CVS Health is a leading healthcare company operating CVS Specialty, CVS Pharmacy, CVS MinuteClinic, and CVS Caremark. In 2018, CVS combined forces with healthca
Senior Manager – Application Security Engineering
Location
Connecticut + 4 moreAll locations: Connecticut | New York | Massachusetts | Rhode Island | Texas
Posted
1 day ago
Salary
$118.5K - $260.6K / year
Seniority
Senior
Job Description
Senior Manager – Application Security Engineering
CVS Health
• Lead the design, implementation, and governance of enterprise application security programs, secure development standards, and software supply chain security practices. • Establish security requirements, security definitions of done, launch readiness criteria, and automated controls that enable secure software delivery across cloud-native, hybrid, and legacy environments. • Drive adoption of secure coding practices and developer-focused security capabilities across enterprise engineering organizations. • Oversee the end-to-end vulnerability management lifecycle, including identification, prioritization, remediation, exception management, validation, and reporting. • Establish operational metrics, service level objectives, governance processes, and executive reporting mechanisms that drive accountability and measurable risk reduction. • Lead enterprise response efforts for critical and zero-day vulnerabilities, including risk assessment, stakeholder communication, remediation coordination, and executive reporting. • Drive adoption of modern security technologies and DevSecOps capabilities, including SAST, SCA, container security, secrets management, software bill of materials (SBOM), and software supply chain security solutions. • Lead automation of security controls within CI/CD pipelines to improve operational efficiency, strengthen risk mitigation, and accelerate secure software delivery. • Evaluate, implement, and optimize application security, cloud security, and software supply chain security technologies across on-premises, cloud, and hybrid environments. • Assess and adopt emerging technologies, including AI-powered security and developer productivity solutions, that improve security outcomes and operational effectiveness. • Lead and develop a high-performing team of security professionals while fostering a culture of technical excellence, accountability, innovation, and continuous improvement. • Build and scale security programs that drive developer adoption, self-service security capabilities, and DevSecOps maturity across enterprise engineering teams.
Job Requirements
- 7+ years of experience developing, implementing, and operating enterprise security technologies across Application Security, Container Security, Data Security, Infrastructure Security, or related cybersecurity domains.
- 7+ years of experience leading security programs and initiatives from design and implementation through operationalization and continuous improvement within enterprise environments.
- 5+ years of experience securing cloud-native and modern application environments leveraging AWS, Azure, or GCP, including containers, Kubernetes, Infrastructure-as-Code (IaC), and Security-as-Code practices.
- 5+ years of experience supporting secure software development lifecycle (SDLC) programs, vulnerability management, security testing, regulatory compliance, and enterprise application portfolios.
- 4+ years of experience with application security technologies including SAST, SCA, CVA, mobile application security testing, secrets scanning, software supply chain security, and developer enablement programs.
- 2+ years of experience leading, mentoring, managing, and developing security engineering, application security, vulnerability management, or cybersecurity teams.
Benefits
- medical, dental, and vision coverage
- paid time off
- retirement savings options
- wellness programs
- comprehensive benefits package
Related Guides
Related Categories
Related Job Pages
More Application Engineer Jobs
Role Description We are seeking a highly motivated and technically proficient Application Support Engineer to join our growing Customer Success team. This role is ideal for individuals who enjoy solving complex technical challenges, assisting customers, and serving as a crucial link between our customers and product development. You will be instrumental in ensuring a smooth and successful customer experience by transforming complex issues into clear, actionable solutions. What You'll Do: - Technical Issue Resolution: Investigate, diagnose, and resolve intricate technical issues related to API integrations, databases, servers, microservice performance, web hosting, telephony and network technologies, and containerized applications. - Customer Advocacy: Serve as the primary technical point of contact for customer inquiries, providing clear, concise, and empathetic communication via email and our support portal. - Collaboration & Escalation: Partner closely with Engineering, Product, and Sales teams to escalate bugs, feature requests, and critical incidents, ensuring timely resolution and feedback. - Knowledge Management: Create and maintain comprehensive documentation, FAQs, and knowledge base articles to empower both customers and internal teams. - Issue Reproduction & Testing: Replicate customer environments and issues to identify root causes and verify solutions. - Product Expertise: Develop deep product knowledge, understanding architecture, functionality, and common use cases. - Process Improvement: Identify recurring issues and contribute to process enhancements that improve the customer support experience and product quality. - On-Call Support: Participate in a rotational on-call schedule for urgent issues outside regular business hours. Qualifications - 4+ years of experience in a technical support, helpdesk, or customer-facing engineering role. - Strong problem-solving and analytical skills, with the ability to deconstruct complex issues. - Excellent written and verbal communication skills, capable of translating technical details for both technical and non-technical audiences. - Proficiency in: - Web hosting technologies. - APIs (automation, collaboration, and data extraction/changes through HTTP methods). - Network architecture and components. - Server OS and hardware troubleshooting. - Application log analysis. - Telephony signaling protocols for VOIP (SIP/SIPrec, H.323) and media control protocols (RTP). - Experience with support ticketing systems (e.g., Zendesk, Linear, JIRA). - A customer-centric mindset with a genuine desire to deliver excellent service. - Ability to work independently and collaboratively in a fast-paced environment. Requirements - Bonus Points If You Have: - Experience managing or integrating SaaS applications or CCaaS platforms (e.g., Avaya, Five9, Genesys) and telephony infrastructure. - Experience with cloud-based hyperscaler solutions (e.g., AWS S3/RDS/EKS for file repositories and databases). - Familiarity with Kubernetes for containerized applications. - Basic scripting skills (e.g., Python, PowerShell, Bash) for automation or data analysis. - Experience with logging and monitoring tools (e.g., Datadog, Grafana, Groundcover). - Fluency in additional languages. - A degree in Computer Science, Engineering, or a related technical field. Benefits - Comprehensive medical, dental, and vision coverage with plans to fit you and your family. - Flexible PTO to take the time you need, when you need it. - Paid parental leave for all new parents welcoming a new child. - Retirement savings plan to help you plan for the future. - Remote work setup budget to help you create a productive home office. - Monthly wellness and communication stipend to keep you connected and balanced. - In-office meal program and commuter benefits provided for onsite employees. Compensation at Cresta Cresta’s approach to compensation is simple: recognize impact, reward excellence, and invest in our people. We offer competitive, location-based pay that reflects the market and what each individual brings to the table. Salary Range: $90,000–$105,000K base + Bonus + Offers Equity ***We are hiring for multiple levels for this role so base salary will be determined based on level of experience*** We have noticed a rise in recruiting impersonations across the industry, where scammers attempt to access candidates' personal and financial information through fake interviews and offers. All Cresta recruiting email communications will always come from the @cresta.ai domain. Any outreach claiming to be from Cresta via other sources should be ignored. If you are uncertain whether you have been contacted by an official Cresta employee, reach out to recruiting@cresta.ai.
• Build and scale our vulnerability management program • Embed secure coding practices into engineering workflows • Ensure security standards are met at every stage of the software development lifecycle
Senior Java Engineer
SAICSAIC® is a premier mission integrator focused on advancing the power of technology and innovation to serve and protect our world. Our robust portfolio of offerings across the defense, space, intelligence, and civilian markets includes secure high-end solutions in mission IT, enterprise IT, engineering services, and professional services. We integrate emerging technology, rapidly and securely, into mission critical operations that modernize and enable critical national imperatives. We are approximately 23,000 strong; driven by mission, united by purpose, and inspired by opportunities. SAIC is an Equal Opportunity Employer. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $7.3 billion. For more information, visit saic.com . For ongoing news, please visit our newsroom .
Role Description SAIC is seeking an experienced Senior Java Developer to join our Agile team supporting one of our prestigious government customers in Washington DC. The role involves designing, developing, and maintaining scalable Java applications in a DevSecOps-enabled AWS cloud environment. - Design, build, and migrate Java applications to AWS using services like ECS Fargate, EC2, S3, RDS, Lambda, API Gateway, etc. - Develop and maintain CI/CD pipelines, implement Terraform for infrastructure automation, and ensure compliance with security standards like FedRAMP and HIPAA. - Perform system optimization for scalability, performance, and cost-effectiveness. - Collaborate within Agile teams to analyze and implement user stories using modern development principles. - Troubleshoot and resolve performance, security, or scalability issues using tools like Splunk, CloudWatch, and CloudTrail. - Translate legacy systems to next-generation cloud-based solutions. Company Description SAIC® is a premier mission integrator focused on advancing the power of technology and innovation to serve and protect our world. Our robust portfolio of offerings across the defense, space, intelligence, and civilian markets includes secure high-end solutions in mission IT, enterprise IT, engineering services, and professional services. We integrate emerging technology, rapidly and securely, into mission critical operations that modernize and enable critical national imperatives. - We are approximately 23,000 strong; driven by mission, united by purpose, and inspired by opportunities. - SAIC is an Equal Opportunity Employer. - Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $7.3 billion. - For more information, visit saic.com. - For ongoing news, please visit our newsroom.
Application Support Engineer
BringgBringg is the leading Delivery Management Platform -- optimizing last mile delivery, fulfillment, and returns for retailers and carriers worldwide. Bringg transforms delivery into a competitive advantage for 800+ customers, increasing order capacity, reducing costs, and ensuring branded customer experiences, handling over 200 million orders annually.
Bringg is on a mission to transform last-mile delivery into a powerful driver of growth, loyalty, and operational excellence. As an AI-powered SaaS platform, we help leading enterprises and Fortune 500 retailers and logistics providers orchestrate smarter, more efficient delivery operations - from same-day to scheduled delivery - streamlining operations and enhancing customer experience at scale. What You'll Do - Handle both customer-facing and deep technical support questions from Bringg's enterprise customers - Investigate reported issues using logs, SQL queries, and API calls to find root cause, not just symptoms - Use observability tools (e.g. OpenSearch, Kibana, Grafana, Splunk) to monitor system health, catch issues proactively, and speed up incident investigation - Use AI-assisted tools to accelerate log analysis, pattern-match recurring issues, and surface likely root causes before manual digging - Manage a queue of competing priorities, escalating the right issues to R&D with clear, actionable bug reports - Own production incidents end-to-end, including communicating status to internal and external stakeholders - Validate fixes through functional testing before they go back to customers - Contribute to and improve a shared knowledge base, using AI tools to help identify gaps and keep documentation current What You Bringg Must-haves: - 2+ years of experience in L2 or L3 technical or application support - Proven experience using SQL at an intermediate level - Proven track record working with REST APIs - Strong hands-on experience with at least one modern observability platform (e.g., OpenSearch, Kibana, Grafana, Splunk or similar tools) including log analysis, monitoring, incident investigation, root cause analysis, and proactive detection of system health and performance issues - High level of English (a must!) with both strong written and oral communication skills Strong advantages: - Experience with providing technical and application support for Web & Mobile platforms - BS degree in Computer Science or related technical field - Customer-facing experience - Experience working in operationally critical environments in high-pressure situations Note: The position requires working in shifts (including night shifts 00.00- 08.00) during business days, and weekend shifts (day & night shifts) We care about our people! Here's a glimpse of our benefit package: - Home office setup: $500 home office equipment allowance - Meal allowance: $100 monthly meal allowance - Hybrid work: flexible hybrid work from home or office - 20 days parental (non-birth) leave - 2 vacation days + $250 gift when getting married - A vacation day on your birthday - Wellness budget: $100 monthly budget for wellness or a sports activity of your choice - Health insurance provided after completing the trial period - Support team members receive 2 extra days off per year, which can be taken at a time that works best for you



