Senior Manager – Application Security Engineering

Job not on LinkedIn

🕒 Yesterday

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of CVS Health

CVS Health

10,000+ employees

Founded 1963

⚕️ Healthcare Insurance

🛒 Retail

🧘 Wellness

Healthcare Insurance • Retail • Wellness

CVS Health is a leading American healthcare company dedicated to improving health access and affordability. The company focuses on a comprehensive approach that includes health services, health insurance, and pharmacy benefits management. Through its subsidiaries, such as Aetna and CVS Caremark, CVS Health offers a range of services that facilitate wellness, condition management, and affordable prescription drug coverage. CVS Health operates neighborhood pharmacies, provides mail-order pharmacy services, and manages specialty medication programs, aiming to make healthcare convenient and accessible for everyone. Driven by a mission to connect people with essential care services, CVS Health is committed to fostering healthier communities and supporting the wellbeing of all individuals.

📋 Description

• Lead the design, implementation, and governance of enterprise application security programs, secure development standards, and software supply chain security practices. • Establish security requirements, security definitions of done, launch readiness criteria, and automated controls that enable secure software delivery across cloud-native, hybrid, and legacy environments. • Drive adoption of secure coding practices and developer-focused security capabilities across enterprise engineering organizations. • Oversee the end-to-end vulnerability management lifecycle, including identification, prioritization, remediation, exception management, validation, and reporting. • Establish operational metrics, service level objectives, governance processes, and executive reporting mechanisms that drive accountability and measurable risk reduction. • Lead enterprise response efforts for critical and zero-day vulnerabilities, including risk assessment, stakeholder communication, remediation coordination, and executive reporting. • Drive adoption of modern security technologies and DevSecOps capabilities, including SAST, SCA, container security, secrets management, software bill of materials (SBOM), and software supply chain security solutions. • Lead automation of security controls within CI/CD pipelines to improve operational efficiency, strengthen risk mitigation, and accelerate secure software delivery. • Evaluate, implement, and optimize application security, cloud security, and software supply chain security technologies across on-premises, cloud, and hybrid environments. • Assess and adopt emerging technologies, including AI-powered security and developer productivity solutions, that improve security outcomes and operational effectiveness. • Lead and develop a high-performing team of security professionals while fostering a culture of technical excellence, accountability, innovation, and continuous improvement. • Build and scale security programs that drive developer adoption, self-service security capabilities, and DevSecOps maturity across enterprise engineering teams.

🎯 Requirements

• 7+ years of experience developing, implementing, and operating enterprise security technologies across Application Security, Container Security, Data Security, Infrastructure Security, or related cybersecurity domains. • 7+ years of experience leading security programs and initiatives from design and implementation through operationalization and continuous improvement within enterprise environments. • 5+ years of experience securing cloud-native and modern application environments leveraging AWS, Azure, or GCP, including containers, Kubernetes, Infrastructure-as-Code (IaC), and Security-as-Code practices. • 5+ years of experience supporting secure software development lifecycle (SDLC) programs, vulnerability management, security testing, regulatory compliance, and enterprise application portfolios. • 4+ years of experience with application security technologies including SAST, SCA, CVA, mobile application security testing, secrets scanning, software supply chain security, and developer enablement programs. • 2+ years of experience leading, mentoring, managing, and developing security engineering, application security, vulnerability management, or cybersecurity teams.

🏖️ Benefits

• medical, dental, and vision coverage • paid time off • retirement savings options • wellness programs • comprehensive benefits package

Apply Now

Similar Jobs

🕒 Yesterday

Cresta

51 - 200

☁️ SaaS

🤖 Artificial Intelligence

🏢 Enterprise

Application Support Engineer ensuring smooth customer experience at Cresta through technical issue resolution and customer advocacy. Collaborating closely with engineering and product teams to enhance support processes.

VoIP

🕒 Yesterday

Temporal Technologies

51 - 200

☁️ SaaS

Senior Software Engineer designing and building systems that enhance customer experience for Temporal Cloud. Collaborating with various teams to ensure reliability and scalability.

Amazon Redshift

Cloud

Distributed Systems

Kafka

Postgres

Go

🕒 Yesterday

Figure

501 - 1000

Application Security Engineer at Figure Lending, pivotal in software security and vulnerability management. Collaborating closely with engineering and DevOps for secure applications.

🕒 2 days ago

Yurts

11 - 50

🤖 Artificial Intelligence

🏢 Enterprise

🔐 Security

AI Engineer at Legion Intelligence developing customer-facing AI applications. Building intuitive AI solutions utilizing the company’s engineering capabilities and tools.

🕒 2 days ago

SMA America

201 - 500

⚡ Energy

Senior Applications Engineer managing technical solutions for solar PV and battery storage systems. Collaborating with customers and teams for design and implementation support.