At CVS Health, we’re building a world of health around every consumer and surrounding ourselves with dedicated colleagues who are passionate about transforming health care.
As the nation’s leading health solutions company, we reach millions of Americans through our local presence, digital channels and more than 300,000 purpose-driven colleagues – caring for people where, when and how they choose in a way that is uniquely more connected, more convenient and more compassionate. And we do it all with heart, each and every day.
Position Summary
Seeking a highly skilled Security Specialist with deep expertise in cloud and database security, hands-on experience with OpenShift, and a proven track record in operational vulnerability management and team leadership. This role will drive vulnerability remediation efforts across cloud platforms (AWS, Azure, GCP) and database environments, ensuring the protection of critical enterprise assets. The Security Specialist will serve as a technical advisor, championing secure configurations, leading strategic security initiatives, and fostering collaboration between security, operations, and development teams to deliver robust, enterprise-wide security solutions to remediate security threats.
Key Responsibilities:
Cloud Security
Oversee the administration, and implementation of the vulnerability and Minimum Security Baseline program.Acts as a SME (subject matter expertise) in Cloud Security area, offering solutions and recommendations to the operation teams.Design, implement, and maintain security measures for cloud-based systems (AWS, Azure, GCP, Openshift)Develop and enforce security policies and procedures for cloud platforms.Manage cloud security monitoring, incident response, and remediation.Work closely with cross-realm security teams to ensure adequate security solutions and controls are in place to meet business and regulatory requirementsEnsure compliance with regulatory requirements (GDPR, HIPAA, SOC 2, PCI-DSS).Automate security processes and integrate with CI/CD pipelines.Database Security
Implement and maintain security controls for enterprise databases (on-premises, cloud, DBaaS).Lead database security audits, risk assessments, and compliance initiatives.Develop and enforce database access controls, encryption, and authentication solutions.Collaborate with IT and development teams to integrate security throughout the software lifecycle.Openshift & Container Security
Manage and secure Openshift/Kubernetes clusters, including deployment, upgrades, and lifecycle management.Implement RBAC, compliance controls, and vulnerability scanning for containerized environments.Troubleshoot and resolve security issues across cluster, OS, network, and storage layers.Support image scanning, import, and registry management in Openshift runtime projects.Vulnerability Management & Team Coordination
Lead vulnerability management programs, including regular scans, risk assessments, and remediation tracking.Coordinate cross-functional teams to prioritize and remediate vulnerabilities.Develop and maintain vulnerability management policies, procedures, and reporting.Mentor and guide team members in security best practices and operational workflows.Communicate security issues, risks, and recommendations to management and stakeholders.Required Qualifications:
7+ years in cloud security, database security, or related security roles.5+ years of experience with Cloud Platforms (AWS, Azure, GCP) and Database technologies.5+ years of experience in scripting and automation (Python, PowerShell, Bash, Terraform, Ansible).3+ years of experience with vulnerability scanning tools and security assessment techniques (Wiz, Qualys, Tenable, etc).2+ years of hands-on experience with Openshift/Kubernetes administration and security.Preferred Qualifications:
Knowledge of regulatory compliance standards and frameworks (GDPR, HIPAA, PCI-DSS, NIST, ISO 27001).Excellent communication, problem-solving, and team leadership skills.Experience with database activity monitoring solutions (IBM Guardium, SIEM integration).Familiarity with DevOps practices and CI/CD security integration.Relevant certifications (CISSP, CCSP, AWS/Azure Security, Red Hat OpenShift Security) preferred.Education:
Bachelor’s degree or equivalent experience (High School Diploma and 4 years relevant experience).Pay Range
The typical pay range for this role is:
$106,605.00 - $284,280.00
This pay range represents the base hourly rate or base annual full-time salary for all positions in the job grade within which this position falls. The actual base salary offer will depend on a variety of factors including experience, education, geography and other relevant factors. This position is eligible for a CVS Health bonus, commission or short-term incentive program in addition to the base pay range listed above. This position also includes an award target in the company’s equity award program.
Our people fuel our future. Our teams reflect the customers, patients, members and communities we serve and we are committed to fostering a workplace where every colleague feels valued and that they belong.
Great benefits for great people
We take pride in our comprehensive and competitive mix of pay and benefits – investing in the physical, emotional and financial wellness of our colleagues and their families to help them be the healthiest they can be. In addition to our competitive wages, our great benefits include:
Affordable medical plan options, a 401(k) plan (including matching company contributions), and an employee stock purchase plan.
No-cost programs for all colleagues including wellness screenings, tobacco cessation and weight management programs, confidential counseling and financial coaching.
Benefit solutions that address the different needs and preferences of our colleagues including paid time off, flexible work schedules, family leave, dependent care resources, colleague assistance programs, tuition assistance, retiree medical access and many other benefits depending on eligibility.
For more information, visit https://jobs.cvshealth.com/us/en/benefits
We anticipate the application window for this opening will close on: 01/14/2026Qualified applicants with arrest or conviction records will be considered for employment in accordance with all federal, state and local laws.