×
Register Here to Apply for Jobs or Post Jobs. X

Senior Manager - Application Security Engineering

Remote / Online - Candidates ideally in
Harrisburg, Dauphin County, Pennsylvania, 17101, USA
Listing for: CVS Health
Remote/Work from Home position
Listed on 2026-07-12
Job specializations:
  • IT/Tech
    Cybersecurity, Security Management & Operations, IT Project Manager
Job Description & How to Apply Below

Senior Manager, Application Security Engineering

CVS Health is seeking a Senior Manager, Application Security Engineering to lead enterprise application security, vulnerability management, secure software delivery, and security engineering capabilities across a complex technology environment.

Within the Cybersecurity organization, this leader will be responsible for managing and advancing application security programs that help protect CVS Health applications and technology platforms throughout the software development lifecycle. The role will partner closely with Engineering, Architecture, Infrastructure, Product, Risk, Compliance, and Cybersecurity teams to integrate security into development processes and support secure delivery of business solutions.

The Senior Manager will lead a team responsible for application security engineering, vulnerability management, software supply chain security, security automation, and developer security enablement. This role will oversee security standards, tooling, governance, risk reduction activities, and operational processes that support enterprise technology portfolios and strategic initiatives, including Health 100.

Additionally, this leader will help build and scale security capabilities that improve developer adoption, increase automation, strengthen secure software development practices, and support enterprise Dev Sec Ops  initiatives.

This is a U.S.

-based remote position. Candidates must reside within the United States.

Primary Duties And Responsibilities

Application Security & Secure Software Delivery

  • Lead the design, implementation, and governance of enterprise application security programs, secure development standards, and software supply chain security practices.
  • Establish security requirements, security definitions of done, launch readiness criteria, and automated controls that enable secure software delivery across cloud-native, hybrid, and legacy environments.
  • Drive adoption of secure coding practices and developer-focused security capabilities across enterprise engineering organizations.

Vulnerability Management & Security Operations

  • Oversee the end-to-end vulnerability management lifecycle, including identification, prioritization, remediation, exception management, validation, and reporting.
  • Establish operational metrics, service level objectives, governance processes, and executive reporting mechanisms that drive accountability and measurable risk reduction.
  • Lead enterprise response efforts for critical and zero-day vulnerabilities, including risk assessment, stakeholder communication, remediation coordination, and executive reporting.

Security Engineering, Dev Sec Ops  & Platform Innovation

  • Drive adoption of modern security technologies and Dev Sec Ops  capabilities, including SAST, SCA, container security, secrets management, software bill of materials (SBOM), and software supply chain security solutions.
  • Lead automation of security controls within CI/CD pipelines to improve operational efficiency, strengthen risk mitigation, and accelerate secure software delivery.
  • Evaluate, implement, and optimize application security, cloud security, and software supply chain security technologies across on-premises, cloud, and hybrid environments.
  • Assess and adopt emerging technologies, including AI-powered security and developer productivity solutions, that improve security outcomes and operational effectiveness.
Leadership, Strategy & Enterprise Partnership
  • Lead and develop a high-performing team of security professionals while fostering a culture of technical excellence, accountability, innovation, and continuous improvement.
  • Build and scale security programs that drive developer adoption, self-service security capabilities, and Dev Sec Ops  maturity across enterprise engineering teams.
  • Partner across Engineering, Product, Architecture, Infrastructure, Risk, Compliance, and Cybersecurity teams to define strategic roadmaps, enable secure engineering practices, and support enterprise transformation initiatives, including Health 100.
  • Drive workforce development, capacity planning, operational readiness, and execution of strategic security objectives.
Required Qualifications
  • 7+ years of experience developing, implementing, and operating enterprise security technologies across Application Security, Container Security, Data Security, Infrastructure Security, or related cybersecurity domains.
  • 7+ years of experience leading security programs and initiatives from design and implementation through operationalization and continuous improvement within enterprise environments.
  • 5+ years of experience securing cloud-native and modern application environments leveraging AWS, Azure, or GCP, including containers, Kubernetes, Infrastructure-as-Code (IaC), and Security-as-Code practices.
  • 5+ years of experience supporting secure software development lifecycle (SDLC) programs, vulnerability management, security testing, regulatory compliance, and enterprise application portfolios.
  • 4+ years of experience…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary