✦ Luna Orbit — Cybersecurity

Security and Compliance Analyst

at CVS Health

Unknown 💰 $130K – $260K USD / year Posted April 14, 2026
Apply Now → ← Browse All Jobs

Position Details

Salary $130K – $260K USD / year
Type Full-Time
Experience senior
Exp. Years Not specified
Education Not specified
Category Cybersecurity

About this role

This role serves as a highly visible point of contact for security and compliance governance within CVS Caremark. You will guide security best practices across the SDLC, manage vulnerability scanning and remediation, assess enterprise risk, and support audit response activities.

Key Responsibilities

  • Provide expert guidance on integrating security best practices throughout the Software Development Lifecycle (SDLC)
  • Track and close vulnerability remediation plans aligned with CVS Health security timelines
  • Assess enterprise risks based on identified vulnerabilities and emerging threats
  • Advise on security scanning and detection and recommend mitigation strategies
  • Partner with internal and external auditors and support audit response activities

Technical Overview

The position focuses on applying security governance and compliance requirements to enterprise application development and operations. Responsibilities include vulnerability management, scanning and remediation planning, infrastructure security implementation, and risk assessment aligned to security scanning and detection strategies.

Ideal Candidate

The ideal candidate is a security and compliance professional who has experience governing application security and advising teams on security best practices across the Software Development Lifecycle (SDLC). They are strong in vulnerability management, remediation planning, risk assessment, and supporting audit response for cybersecurity compliance.

Must-Have Skills

governance of application securitysecurity guidance throughout the Software Development Lifecycle (SDLC)vulnerability managementscanning and remediationrisk assessmentaudit response activitiesadherence to CVS Health cybersecurity compliance requirements

Required Skills

application securitysecurity and compliance requirementsgovernance of application securitycybersecurity posturecompliance frameworkSoftware Development Lifecycle (SDLC)vulnerability managementscanning and remediationstrategic infrastructure security implementationrisk assessmentmitigation strategiesaudit response activitiesvulnerability remediation planssecurity scanning and detectionlayered defense mechanismscybersecurity compliance requirementscompliance and regulatory reviews

Hard Skills

application securitysecurity and compliance requirementsgovernance of application securitycybersecurity posturecompliance frameworkSoftware Development Lifecycle (SDLC)vulnerability managementscanning and remediationstrategic infrastructure security implementationrisk assessmententerprise risk assessmentmitigation strategiesaudit responsevulnerability remediation planssecurity scanning and detectionlayered defense mechanismscybersecurity compliance requirementscompliance and regulatory reviews

Soft Skills

cross-functional collaborationstakeholder managementexpert guidancecommunication skillsinterpersonal skillsrelationship buildingaccountability

Industry & Role

Industry Healthcare IT
Job Function Govern application security and compliance across the SDLC, driving vulnerability remediation and audit-ready risk management
Role Subtype GRC Analyst
Tech Domains Cybersecurity

Keywords for Your Resume

Security and Compliance AnalystSecurity and ComplianceVP Point of ContactVP POCapplication securitycybersecurity posturecompliance frameworkSoftware Development Lifecycle (SDLC)vulnerability managementscanningremediationrisk assessmentmitigation strategiesaudit responsevulnerability remediation plansCritical: 7 daysHigh: 90 daysMedium: 180 daysLow: 365 dayssecurity scanning and detectionlayered defense mechanismscompliance and regulatory reviewsscanning and remediation

Deal Breakers

Must have demonstrated experience with vulnerability management and remediation tracking, Must be able to support audit response and compliance/regulatory reviews, Must demonstrate adherence to cybersecurity compliance requirements

Apply for this Position →

Get matched to jobs like this

Luna finds roles that fit your skills and career goals — no endless scrolling required.

Create a Free Profile