. This purpose guides our commitment to deliver enhanced human-centric health care for a rapidly changing world. Anchored in our brand - with heart at its center - our purpose sends a personal message that how we deliver our services is just as important as what we deliver.Our Heart At Work Behaviors support this purpose. We want everyone who works at CVS Health to feel empowered by the role they play in transforming our culture and accelerating our ability to innovate and deliver solutions to make health care more personal, convenient and affordable. We strive to promote and sustain a culture of diversity, inclusion and belonging every day. CVS Health is an affirmative action employer, and is an equal opportunity employer, as are the physician-owned businesses for which CVS Health provides management services. We do not discriminate in recruiting, hiring, promotion, or any other personnel action based on race, ethnicity, color, national origin, sex/gender, sexual orientation, gender identity or expression, religion, age, disability, protected veteran status, or any other characteristic protected by applicable federal, state, or local law.

Created: 2026-03-07