Staff Security Engineer
About The Position
We’re building a world of health around every individual — shaping a more connected, convenient and compassionate health experience. At CVS Health®, you’ll be surrounded by passionate colleagues who care deeply, innovate with purpose, hold ourselves accountable and prioritize safety and quality in everything we do. Join us and be part of something bigger – helping to simplify health care one person, one family and one community at a time. CVS Pharmacy, Inc., a CVS Health company, is hiring for the following role in Woonsocket, RI: Staff Security Engineer to be responsible for conducting application and infrastructure penetration tests and red teaming engagements to help strengthen the security of perimeter and internal-facing assets.
Requirements
- Bachelor’s degree (or foreign equivalent) in Computer Science, Computer Engineering, Information Technology, Engineering, or a related field and five (5) years of progressive, postbaccalaureate experience in the job offered or related occupation.
- Three (3) years of experience in each of the following: IT Information security services, including application penetration testing, Mobile application security assessment, Infrastructure Penetration testing, Vulnerability Assessment and Network/Server hardening;
- Performing security assessments and review of applications, including documenting technical issues;
- Defining baseline security configuration for operating systems across multiple platforms;
- Management, construction and maintenance of security tools and infrastructure to support security testing team;
- Source code review;
- Wireless penetration testing;
- Database Security Assessment;
- Product Security Review.
- Completion of a university-level course research project, or internship involving the following: Data structures and algorithms; Computer architecture; Software testing and system programming; Data warehousing and mining; Mobile computing.
Responsibilities
- Conduct advanced penetration tests on web applications, mobile applications, network infrastructure, and cloud environments.
- Perform regular risk-based and intelligence-led penetration tests on public-facing and perimeter assets.
- Collaborate with SOC, VM and other stakeholder teams to uncover and verify security weaknesses.
- Develop, plan and execute detailed Red Teaming engagements.
- Assist in scoping, executing and peer reviewing prospective change and operational assurance penetration testing engagements.
- Understand and safely use various penetration testing tools and when appropriate, emulating hacker tactics, techniques, procedures.
- Participate and contribute on risk assessment and threat modeling sessions to support security initiatives.
- Develop scripts, tools, or methodologies to enhance CVS’s penetration testing processes.
- Develop comprehensive and accurate reports and presentations for various consumers of penetration testing results.
- Keep up with the latest cybersecurity threats, vulnerabilities and trends.
- Mentor and train junior team members and share knowledge and best practices.
Benefits
- medical
- dental
- vision
- 401(k) retirement savings plan
- Employee Stock Purchase Plan
- fully-paid term life insurance plan
- short-term and long term disability benefits
- well-being programs
- education assistance
- free development courses
- CVS store discount
- discount programs with participating partners
- Paid Time Off (“PTO”)
- vacation pay
- paid holidays
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
