IT Security Vulnerability and Risk Management - Senior Analyst
Cumberland , Rhode Island
April 04, 2017
We are looking for a talented and experienced Information Security Risk Management Senior Analyst to join our Information Security Risk Vulnerability Team focused on ensuring the security and integrity of CVS Health applications and data.

As a Security Vulnerability and Risk Management Senior Analyst you will be responsible for ensuring CVS data remains secure and all risks, vulnerabilities and defects are managed, tracked and remediated according to policy and/or best practices. The Information Security Risk Management Senior Analyst selected for this role must have experience with risk management concepts and processes. The incumbent will be responsible for ensuring the CVS environment remains secure and that all identified gaps are managed.

The Security Risk Management Senior Analyst will be responsible for but not limited to:

- Develop reports on the results of vulnerability assessments, penetration testing, and configuration of dynamic and static code analysis platforms and drive remediation
- Coordinate and with facilitate the vulnerability management program within specified CVS Health policy, standard and procedures
- Communicate with auditors and regulators during compliance and regulatory reviews
- Participate in information security audits ensuring technical compliance with security related regulatory requirements (PCI, SOX, PII, PHI, etc)
- Collaboratively work with peers to ensure operational excellence
- Contribute to or help lead current state risk assessments, continual risk assessments, risk metrics and visualization and integrated operational risk management
- Identify and prioritize risk based on impact and likelihood
- Work directly with key business leaders to facilitate information risk analysis and risk management processes, identify acceptable levels of risk, and establish roles and responsibilities with regards to information risk management
- Execute the organization’s risk procedures
- Maintain risk registries for business lines within CVS Health
- Maintain and monitor Information Security Risk Exception process to ensure identification of areas of non-compliance
- Develop key risk indicators and dash boarding
- Assist in Policy/Standard development and security awareness and training
- Ensure security programs are in compliance with applicable laws, regulations and policies to minimize risk and audit findings
- Strong client relationship management experience and skills
- Familiarity with relevant regional regulatory requirements
- Strong interpersonal and oral/written communication skills, able to build relationships at all levels

A little about us:

Please stay connected with us: Sign up to receive our job alert notifications.

Or learn more about us:

Know someone who would be interested in this job? Share it with your network.