Senior Security Engineer, CVS Health

CVS Health

Location:
United States, Work at Home

Category:
IT - Software Development

Contract Type:
Employment contract

Salary:

111240.00 - 222480.00 USD / Year

Save Job

Apply Position

Job Description:

CVS Health offers the opportunity to design, build, and operate a world-class Purple Team capability—creating and running a test-execution platform that continuously validates and strengthens defensive controls. You will enable safe, scalable adversary emulation linked to detection and response metrics, blending offensive tradecraft, automation, and reliability engineering to deliver a production-ready system that drives measurable cyber-resilience improvements. The position also provides opportunities to leverage AI for workflow automation.

Job Responsibility:

Help maintain and evolve a secure, scalable adversary-emulation platform for campaign scheduling, agent orchestration, payload execution, and results cataloging
Review commercial alternatives for Purple Team exercises using custom runners or commercial tools (e.g., Cymulate, Picus)
Provision static or ephemeral test environments via Terraform/Kubernetes across cloud and on-prem infrastructure
Develop continuous adversarial threat-simulation tests for defensive control validation and resiliency assessment
Generate high-fidelity telemetry for EDR, SIEM, and SOAR to measure detection coverage, latency, and control effectiveness
Research detection brittleness, design mutation/variant tests, and enhance test cases to strengthen detection logic
Manage work intake pipeline and ensure timely closure of ticketed requests within SLA
Produce ATT&CK-mapped artifacts, dashboards, and coverage metrics for Detection Engineering and leadership
Enforce platform security through RBAC, secrets management, audit logging, and execution safety controls
Collaborate with CTI, Threat Hunt, and SOC teams to evolve test cases based on real-world threats and gaps

Requirements:

5+ years of experience in the offensive security testing space
2+ years in security automation, platform engineering, or DevSecOps
2+ years of strong automation skills using GitHub runners and JIRA
1+ years of experience designing tests for detection robustness and mitigating brittleness

Nice to have:

Excellent working knowledge about cloud security in relation to the major CSPs
Proficiency in scripting languages (Python, Go, Bash, PowerShell, etc.)
Deep knowledge of MITRE ATT&CK and adversary-emulation frameworks
Understanding of detection architectures (EDR, SIEM, SOAR) and telemetry generation
Ability to build secure, observable, fault-tolerant services
Experience automating adversary simulation or Purple Team workflows
Hands-on with IaC (Terraform/CloudFormation) and containerization (Docker/Kubernetes)
Familiarity with MITRE ATT&CK, D3FEND, CAPEC, and threat-informed defense methodologies
Integration experience with ServiceNow, Jira, or enterprise workflow systems
Exposure to graph visualization tools and automated reporting/dashboard creation
Knowledge of tools like Swimlane, DataBricks, Archer, Slack, MS O365
Experience with BAS tools like Cymulate and Picks among others
Ability to manage automation request pipelines and prioritize effectively
Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field (or equivalent experience)
Strong communication and collaboration skills

What we offer:

Affordable medical plan options
401(k) plan with matching company contributions
Employee stock purchase plan
No-cost wellness screenings
Tobacco cessation and weight management programs
Confidential counseling and financial coaching
Paid time off
Flexible work schedules
Family leave
Dependent care resources
Colleague assistance programs
Tuition assistance
Retiree medical access

Additional Information:

Job Posted:
November 05, 2025

Expiration:
December 31, 2025

Employment Type:

Fulltime

Work Type:

Remote work

View All Jobs In This Company

Job Link Share:

Senior Security Engineer