Staff Cybersecurity Incident Responder

To combat cybersecurity threats, CVS has established a robust Security Operations Center (SOC) and a professional Cyber Security Incident Response Team (CSIRT) that utilize advanced SIEM security appliances, and technologies to monitor the environment for compromise and response accordingly. The CVS CSIRT works to effectively manage incidents according to NIST 800-61 standards recommendations. CVS CSIRT is responsible for assessing, managing, monitoring and correlating a wide range of data, and producing actionable information to be used by the business to enable decisions and define actions relating in keeping CVS assets, Intellectual Property, business information, and customer and employee PII and PHI secure. CVS CSIRT leads advanced threat incident management and response across the enterprise. The CVS CSIRT communicates and works with Executive Leadership and Senior Management, System and Network Administrators, Application owners and developers, CVS Business Units, Subject matter and technical experts, CVS loss prevention, Security officers, Human resources, Privacy Office, and the Office of General Counsel. CVS CSIRT is seeking an experienced security professional with a passion for leading incidents throughout the entirety of the Incident Response lifecycle. The role requires leading and managing resources to contain, remediate, eradicate, and recover from Cybersecurity incidents. The role also requires a deep understanding of security technologies and problem-solving capabilities. Additional responsibilities and requirements associated within this role include bigger picture thinking, leading with empathy and kindness, joining forces with cross-functional collaboration, and having a mindset geared toward improving operations, efficiencies, and ultimately reducing our mean time to resolve cybersecurity incidents.