CVS Health, the parent company of Signify Health, is increasing investments in digital, data, analytics and technology and Signify Health is excited to be involved!
We are hiring for a dynamic new initiative for CVS Health that will run out of our state-of-the-art offices at Bonham Quay. This is your opportunity to be involved with a pioneering business that is transforming health care in the United States by making customer experiences more seamless, convenient and personalised.
The Security Engineer - Data Discovery is an important member of the Data Integrity Services team focused on leveraging advanced technologies and methodologies to discover, classify, and protect data across various platforms and environments. This position requires a deep understanding of data security principles, excellent technical skills, and the ability to lead a team in implementing effective data protection measures.
This Security Engineer will collaborate with privacy, compliance, ransomware protection, remediation, retention, data vaulting and recovery functions to align data security efforts with organizational goals. The ideal candidate will have proven success implementing innovative data discovery, classification and labeling technologies and processes for risk-driven data protection.
Primary Job Duties & Responsibilities:
1. Design, configure and implement enterprise-wide data discovery, classification, and labeling capabilities across the hybrid on-prem and cloud environments.
2. Create and tune data detection rules and engines to scan, tag, and categorize structured, semi-structured and unstructured data based on regulatory and business requirements.
3. Collaborate with stakeholders to gather and document detailed product requirements, and to drive product development from concept to launch.
4. Prioritize discovery and classification features based on business priorities and customer needs.
5. Integrate data discovery tools with workflow, backup/restore, event logging, and applicable SaaS platforms.
6. Provide technical guidance and mentorship to team members, ensuring high-quality deliverables and adherence to security best practices.
7. Partner with systems and security architecture, application, databases, and storage teams to prioritize data security by design.
8. Manage the sequencing and timing of project delivery with technology leadership, product, security engineering and delivery teams.
9. Support data security incidents, audits, compliance, regulatory, client assurance, and third-party assessment requests.
Required Qualifications:
1. 5+ years of technical data security experience building and managing sophisticated tools and processes in support of cybersecurity protection and strategy initiatives.
2. 3+ years of hands-on experience with engineering and administration of data discovery, labeling, and classification platforms.
3. Continuous improvement mindset for fine-tuning processes and controls.
4. Demonstrated experience working with a wide range of internal and external stakeholders.
5. Comfortable working within areas of ambiguity, high degree of complexity and constantly changing environments.
6. Strong analytical abilities, verbal/written communication, and interpersonal skills.
Preferred Qualifications:
1. Experience with security solutions for data loss prevention, encryption, proxy, cloud data security, structured data security, and insider risk.
2. Industry certifications from PMI, ISC2, SANS, ISACA, IAPP or equivalent.
3. Knowledge of data security and privacy regulatory compliance, frameworks, and standards such as GDPR, CCPA, PCI, HIPAA, NIST, and FIPS 140-2.
4. Continuous learner, well informed on technology trends, methodologies, and models.
Education:
1. BS degree in Information Security, Computer Science and Engineering, Information Technology, or equivalent discipline.
#J-18808-Ljbffr