At CVS Health, we’re building a world of health around every consumer and surrounding ourselves with dedicated colleagues who are passionate about transforming health care. As the nation’s leading health solutions company, we reach millions of Americans through our local presence, digital channels and more than 300,000 purpose-driven colleagues – caring for people where, when and how they choose in a way that is uniquely more connected, more convenient and more compassionate. And we do it all with heart, each and every day. **Position Summary:** CVS Health is looking for a passionate and experienced leader to join our team as the Principal of Network Engineering for our Network Core Infrastructure Operations group, part of the Infrastructure Operations & Service Delivery organization. In this senior Manager - Network Engineering role, you’ll guide a team of talented Network Engineers responsible for managing, maintaining, and optimizing a vast and complex network. Our infrastructure supports over 10,000 applications (including around 4,100 hosted in the cloud), serves 190,000 users, spans more than 10,000 locations, and includes multiple data centers and multi-cloud environments. CVS Health is seeking a seasoned professional to lead our Network Security Operations team. In this critical role, you’ll be responsible for securing our network, cloud environments, DMZ, internet edge, and F5 infrastructure. You’ll help shape and enforce policies and procedures that strengthen our security posture, especially across cloud and application layers. Most importantly, you’ll build and inspire a capable, motivated team that plays a key role in protecting CVS Health, one of the nation’s leading healthcare organizations. **Responsibilities will include:** Leadership + Drive Strategy: Shape and execute the long-term vision for the Network Security Operations team, ensuring alignment with business objectives and anticipating future organizational needs + Set Standards: Research and implement industry best practices to establish robust standards that elevate the organization's network security posture + Plan for Growth: Develop scalable short- and long-term infrastructure plans that support current operational demands and future expansion, while fostering team readiness + Build Partnerships: Cultivate strong, trust-based relationships with business and technology leaders to ensure cross-functional collaboration and shared accountability + Lead with Purpose: Inspire and guide a diverse team of network security professionals through inclusive leadership, clear communication, and a commitment to operational excellence + Cultivate Culture: Foster a collaborative, high-performing team environment that values innovation, psychological safety, accountability, and continuous improvement + Develop Talent: Actively coach and mentor team members, supporting their professional growth through individualized development plans, regular feedback, and career pathing + Clarify Expectations: Define clear roles, responsibilities, and performance goals to ensure alignment, transparency, and accountability across the team + Stay Ahead: Monitor and evaluate emerging technologies and trends in network security, including firewalls, F5, cloud security, internet edge, and DMZ infrastructure, to inform strategic decisions and team skill development + Mentor Future Leaders: Provide hands-on guidance and growth opportunities for junior engineers, helping them build technical expertise and leadership capabilities + Educate & Empower: Design and deliver training programs for IT staff that enhance firewall management skills, reinforce security best practices, and raise awareness of evolving threats Operations + Lead Network Security Infrastructure: Oversee all aspects of network security, including firewalls, F5 load balancers, proxies, and perimeter defenses across cloud and on-prem environments + Ensure Firewall Integrity: Maintain secure, stable, and fully supported firewall systems, ensuring regular audits and compliance with internal and external standards + Standardize Processes: Develop and maintain network security processes, procedures, and architecture diagrams to support operational consistency and transparency + Manage Security Systems: Oversee the deployment, monitoring, maintenance, and upgrades of network security tools and platforms, ensuring optimal performance and uptime + Drive Strategic Projects: Lead infrastructure and operations initiatives within the network security portfolio, ensuring alignment with business goals and timely execution + Define Technology Standards: Establish and enforce hardware and software standards for network security operations to ensure consistency and scalability + Vendor & Partner Management: Build strong relationships with vendors, OEMs, and third-party providers. Negotiate contracts, manage SLAs, and monitor performance to ensure high-quality service delivery + Leverage Automation & Metrics: Use data-driven insights and automation tools to streamline operations, monitor system health, and proactively address issues + Documentation & Reporting: Maintain comprehensive documentation of all network security processes and generate regular performance reports for senior leadership + Technology Evaluation: Continuously assess and recommend new technologies and methodologies to improve efficiency, reduce costs, and enhance security posture + Collaborate Across Teams: Work closely with network engineering and architecture teams to ensure security compliance in all network deployments and infrastructure changes + Policy Development: Design and manage complex firewall policies that balance security requirements with network performance and user accessibility + Incident Response Leadership: Lead response efforts for network-related security incidents, ensuring timely resolution and root cause analysis + Support Compliance Initiatives: Align network security operations with regulatory standards such as HIPAA, PCI, and other industry requirements Firewall Management and Threat Protection + Policy Review and Audits: Regularly review and audit firewall policies to ensure they comply with regulatory requirements and best practices + Threat Analysis: Conduct advanced threat modeling and risk assessments to identify potential vulnerabilities and attack vectors. + Incident Response Planning: Develop and implement incident response strategies, including creating playbooks for specific types of threats + Complex Issue Resolution: Resolve complex firewall and network issues that require deep technical knowledge and analytical skills + Root Cause Analysis: Conduct thorough root cause analyses for security incidents or performance issues and implement preventive measures Audit / Compliance + Work with the compliance team to verify that all network devices meet and compile with relevant regulatory requirements (HIPAA, PCI, etc.) + Develop network security policies with the compliance team to ensure the overall network is secure and within regulatory compliance + Regulatory Compliance: Ensure firewall configurations and policies comply with relevant regulations (e.g., GDPR, HIPAA) and industry standards (e.g., PCI-DSS) + Governance Frameworks: Establish and maintain governance frameworks to manage firewall policies and changes consistently Performance Management and Capacity Planning + Implement monitoring tools and processes to proactively identify and address performance issues, optimizing server infrastructure efficiency + Assess and plan for the capacity needs of the infrastructure to support business growth + Plan for future infrastructure needs, working with cross-functional teams to anticipate growth and scaling requirements + Tuning: Optimize firewall performance to handle high traffic loads without compromising security or network performance + Capacity Planning: Plan for and implement firewall upgrades or expansions to handle future growth and evolving requirements **Required Qualifications:** + 7+ years of experience in IT infrastructure management with a focus on network security, firewalls, F5’s and automation + 3+ years of leadership experience, including managing a team of technical professionals **Preferred Qualifications:** + Knowledge of network security systems, firewalls, securing overall network including the perimeters, edges, egress, and internal connectivity + Familiarity with security and compliance requirements in healthcare or related industries **Education:** + Bachelor’s degree, or equivalent experience (HS diploma + 4 years relevant experience) **Pay Range** The typical pay range for this role is: $130,295.00 - $260,590.00 This pay range represents the base hourly rate or base annual full-time salary for all positions in the job grade within which this position falls. The actual base salary offer will depend on a variety of factors including experience, education, geography and other relevant factors. This position is eligible for a CVS Health bonus, commission or short-term incentive program in addition to the base pay range listed above. This position also includes an award target in the company’s equity award program. Our people fuel our future. Our teams reflect the customers, patients, members and communities we serve and we are committed to fostering a workplace where every colleague feels valued and that they belong. **Great benefits for great people** We take pride in our comprehensive and competitive mix of pay and benefits – investing in the physical, emotional and financial wellness of our colleagues and their families to help them be the healthiest they can be. In addition to our competitive wages, our great benefits include: + **Affordable medical plan options,** a **401(k) plan** (including matching company contributions), and an **employee stock purchase plan** . + **No-cost programs for all colleagues** including wellness screenings, tobacco cessation and weight management programs, confidential counseling and financial coaching. + **Benefit solutions that address the different needs and preferences of our colleagues** including paid time off, flexible work schedules, family leave, dependent care resources, colleague assistance programs, tuition assistance, retiree medical access and many other benefits depending on eligibility. For more information, visit https://jobs.cvshealth.com/us/en/benefits We anticipate the application window for this opening will close on: 09/22/2025 Qualified applicants with arrest or conviction records will be considered for employment in accordance with all federal, state and local laws. We are an equal opportunity and affirmative action employer. We do not discriminate in recruiting, hiring, promotion, or any other personnel action based on race, ethnicity, color, national origin, sex/gender, sexual orientation, gender identity or expression, religion, age, disability, protected veteran status, or any other characteristic protected by applicable federal, state, or local law.