Skip to main content

Information Technology

Aetna IT is committed to keeping our members at the heart of everything we do. Our top-talent workforce delivers leading-edge technology, drives innovation, turns vision into action and challenges the art of the possible. We provide best-in-class services to our members by delivering groundbreaking healthcare tools, enabling consumer-friendly interactions and protecting data security. Your mission will be to deliver innovating technology solutions including: Hybrid cloud infrastructure, artificial intelligence/machine learning capabilities and infrastructure as code.

Aetna, a CVS Health Company, is a company with a world-class IT team and we will be counting on you to carry on our success as the preferred provider of infrastructure services for our business partners.

Back to Job Navigation (Overview)

Success Profile

What makes a successful Information Technologist?
Here are the traits we are looking for:

  • Adaptable
  • Collaborative
  • Communicator
  • Digitally Savvy
  • Good Listener
  • Problem-solver
  • Results Driven
  • Team Player
  • Technologically savvy
  • Versatile
  • Relationship expertise
  • Diplomatic
  • Trustworthy
  • Business Savvy

Back to Job Navigation (Success)

Benefits

  • Medical

  • Dental

  • Vision

  • Healthcare
    FSA

  • Dependent
    Care FSA

  • Health and
    Wellness
    Programs

Back to Job Navigation (Rewards)

Job Details

Audit Security Analyst

Primary Location: Hartford, Connecticut
Additional Locations: CT-Hartford
Apply
Description:
We are looking for a talented and experienced Security Analyst to join our Third Party Assessment Program focused ensuring the security and integrity of CVS Health third parties with access to our data.

The Security Analyst is responsible for ensuring CVS data remains secure and all risks, vulnerabilities and defects are managed, tracked and remediated according to policy and/or best practices. The Security Analyst selected for this role must have experience with risk management concepts and processes and a background in external or internal audit. The Security Analyst will execute the third party assessment program and serve as a contact to participants across the enterprise that put third parties through the program.


The incumbent will be responsible for ensuring that the proper due diligence is performed over our third parties with access to CVS data or our environment.

The Security Analyst will be responsible for but not limited to:
  • Develop reports and evaluate the results of the vendor assessment
  • Identify and document control gaps
  • Review and interrupt results of vulnerability assessments and penetration testing
  • Communicate with auditors and regulators during compliance and regulatory reviews
  • Participate in information security audits ensuring technical compliance with security related regulatory requirements (PCI, SOX, PII, PHI, etc)
  • Collaboratively work with peers to ensure operational excellence
  • Contribute to or help lead current state risk assessments, continual risk assessments, risk metrics and visualization and integrated operational risk management
  • Identify and prioritize risk based on impact and likelihood
  • Work directly with key business leaders to facilitate information risk analysis and risk management processes, identify acceptable levels of risk, and establish roles and responsibilities with regards to information risk management
  • Assist in Policy/Standard development and security awareness and training
  • Ensure security programs are in compliance with applicable laws, regulations and policies to minimize risk and audit findings


Fundamental Components:
*Required Qualifications
  • 3+ years of experience in an IT Security/IT Risk environment with a large regulated organization
  • Knowledge of risk assessment methodologies, IT/IS Policies and Standards, IT risk standards and industry best practices (ISO 27000, HITRUST, CoBIT, Managing Vendor Assessments).
  • Experience or understanding of managing vendor assessments
  • Experience with development and administration of risk assessments and reviews
  • Experience with audit processes and disciplines
  • Experience with more than one major IT discipline (distributed computing, networks, application design and development, IT security and business recovery)
  • Knowledge of risk assessment methodologies, IT policies and standards
  • Strong client relationship management experience and skills
  • Familiarity with relevant regional regulatory requirements
  • Strong interpersonal and oral/written communication skills, able to build relationships at all levels
  • Knowledge of IT risk standards and industry best practice approaches such as ISO 17799, HITRUST, and CoBit
  • Knowledge of web application security testing and vulnerability testing tools.
  • Knowledge of network-level penetration testing
  • Knowledge of source code reviews using automated tools such as Veracode and/or manual analysis



Education:
Information Management - Certified Information Security Manager (CISM), Information Management - Certified Information Systems Security Professional (CISSP) - - sponsored by International Information Systems Security Certification Consortium

Potential Telework Position:
Yes

Percent of Travel Required:
0 - 10%

EEO Statement:
Aetna is an Equal Opportunity, Affirmative Action Employer

Benefit Eligibility:
Benefit eligibility may vary by position.

Candidate Privacy Information:
Aetna takes our candidate's data privacy seriously. At no time will any Aetna recruiter or employee request any financial or personal information (Social Security Number, Credit card information for direct deposit, etc.) from you via e-mail. Any requests for information will be discussed prior and will be conducted through a secure website provided by the recruiter. Should you be asked for such information, please notify us immediately.

Apply

Influential Content

Back to Job Navigation (Trending)

Sign up for Job Alerts

Explore This Area

Check out where you could be working if you apply.

View Map

Similar Jobs

Join Our Talent Community

Sign up to receive information about job openings that are tailored to your skills and interests. Plus, get the latest career news from Aetna, a CVS Health Company.