We’re building a world of health around every individual — shaping a more connected, convenient and compassionate health experience. At CVS Health®, you’ll be surrounded by passionate colleagues who care deeply, innovate with purpose, hold ourselves accountable and prioritize safety and quality in everything we do. Join us and be part of something bigger – helping to simplify health care one person, one family and one community at a time. Position Summary Development, Standards & Secure Design - Lead development and enforcement of application and AI security policies, standards, and guardrails, embedding security-by-design across both traditional and AI-driven systems. - Establish secure design patterns for AI agent frameworks, covering prompt management, tool invocation, memory handling, autonomy boundaries, and escalation controls. - Promote organization-wide awareness of AI-specific risks such as model misuse, prompt injection, data leakage, and unsafe agent behavior. AI & Agentic Security Architecture - Serve as the principal SME for securing AI-enabled applications and agentic system architectures. - Architect and review secure designs for systems leveraging LLMs/foundation models, autonomous and semi-autonomous agents, RAG pipelines, and tool‑using or decision‑making workflows. - Define identity, authorization, data access, and observability controls specific to agentic environments while partnering closely with AI platform, product, and data teams to ensure responsible AI delivery. Collaboration, Leadership & Influence - Influence engineering and product teams to integrate secure engineering practices and align security with compliance, privacy, and responsible AI initiatives. - Advise senior leadership on AI security implications, architectural decisions, and long-term strategy while shaping roadmaps that anticipate emerging AI threats and regulatory requirements. Testing, Analysis & Risk Management - Lead advanced security testing and risk assessments for AI-enabled systems, including threat modeling of agent workflows, abuse/misuse analysis, and secure design reviews of AI pipelines. - Evaluate and guide adoption of new AI security tools, ensuring protections maintain confidentiality, integrity, availability, and responsible data use. Operational Response & Continuous Improvement - Provide senior technical leadership during incidents involving application or AI systems, guiding response strategies for misuse, data exposure, and autonomous failures. - Translate operational learnings into improved security architecture, controls, and system resilience. Mentorship, Innovation & Strategy - Mentor senior and principal engineers to elevate security maturity across the organization. - Contribute to research and evaluation of emerging AI security practices and play a key role in shaping the long-term application and AI security roadmap, advocating for security as a strategic accelerator for AI adoption. Required Qualifications - 10+ years of experience designing, building, and securing large-scale applications and platforms. - 7+ years of expertise in application security, including threat modeling, secure design, and vulnerability management. - 7+ years of programming experience in one or more languages such as Python, Java, JavaScript, C#, or Go. - 5+ years of experience with AI-enabled systems, including LLM-based applications or agentic workflows. - 5+ years of experience public cloud platforms (AWS, Azure, and/or GCP) and modern application architectures. - 3+ years of experience with containerized, serverless, and microservice-based architectures. Preferred Qualifications - Hands-on experience securing AI agents, RAG pipelines, and tool-using LLM systems. - Proven ability to lead complex security initiatives from concept through enterprise-scale adoption. - Familiarity with AI governance, responsible AI principles, and emerging AI security standards. - Experience integrating security controls into CI/CD pipelines for AI and application workloads. - Strong understanding of compliance frameworks (PCI, HIPAA, NIST, HITRUST, CSA). - Experience influencing security strategy beyond a single team, including enterprise or platform-level impact. - Contributions to security research, open-source projects, or industry communities. Education - Bachelor’s degree or equivalent experience (High School Diploma and 4 years relevant experience) Pay Range The typical pay range for this role is: $144,200.00 - $288,400.00 This pay range represents the base hourly rate or base annual full-time salary for all positions in the job grade within which this position falls. The actual base salary offer will depend on a variety of factors including experience, education, geography and other relevant factors. This position is eligible for a CVS Health bonus, commission or short-term incentive program in addition to the base pay range listed above. This position also includes an award target in the company’s equity award program. Our people fuel our future. Our teams reflect the customers, patients, members and communities we serve and we are committed to fostering a workplace where every colleague feels valued and that they belong. Great benefits for great people We take pride in our comprehensive and competitive mix of pay and benefits – investing in the physical, emotional and financial wellness of our colleagues and their families to help them be the healthiest they can be. In addition to our competitive wages, our great benefits include: - Affordable medical plan options, a 401(k) plan (including matching company contributions), and an employee stock purchase plan. - No-cost programs for all colleagues including wellness screenings, tobacco cessation and weight management programs, confidential counseling and financial coaching. - Benefit solutions that address the different needs and preferences of our colleagues including paid time off, flexible work schedules, family leave, dependent care resources, colleague assistance programs, tuition assistance, retiree medical access and many other benefits depending on eligibility. For more information, visit https://jobs.cvshealth.com/us/en/benefits We anticipate the application window for this opening will close on: 03/18/2026 Qualified applicants with arrest or conviction records will be considered for employment in accordance with all federal, state and local laws.

Company Description IFS is a billion-dollar revenue company with 7000+ employees on all continents. Our leading AI technology is the backbone of our award-winning enterprise software solutions, enabling our customers to be their best when it really matters–at the Moment of Service™. Our commitment to internal AI adoption has allowed us to stay at the forefront of technological advancements, ensuring our colleagues can unlock their creativity and productivity, and our solutions are always cutting-edge. At IFS, we’re flexible, we’re innovative, and we’re focused not only on how we can engage with our customers but on how we can make a real change and have a worldwide impact. We help solve some of society’s greatest challenges, fostering a better future through our agility, collaboration, and trust. We celebrate diversity and understand our responsibility to reflect the diverse world we work in. We are committed to promoting an inclusive workforce that fully represents the many different cultures, backgrounds, and viewpoints of our customers, our partners, and our communities. As a truly international company serving people from around the globe, we realize that our success is tantamount to the respect we have for those different points of view. By joining our team, you will have the opportunity to be part of a global, diverse environment; you will be joining a winning team with a commitment to sustainability; and a company where we get things done so that you can make a positive impact on the world. We’re looking for innovative and original thinkers to work in an environment where you can #MakeYourMoment so that we can help others make theirs. With the power of our AI-driven solutions, we empower our team to change the status quo and make a real difference. If you want to change the status quo, we’ll help you make your moment. Join Team Purple. Join IFS. Job Description IFS is expanding secure cloud capabilities to support U.S. Federal Civilian agencies, DoD, and the Defense Industrial Base. Responsibilities: - Support ongoing FedRAMP authorization including SSP, POA&M, evidence, and 3PAO coordination. - Manage and oversee NIST SP 800-53 compliance. - Oversee continuous monitoring, vulnerabilities, incidents. - Collaborate cross-functionally across various IFS teams. - Lead future FedRAMP system readiness. - Serve as a primary liaison with 3PAO during annual assessments. - Track and remediate findings within FedRAMP SLAs (30/90/180 days). - Develop and maintain security policies and procedures. - Support customer security questionnaires and audits. Success Criteria: - Achieve FedRAMP ATO. - Maintain high compliance posture. - Enable scalable governance for Defense programs. Travel: - Up to 10% travel for assessments and agency meetings Qualifications Required Qualifications: - 6+ years in ISSO, GRC, cybersecurity. - Expertise with FedRAMP, NIST SP 800-53, CMMC. - Experience with SSPs and security documentation. - Familiarity with AWS and Azure Gov Cloud. - U.S. Citizenship. - Strong documentation and technical writing skills - Ability to obtain and maintain security clearance Preferred Qualifications - DoD IL4/IL5 or DIB experience. - Certifications (CISSP, CISM, CISA, CAP, CCSP). - Experience with vulnerability scanning tools (Nessus, Qualys, ZAP, etc.) - Background in SaaS or cloud service provider environments Additional Information What We’re Offering - Salary Range: $150,000 to $200,000 plus bonus potential - Flexible paid time off, including sick and holiday - Medical, dental, & vision insurance - 401K with Company contribution - Flexible spending accounts - Life insurance and disability benefits - Tuition assistance - Community involvement and volunteering events M/F/Disabled/Vet VEVRAA Federal Contractor. We are a Drug-Free Workplace. Interested candidates should apply at: www.ifs.com/about/careers-at-ifs All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. VEVRAA Federal Contractor, Equal Opportunity Employer All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. VEVRAA Federal Contractor, Equal Opportunity Employer All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. VEVRAA Federal Contractor, Equal Opportunity Employer - IFS Referral Bonus Code: SH - Job Location: Remote

• Support ongoing FedRAMP authorization including SSP, POA&M, evidence, and 3PAO coordination • Manage and oversee NIST SP 800-53 compliance • Oversee continuous monitoring, vulnerabilities, incidents • Collaborate cross-functionally across various IFS teams • Lead future FedRAMP system readiness • Serve as a primary liaison with 3PAO during annual assessments • Track and remediate findings within FedRAMP SLAs (30/90/180 days) • Develop and maintain security policies and procedures • Support customer security questionnaires and audits

This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description Armor Defense Inc. is seeking a Microsoft Security Architect / Senior Consultant to lead and deliver advanced consulting engagements across the full Microsoft security ecosystem. This role goes beyond a single product area, requiring deep architectural expertise spanning: - Microsoft Defender (Endpoint, Cloud, Identity, Office 365, and OT) - Microsoft Sentinel - Microsoft Purview (Information Protection, DLP, Data Governance) - Microsoft Entra (ID, Permissions Management, Verified ID, Workload Identities) - Conditional Access policy design The successful candidate will serve as a trusted advisor to enterprise customers, conducting security assessments, designing end-to-end security architectures, and implementing solutions that address modern threats, data protection requirements, AI readiness, and Zero Trust maturity. This role combines hands-on technical delivery with strategic advisory, pre-sales support, and the development of reusable intellectual property for Armor Defense's Professional Services practice. This is a contract engagement with flexibility for part-time or full-time commitment depending on project pipeline. The candidate will work closely with Armor Defense's delivery leadership, account teams, and Microsoft partner ecosystem to drive customer outcomes and expand Armor's consulting footprint. Qualifications - 7+ years of experience in cybersecurity, security engineering, sales engineering, or solution consulting, with a strong focus on Microsoft security technologies. - 3+ years of hands-on experience with Microsoft security solutions including Microsoft Defender (full stack), Microsoft Sentinel, Microsoft Purview, Microsoft Entra, and Conditional Access. - 2+ years of customer-facing experience in a delivery, pre-sales, or consulting capacity. - Demonstrated expertise in endpoint, on-premises, and cloud security concepts, features, and reference architectures across the Microsoft platform. - Specific deep expertise in at least three of the following: Microsoft Sentinel (SIEM/SOAR), the full Defender stack (including Defender for Cloud and OT), Microsoft Purview (Information Protection, DLP, Data Governance), Microsoft Entra (Identity Governance, Permissions Management), and Conditional Access policy design. - Experience leading and delivering consulting engagements with high-quality outcomes delivered on time and within budget. - Proven ability to develop technical and conceptual reference architectures for enterprise security environments. - Strong ability to correlate and communicate security gaps with their respective business risks to executive stakeholders. - Broad security expertise with a deep understanding of security principles, risk management, compliance frameworks, and Zero Trust architecture. - Excellent written and verbal communication skills in English, with senior-level presentation and stakeholder engagement capabilities. - Strong problem-solving skills and the ability to work independently and as part of distributed teams. - Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related discipline (or equivalent professional experience). Requirements - Relevant Microsoft Security certifications: SC-200, SC-300, SC-400, AZ-500, or MS-500. - Experience with Microsoft Copilot for Security and understanding of AI-driven security operations. - Familiarity with Azure Information Protection (AIP) scanner, Microsoft Purview Data Governance, and compliance portal capabilities. - Experience designing Conditional Access frameworks that integrate with Intune device compliance, Microsoft Defender for Cloud Apps, and risk-based authentication via Entra ID Protection. - Exposure to non-Microsoft security platforms (AWS Security Hub, GCP Security Command Center) for multi-cloud advisory engagements. - Experience with data governance frameworks such as DAMA-DMBOK and data protection regulations (GDPR, CCPA, HIPAA, PCI DSS, or regional equivalents). - Understanding of AI/ML data pipelines and the security and governance prerequisites for responsible AI deployment. - Prior experience in large-scale enterprise environments spanning financial services, healthcare, aviation, energy, telecommunications, or government. - Experience managing consulting engagements from the provider side, including SOW development, scope management, SLA delivery, and client relationship management. - CISSP, CISM, or other recognized industry security certifications. Benefits - Flexible commitment level (part-time or full-time) based on project pipeline. - Primarily remote work with occasional on-site presence at client locations. - Standard business hours with occasional flexibility required for customer engagement schedules. - Travel may be required for client workshops, assessments, and strategic engagements (estimated 10-25% depending on engagement load). Company Description Join Armor if you want to be part of a company that is redefining cybersecurity. Here, you will have the opportunity to shape the future, disrupt the status quo, and be a part of a team that celebrates energy, passion, and fresh thinking. We are not looking for someone who simply fills a role – we want talent who will help us write the next chapter of our growth story. - Commitment to Growth: A growth mindset that encourages continuous learning and improvement with adaptability in the face of challenges. - Integrity Always: Sustain trust through transparency and honesty in all actions and interactions regardless of circumstances. - Empathy In Action: Active understanding, compassion, and support to the needs of others through genuine connection. - Immediate Impact: Taking initiative with swift, informed actions to deliver positive outcomes. - Follow-Through: Dedication to delivering finished results with attention to quality and detail to achieve the desired outcomes.