At CVS Health, we’re building a world of health around every consumer and surrounding ourselves with dedicated colleagues who are passionate about transforming health care.
As the nation’s leading health solutions company, we reach millions of Americans through our local presence, digital channels and more than 300,000 purpose-driven colleagues – caring for people where, when and how they choose in a way that is uniquely more connected, more convenient and more compassionate. And we do it all with heart, each and every day.
Position Summary
The Corporate Functions & Pharmacy Consumer Wellness (PCW) IT Compliance Team is looking for a resource to maintain and continuously improve upon the governance and support framework for Risk and Issues Management. He or she will primarily oversee compliance-based risk and issues aligned to the Corporate Functions and PCW portfolio of applications. Accountabilities include, but are not limited to, providing insights into issues and trends, reporting, and supporting application teams with process, procedures, and emerging priorities across the different Compliance domain areas. In this lead role, he or she will interact closely with the internal management team, domain leads, application teams, and security teams, serving as an instrumental resource to help maintain focus on the overall compliance support posture for the organizations we support.
Responsibilities
Oversee Compliance Issues Management governance and support program and provide visibility into program’s health and performance.
Standardize Issues Management program operations and ensure consistency across all Compliance domain areas.
Provide general security / compliance guidance and support to application teams, including maintaining line of sight into issues, workload, priorities, and timelines.
Provide proactive, timely, targeted communications, alerts, and escalations as needed to help maintain awareness and minimize risk.
Represent PCW and Corporate Functions for changes to Issues Management process including but not limited to tool changes
Maintain key files and relevant data sources for compliance governance and reporting, including operational metrics for insights and managerial decision making and continuous improvement. This includes maintaining high levels of data quality, consistency, and integrity.
Assist with compilation and maintenance of process documentation, job-aids, FAQs, and other support-related materials.
Assess and interpret IT policies and control standards for system and operational compliance.
Stay updated on industry trends, emerging GRC technologies, and security threats to continuously improve and evolve GRC strategy and solutions.
Promote industry best practices for GRC, ensuring compliance with relevant regulations and standards such as NIST, PCI, SOX, HiTrust, and others.
Required Qualifications
3-5 years of experience with governance, risk, and compliance.
Experience with RSA Archer / GRC or similar tools used for managing risk and compliance.
Knowledge of IT security-related regulations and frameworks such as PCI, HIPAA, SOX, SOC1, SOC2, GDPR, NIST, ISO 27001, and COBIT.
Strong problem-solving, analytical, critical thinking, and organizational skills with demonstrated versatility to handle concurrent high priority tasks.
Strong oral and written and communication skills with ability to clearly articulate and communicate complex problems and solutions in a simple, logical, and impactful manner to both technical and non-technical stakeholders.
Self-motivated with ability to work independently with minimal supervision or without direction, and ability to prioritize work effectively.
Demonstrated ability to handle concurrent high priority tasks and work in dynamic environment on a daily basis.
Experience working with multiple teams across a variety of functional IT and business areas, providing management with status on potential issues as well as driving those issues to closure.
Intermediate to advanced proficiency in MS Excel (pivot tables, lookups, conditional formatting, Power Query, etc.).
Preferred Qualifications
Previous work experience in Application Development, Project or Program Management, Information Security or related practice field.
Security certifications such as CRISC, CISSP, CIAM, CISA, CISM, CCSP, etc.
Process improvement exposure / Lean / Six Sigma.
Education
Bachelor’s Degree in Computer Science, Information Technology, Cybersecurity, or related field or equivalent work experience (HS diploma + 3 years relevant experience).
Ongoing education in cybersecurity, information security, or related domains is a plus.
Anticipated Weekly Hours
40Time Type
Full timePay Range
The typical pay range for this role is:
$101,970.00 - $203,940.00This pay range represents the base hourly rate or base annual full-time salary for all positions in the job grade within which this position falls. The actual base salary offer will depend on a variety of factors including experience, education, geography and other relevant factors. This position is eligible for a CVS Health bonus, commission or short-term incentive program in addition to the base pay range listed above.
Our people fuel our future. Our teams reflect the customers, patients, members and communities we serve and we are committed to fostering a workplace where every colleague feels valued and that they belong.
Great benefits for great people
We take pride in our comprehensive and competitive mix of pay and benefits – investing in the physical, emotional and financial wellness of our colleagues and their families to help them be the healthiest they can be. In addition to our competitive wages, our great benefits include:
Affordable medical plan options, a 401(k) plan (including matching company contributions), and an employee stock purchase plan.
No-cost programs for all colleagues including wellness screenings, tobacco cessation and weight management programs, confidential counseling and financial coaching.
Benefit solutions that address the different needs and preferences of our colleagues including paid time off, flexible work schedules, family leave, dependent care resources, colleague assistance programs, tuition assistance, retiree medical access and many other benefits depending on eligibility.
For more information, visit https://jobs.cvshealth.com/us/en/benefits
We anticipate the application window for this opening will close on: 01/05/2026Qualified applicants with arrest or conviction records will be considered for employment in accordance with all federal, state and local laws.