Senior Endpoint Security Compliance Engineer

At CVS Health, we're building a world of health around every consumer and surrounding ourselves with dedicated colleagues who are passionate about transforming health care.

As the nation's leading health solutions company, we reach millions of Americans through our local presence, digital channels and more than 300,000 purpose-driven colleagues - caring for people where, when and how they choose in a way that is uniquely more connected, more convenient and more compassionate. And we do it all with heart, each and every day.

Position Summary

The Senior Endpoint Security Compliance Engineer will support the program to onboard new assets as in-scope for monitoring critical files for unauthorized changes and ensure the integrity of sensitive data across the organization's infrastructure. The role requires expertise in File Integrity Monitoring tools, threat detection, and compliance frameworks, with a focus on mitigating risks related to unauthorized access, data corruption, and system breaches. The role requires automation experience to improve onboarding and monitoring efficiencies.

Key Responsibilities :

FIM Implementation and Management

Support FIM program initiatives, projects, ad-hoc efforts, and BAU activities.

Provide FIM operational support & documentation (e.g., strategies, roadmaps, proposals, control procedures & standards, security frameworks, flow charts, etc.).

Deploy, configure, and maintain file integrity monitoring tools.

Define, manage and enforce FIM policies and rules to detect unauthorized or suspicious changes to files and directories to ensure the integrity of critical files and systems.

Establish baselines and regular reviews of critical file paths, configurations, normal file states and monitor for unauthorized or suspicious changes.

Support regular audits and reviews of FIM processes to identify and address gaps.

Ensure comprehensive coverage for critical systems, including servers, applications, databases, and endpoints.

Assess and refine FIM policies to minimize false positives and ensure optimal alerting.

Stay updated on evolving FIM technologies and best practices.

Automate FIM processes to improve onboarding efficiencies and scalability.

Establish manual FIM processes where automation is not technically feasible.

Stay updated on emerging threats, tools, and regulatory requirements to enhance the FIM program.

Incident Detection and Response

Investigate FIM alerts to determine root cause and assess impact.

Coordinate with incident response teams to contain and remediate security incidents involving file integrity violations.

Develop and maintain playbooks for handling FIM-related incidents.

Ensure proper logging, alerting, and reporting mechanisms are in place for timely detection and response.

Contribute to forensic investigations by providing detailed logs and evidence from FIM systems.

Collaboration and Cross-Functional Support

Partner with IT, DevOps, and business units to integrate FIM practices across the organization on applicable applications and systems.

Work closely with compliance, audit, and risk management teams to meet regulatory and policy requirements (e.g., PCI DSS, HIPAA, SOX).

Provide executive-level reporting on FIM metrics, trends, and risk mitigation efforts.

Continuous Improvement and Innovation

Drive the adoption of automation and machine learning capabilities within the FIM program to enhance detection and reduce manual effort.

Work closely with security, IT, and development teams to integrate FIM into DevSecOps workflows.

Identify opportunities for process improvements and implement best practices in FIM operations.

Promote a culture of security awareness and accountability related to file integrity.

Required Qualifications

5+ years of experience in information security with 5+ years focused on FIM or related areas.

3+ years experience in managing FIM tools and technologies in enterprise environments.

1+ years automation experience with scripting languages (e.g., PowerBI, PowerShell, Python).

5+ years of experience leveraging proficiency in FIM tools and platforms (e.g., Qualys, Splunk, etc.).

Preferred Qualifications

Strong understanding of security frameworks and compliance standards (e.g., NIST, ISO 27001, PCI-DSS).

CISSP (Certified Information Systems Security Professional)

CISM (Certified Information Security Manager)

GIAC (Global Information Assurance Certification)

CRISC (Certified in Risk and Information Systems Control)

Qualys File Integrity Monitoring Certification

Education

Bachelor's degree or equivalent experience (HS diploma + 4 years relevant experience)

Anticipated Weekly Hours

40

Time Type

Full time

Pay Range

The typical pay range for this role is :

$83,430.00 - $166,860.00

This pay range represents the base hourly rate or base annual full-time salary for all positions in the job grade within which this position falls. The actual base salary offer will depend on a variety of factors including experience, education, geography and other relevant factors. This position is eligible for a CVS Health bonus, commission or short-term incentive program in addition to the base pay range listed above.

Our people fuel our future. Our teams reflect the customers, patients, members and communities we serve and we are committed to fostering a workplace where every colleague feels valued and that they belong.

Great benefits for great people

We take pride in our comprehensive and competitive mix of pay and benefits - investing in the physical, emotional and financial wellness of our colleagues and their families to help them be the healthiest they can be. In addition to our competitive wages, our great benefits include :

Affordable medical plan options, a 401(k) plan (including matching company contributions), and an employee stock purchase plan .

No-cost programs for all colleagues including wellness screenings, tobacco cessation and weight management programs, confidential counseling and financial coaching.

Benefit solutions that address the different needs and preferences of our colleagues including paid time off, flexible work schedules, family leave, dependent care resources, colleague assistance programs, tuition assistance, retiree medical access and many other benefits depending on eligibility.

For more information, visit

We anticipate the application window for this opening will close on : 11 / 26 / 2025

Qualified applicants with arrest or conviction records will be considered for employment in accordance with all federal, state and local laws.

We are an equal opportunity and affirmative action employer. We do not discriminate in recruiting, hiring, promotion, or any other personnel action based on race, ethnicity, color, national origin, sex / gender, sexual orientation, gender identity or expression, religion, age, disability, protected veteran status, or any other characteristic protected by applicable federal, state, or local law.