Senior Manager – Application Security Engineering

Job not on LinkedIn

🔥 0 minutes ago

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of CVS Health

CVS Health

10,000+ employees

Founded 1963

⚕️ Healthcare Insurance

🛒 Retail

🧘 Wellness

Healthcare Insurance • Retail • Wellness

CVS Health is a leading American healthcare company dedicated to improving health access and affordability. The company focuses on a comprehensive approach that includes health services, health insurance, and pharmacy benefits management. Through its subsidiaries, such as Aetna and CVS Caremark, CVS Health offers a range of services that facilitate wellness, condition management, and affordable prescription drug coverage. CVS Health operates neighborhood pharmacies, provides mail-order pharmacy services, and manages specialty medication programs, aiming to make healthcare convenient and accessible for everyone. Driven by a mission to connect people with essential care services, CVS Health is committed to fostering healthier communities and supporting the wellbeing of all individuals.

📋 Description

• Lead the design, implementation, and governance of enterprise application security programs, secure development standards, and software supply chain security practices. • Establish security requirements, security definitions of done, launch readiness criteria, and automated controls that enable secure software delivery across cloud-native, hybrid, and legacy environments. • Drive adoption of secure coding practices and developer-focused security capabilities across enterprise engineering organizations. • Oversee the end-to-end vulnerability management lifecycle, including identification, prioritization, remediation, exception management, validation, and reporting. • Establish operational metrics, service level objectives, governance processes, and executive reporting mechanisms that drive accountability and measurable risk reduction. • Lead enterprise response efforts for critical and zero-day vulnerabilities, including risk assessment, stakeholder communication, remediation coordination, and executive reporting. • Drive adoption of modern security technologies and DevSecOps capabilities, including SAST, SCA, container security, secrets management, software bill of materials (SBOM), and software supply chain security solutions. • Lead automation of security controls within CI/CD pipelines to improve operational efficiency, strengthen risk mitigation, and accelerate secure software delivery. • Evaluate, implement, and optimize application security, cloud security, and software supply chain security technologies across on-premises, cloud, and hybrid environments. • Assess and adopt emerging technologies, including AI-powered security and developer productivity solutions, that improve security outcomes and operational effectiveness. • Lead and develop a high-performing team of security professionals while fostering a culture of technical excellence, accountability, innovation, and continuous improvement. • Build and scale security programs that drive developer adoption, self-service security capabilities, and DevSecOps maturity across enterprise engineering teams.

🎯 Requirements

• 7+ years of experience developing, implementing, and operating enterprise security technologies across Application Security, Container Security, Data Security, Infrastructure Security, or related cybersecurity domains. • 7+ years of experience leading security programs and initiatives from design and implementation through operationalization and continuous improvement within enterprise environments. • 5+ years of experience securing cloud-native and modern application environments leveraging AWS, Azure, or GCP, including containers, Kubernetes, Infrastructure-as-Code (IaC), and Security-as-Code practices. • 5+ years of experience supporting secure software development lifecycle (SDLC) programs, vulnerability management, security testing, regulatory compliance, and enterprise application portfolios. • 4+ years of experience with application security technologies including SAST, SCA, CVA, mobile application security testing, secrets scanning, software supply chain security, and developer enablement programs. • 2+ years of experience leading, mentoring, managing, and developing security engineering, application security, vulnerability management, or cybersecurity teams.

🏖️ Benefits

• medical, dental, and vision coverage • paid time off • retirement savings options • wellness programs • comprehensive benefits package

Apply Now

Similar Jobs

🔥 32 minutes ago

Cresta

51 - 200

☁️ SaaS

🤖 Artificial Intelligence

🏢 Enterprise

Application Support Engineer ensuring smooth customer experience at Cresta through technical issue resolution and customer advocacy. Collaborating closely with engineering and product teams to enhance support processes.

🔥 1 hour ago

Temporal Technologies

51 - 200

☁️ SaaS

Senior Software Engineer designing and building systems that enhance customer experience for Temporal Cloud. Collaborating with various teams to ensure reliability and scalability.

🔥 2 hours ago

Figure

501 - 1000

Application Security Engineer at Figure Lending, pivotal in software security and vulnerability management. Collaborating closely with engineering and DevOps for secure applications.

🔥 22 hours ago

Yurts

11 - 50

🤖 Artificial Intelligence

🏢 Enterprise

🔐 Security

AI Engineer at Legion Intelligence developing customer-facing AI applications. Building intuitive AI solutions utilizing the company’s engineering capabilities and tools.

🔥 22 hours ago

SMA America

201 - 500

⚡ Energy

Senior Applications Engineer managing technical solutions for solar PV and battery storage systems. Collaborating with customers and teams for design and implementation support.