We're building a world of health around every individual - shaping a more connected, convenient and compassionate health experience. At CVS Health®, you'll be surrounded by passionate colleagues who care deeply, innovate with purpose, hold ourselves accountable and prioritize safety and quality in everything we do. Join us and be part of something bigger - helping to simplify health care one person, one family and one community at a time.
**Position Summary:**
CVS Health is seeking an experienced healthcare delivery professional with strong technology acumen to join the Business Information Services Office (BISO). This role is responsible for governance, oversight, and reporting related to security and compliance across HealthCare Delivery. The position serves as a central point of coordination for security investigations, education on control and standards requirements, and oversight of tracking systems that reduce compliance risk. It also supports enterprise-wide vulnerability remediation efforts and provides governance related to technology currency and patching initiatives.
This individual will guide the timely remediation of security and compliance deliverables, ensure adherence to policy and control standards, and deliver clear reporting and escalation to senior leaders. The ideal candidate brings deep healthcare industry experience, strong understanding of technology risk management, and the ability to navigate complex, highly regulated environments. Success in this role requires executive presence, exceptional communication skills, strategic problem-solving capabilities, and the ability to lead through influence in an environment with shifting priorities and ambiguity.
Primary Job Duties & Responsibilities:
+ Develop and execute the IT program strategy supporting organizational goals and healthcare service delivery priorities.
+ Define roles and responsibilities, establish cross-functional communication channels, and lead program governance meetings to ensure alignment with provider and operational needs.
+ Establish and maintain governance structures and processes that promote effective oversight, decision‑making, and accountability.
+ Lead planning, execution, and monitoring of IT programs-ensuring adherence to timelines, budgets, and quality standards, especially in relation to infrastructure supporting healthcare delivery.
+ Create and implement risk mitigation strategies and issue‑resolution processes to drive timely closure of program issues.
+ Establish program reporting mechanisms to provide stakeholders with clear updates on status, milestones, and risks.
+ Develop and implement change management strategies to support successful adoption of program initiatives across clinical and operational teams.
+ Oversee operational aspects of the team, including budgeting, performance, compliance, and workforce/succession planning.
+ Set performance expectations, deliver coaching and feedback, and promote a culture of continuous improvement and employee engagement.
+ Serve as the primary compliance representative for the assigned business tower.
+ Participate in weekly BISO compliance forums and engage in ad hoc sessions to address emerging issues.
+ Provide timely escalation to the VP on potential risks and ensure issues remain on track for successful resolution; escalate delays or impediments as necessary.
+ Act as liaison between control owners, auditors, compliance teams, and program coordinators, with a strong understanding of audit, risk, and compliance requirements.
+ Offer guidance to application managers, including those overseeing EMR platforms such as Epic.
+ Communicate policy and standards updates to impacted Application Managers and ensure successful completion of required assessments, questionnaires, and documentation.
+ Represent the tower in discussions with assessors and auditors when required.
+ Maintain advanced knowledge of vulnerability management and troubleshooting within security environments.
+ Demonstrate experience leading security-focused project management initiatives.
**Required Qualifications:**
+ 10+ years of experience in medical provider environments (health systems, direct consumer care, payer/insurance, or similar).
+ 5+ years of experience with healthcare service delivery IT infrastructure technologies.
+ 5+ years of experience in Governance, Risk, and Compliance functions, particularly those involving sensitive consumer or financial data.
+ 3+ years of experience working with Electronic Medical Record (EMR) systems such as Epic.
**Preferred Qualifications:**
+ Direct experience with infrastructure operations.
+ Experience in Cybersecurity.
+ Strong analytical skills with the ability to identify, assess, and resolve complex problems.
+ Experience with enterprise, application, or information architecture.
+ Demonstrated leadership capability, including independent decision-making, adaptability, resource management, and strong communication skills.
**Education:**
+ Bachelor's degree or equivalent experience (High School Diploma and 4 years of relevant experience).
**Pay Range**
The typical pay range for this role is:
$144,200.00 - $288,400.00
This pay range represents the base hourly rate or base annual full-time salary for all positions in the job grade within which this position falls. The actual base salary offer will depend on a variety of factors including experience, education, geography and other relevant factors. This position is eligible for a CVS Health bonus, commission or short-term incentive program in addition to the base pay range listed above. This position also includes an award target in the company's equity award program.
Our people fuel our future. Our teams reflect the customers, patients, members and communities we serve and we are committed to fostering a workplace where every colleague feels valued and that they belong.
**Great benefits for great people**
We take pride in our comprehensive and competitive mix of pay and benefits - investing in the physical, emotional and financial wellness of our colleagues and their families to help them be the healthiest they can be. In addition to our competitive wages, our great benefits include:
+ **Affordable medical plan options,** a **401(k) plan** (including matching company contributions), and an **employee stock purchase plan** .
+ **No-cost programs for all colleagues** including wellness screenings, tobacco cessation and weight management programs, confidential counseling and financial coaching.
+ **Benefit solutions that address the different needs and preferences of our colleagues** including paid time off, flexible work schedules, family leave, dependent care resources, colleague assistance programs, tuition assistance, retiree medical access and many other benefits depending on eligibility.
For more information, visit anticipate the application window for this opening will close on: 03/04/2026
Qualified applicants with arrest or conviction records will be considered for employment in accordance with all federal, state and local laws.
CVS Health is an equal opportunity/affirmative action employer, including Disability/Protected Veteran - committed to diversity in the workplace.
**Position Summary:**
CVS Health is seeking an experienced healthcare delivery professional with strong technology acumen to join the Business Information Services Office (BISO). This role is responsible for governance, oversight, and reporting related to security and compliance across HealthCare Delivery. The position serves as a central point of coordination for security investigations, education on control and standards requirements, and oversight of tracking systems that reduce compliance risk. It also supports enterprise-wide vulnerability remediation efforts and provides governance related to technology currency and patching initiatives.
This individual will guide the timely remediation of security and compliance deliverables, ensure adherence to policy and control standards, and deliver clear reporting and escalation to senior leaders. The ideal candidate brings deep healthcare industry experience, strong understanding of technology risk management, and the ability to navigate complex, highly regulated environments. Success in this role requires executive presence, exceptional communication skills, strategic problem-solving capabilities, and the ability to lead through influence in an environment with shifting priorities and ambiguity.
Primary Job Duties & Responsibilities:
+ Develop and execute the IT program strategy supporting organizational goals and healthcare service delivery priorities.
+ Define roles and responsibilities, establish cross-functional communication channels, and lead program governance meetings to ensure alignment with provider and operational needs.
+ Establish and maintain governance structures and processes that promote effective oversight, decision‑making, and accountability.
+ Lead planning, execution, and monitoring of IT programs-ensuring adherence to timelines, budgets, and quality standards, especially in relation to infrastructure supporting healthcare delivery.
+ Create and implement risk mitigation strategies and issue‑resolution processes to drive timely closure of program issues.
+ Establish program reporting mechanisms to provide stakeholders with clear updates on status, milestones, and risks.
+ Develop and implement change management strategies to support successful adoption of program initiatives across clinical and operational teams.
+ Oversee operational aspects of the team, including budgeting, performance, compliance, and workforce/succession planning.
+ Set performance expectations, deliver coaching and feedback, and promote a culture of continuous improvement and employee engagement.
+ Serve as the primary compliance representative for the assigned business tower.
+ Participate in weekly BISO compliance forums and engage in ad hoc sessions to address emerging issues.
+ Provide timely escalation to the VP on potential risks and ensure issues remain on track for successful resolution; escalate delays or impediments as necessary.
+ Act as liaison between control owners, auditors, compliance teams, and program coordinators, with a strong understanding of audit, risk, and compliance requirements.
+ Offer guidance to application managers, including those overseeing EMR platforms such as Epic.
+ Communicate policy and standards updates to impacted Application Managers and ensure successful completion of required assessments, questionnaires, and documentation.
+ Represent the tower in discussions with assessors and auditors when required.
+ Maintain advanced knowledge of vulnerability management and troubleshooting within security environments.
+ Demonstrate experience leading security-focused project management initiatives.
**Required Qualifications:**
+ 10+ years of experience in medical provider environments (health systems, direct consumer care, payer/insurance, or similar).
+ 5+ years of experience with healthcare service delivery IT infrastructure technologies.
+ 5+ years of experience in Governance, Risk, and Compliance functions, particularly those involving sensitive consumer or financial data.
+ 3+ years of experience working with Electronic Medical Record (EMR) systems such as Epic.
**Preferred Qualifications:**
+ Direct experience with infrastructure operations.
+ Experience in Cybersecurity.
+ Strong analytical skills with the ability to identify, assess, and resolve complex problems.
+ Experience with enterprise, application, or information architecture.
+ Demonstrated leadership capability, including independent decision-making, adaptability, resource management, and strong communication skills.
**Education:**
+ Bachelor's degree or equivalent experience (High School Diploma and 4 years of relevant experience).
**Pay Range**
The typical pay range for this role is:
$144,200.00 - $288,400.00
This pay range represents the base hourly rate or base annual full-time salary for all positions in the job grade within which this position falls. The actual base salary offer will depend on a variety of factors including experience, education, geography and other relevant factors. This position is eligible for a CVS Health bonus, commission or short-term incentive program in addition to the base pay range listed above. This position also includes an award target in the company's equity award program.
Our people fuel our future. Our teams reflect the customers, patients, members and communities we serve and we are committed to fostering a workplace where every colleague feels valued and that they belong.
**Great benefits for great people**
We take pride in our comprehensive and competitive mix of pay and benefits - investing in the physical, emotional and financial wellness of our colleagues and their families to help them be the healthiest they can be. In addition to our competitive wages, our great benefits include:
+ **Affordable medical plan options,** a **401(k) plan** (including matching company contributions), and an **employee stock purchase plan** .
+ **No-cost programs for all colleagues** including wellness screenings, tobacco cessation and weight management programs, confidential counseling and financial coaching.
+ **Benefit solutions that address the different needs and preferences of our colleagues** including paid time off, flexible work schedules, family leave, dependent care resources, colleague assistance programs, tuition assistance, retiree medical access and many other benefits depending on eligibility.
For more information, visit anticipate the application window for this opening will close on: 03/04/2026
Qualified applicants with arrest or conviction records will be considered for employment in accordance with all federal, state and local laws.
CVS Health is an equal opportunity/affirmative action employer, including Disability/Protected Veteran - committed to diversity in the workplace.