Our Ability Jobs

Job Information

CVS Health Lead Director, Information Security in Cumberland, Rhode Island

Job Description

CVS Health is looking for a leader with experience leading a cyber security operations team. This role manages a team who is responsible for monitoring and triaging suspicious activities and potential threats. In this role, you will be responsible for maturing and enhancing our existing security operations capabilities by collaborating on efforts to design and implement improved processes and technologies within CVS Health's unique security landscape. You will work closely with key cross-functional stakeholders to develop a program tailored to utilizing proactive and mitigating measures to detect and respond to potential threats to CVS Health’s infrastructure, employees, and intellectual property. • Oversee day-to-day operations for the security operations team, ensuring the case management and alert development life cycles are followed or adjusted when necessary. • Utilize technologies and log sources available to the team in order to develop and publish dashboards, visualizations, and technical documentation to support identifying trends in alerts and malicious behaviors.• Proficient in identifying red flags, validating sources and making judgment calls about the completeness and accuracy of sources utilized for alerting. • Identify and implement ways to improve efficiency and automation with triage workflows, which includes documenting processes and recommendations for those solutions. • Monitor the network environment for new, evolving, and advanced threats as well as research industry trends and best practices in order to ensure alerting and case management processes are evolving with the cybersecurity field.• Establish enterprise-level KPIs to ensure effectiveness, efficiency, and overall customer satisfaction. This includes defining key metrics and trends in the day-to-day operations and implementing changes to support the reduction of time to detect, respond, and remediate key technical security risks, as well as ensuring staffing is reflected and forecasted.• Develop strategies and set clear goals and team expectations to successfully achieve organizational objectives. • Promote an environment of collaboration and individual accountability when it comes to problem-solving, decision-making, and process improvement.• Establish and maintain an onboarding and employee training program.To be successful in this role you will have:• Previous experience managing projects or teams to develop, execute and complete assignments.• Previous experience leading security operations. • Experience writing and presenting high and low-level security reports and briefings for insider threat investigations.• Experience generating KPI and operational metrics to support hiring forecasts and tuning requirements• Experience with implementation of cybersecurity, network defense, and investigative frameworks (such as NIST CSF, ISO 27000 series, MITRE ATT&CK, Lockheed Martin Cyber Kill Chain, etc.) into network defense processes.

Pay Range

The typical pay range for this role is:

Minimum: 120000

Maximum: 265000

Please keep in mind that this range represents the pay range for all positions in the job grade within which this position falls. The actual salary offer will take into account a wide range of factors, including location.

Required Qualifications

• Bachelor’s degree or four or more years of work experience. • Six or more years of work experience.

COVID Requirements

COVID-19 Vaccination Requirement

CVS Health requires certain colleagues to be fully vaccinated against COVID-19 (including any booster shots if required), where allowable under the law, unless they are approved for a reasonable accommodation based on disability, medical condition, religious belief, or other legally recognized reasons that prevents them from being vaccinated.

You are required to have received at least one COVID-19 shot prior to your first day of employment and to provide proof of your vaccination status or apply for a reasonable accommodation within the first 10 days of your employment. Please note that in some states and roles, you may be required to provide proof of full vaccination or an approved reasonable accommodation before you can begin to actively work.

Preferred Qualifications

• Previous experience managing a 24x7x365 geographically dispersed team that focuses on security operations.• Knowledge of SOC or similar environment methodology, including threat monitoring, intrusion detection, analysis, threat determination, incident handling and remediation tracking. • Experience interpreting data from network security tools and infrastructure technologies such as SIEM, firewall, proxies, IPS/IDS devices, full packet capture (FPC), and email platforms. • Knowledge of the cyber threat landscape, including types of adversaries, campaigns, and the motivations that drive them. • Experience working with analysis techniques, identifying indicators of compromise, and identification of intrusions and potential incidents.


Bachelor's degree or equivalent expierence

Business Overview

Bring your heart to CVS HealthEvery one of us at CVS Health shares a single, clear purpose: Bringing our heart to every moment of your health. This purpose guides our commitment to deliver enhanced human-centric health care for a rapidly changing world. Anchored in our brand — with heart at its center — our purpose sends a personal message that how we deliver our services is just as important as what we deliver.Our Heart At Work Behaviors™ support this purpose. We want everyone who works at CVS Health to feel empowered by the role they play in transforming our culture and accelerating our ability to innovate and deliver solutions to make health care more personal, convenient and affordable. We strive to promote and sustain a culture of diversity, inclusion and belonging every day. CVS Health is an affirmative action employer, and is an equal opportunity employer, as are the physician-owned businesses for which CVS Health provides management services. We do not discriminate in recruiting, hiring, promotion, or any other personnel action based on race, ethnicity, color, national origin, sex/gender, sexual orientation, gender identity or expression, religion, age, disability, protected veteran status, or any other characteristic protected by applicable federal, state, or local law.