Network Security Engineer II

Last year our HCA Healthcare colleagues invested over 156,000 hours volunteering in our communities. As a Network Security Engineer II with HCA Healthcare you can be a part of an organization that is devoted to giving back!

JOB SUMMARY

Support and contribute to the implementation, modernization, standardization and enhancement of network security controls to protect a Fortune 100 enterprises infrastructure, patients and data from increasing risk and threats. The position will perform reviews and assess policies for risk and vulnerabilities with assistance from assessments or internal security audits and identify potential hardening opportunities, provide remediation recommendations and solutions and assist in the implementation or configuration changes to support continuous security control maturity and risk reduction.

This position will work collaboratively with other IT teams to implement risk management practices, optimize technology solutions, monitor and adjust infrastructure to meet current and future needs, ensure compliance with regulatory requirements, and continuously plan for the future to improve our security posture and control maturity. The ideal candidate will be experienced in network security fundamentals and have a strong understanding of how to develop and implement remediation plans to address identified risks, implement new features and technologies, standardize and optimize existing technologies, establish and maintain baselines, and automate processes wherever possible to increase efficiency and reduce errors.

GENERAL RESPONSIBILITIES

Responsibilities include but are not limited to the following.

Assist in the evaluation, recommendation, and implementation of appropriate security measures, including next-generation firewall features, intrusion detection/prevention systems, VPN, network segmentation/zero trust, multifactor and access control mechanisms.

Conduct firewall rule reviews, security audits, baseline and best practice compliance, forensic network investigation to support data transmission adherence and implement or oversee recommendations

Support and contribute to network security solutions under the guidance of senior engineers to protect the organization's infrastructure, applications, and data from cyber threats in accordance with regulatory and industry requirements, such as PCI DSS, SOX, NIST, ISO 27000, and HIPAA.

Evaluate vulnerability assessments, penetration tests, metrics and security audits to identify potential hardening opportunities and provide remediation recommendations and solutions.

Assisting with the implementation of solutions and configuration changes within a large enterprise network under the guidance of senior engineers in support of continuous security control maturity and risk reduction.

Participate in incident response and disaster recovery planning and testing

Collaborate with other IT teams to ensure that network security controls are integrated with other systems and applications and are up to security standards

Conduct routine network security audits and control tests on deployed technologies, collecting and consolidating indicators of performance, risks, trends and providing recommendations, baseline and regulatory compliance ratings.

Participate in relationships with vendors and contractors to ensure that security services are timely delivered and implemented in alignment to security policies

Collaborate with senior engineers on the development and documentation of security policies and procedures, training and awareness.

Assist department leads with training peers on compliance and best practices.

Assist with research and design enhancements of automated solutions or best of breed technologies while assisting with integration tests with vendors.

Keep up to date with the latest threats and vulnerabilities, as well as relevant regulations and industry best practices, and implement recommendations to improve the organization's security posture and maturity control.

EXPERIENCE

Qualified candidates must have 3+ years of relevant work experience

EDUCATION

Bachelors degree preferred

OTHER/SPECIAL QUALIFICATIONS

Relevant experience with security technologies, such as next-generation firewalls, intrusion detection/prevention systems, VPN, network segmentation, access control mechanisms, and security design, management, best practices, policy, standards in large 1000+ firewall environments.

Experience in Checkpoint Firewall, CMA, Provider-1, Maestro, VSX/VSLS, Cloud Guard

Administration of one or many of the following Cisco Network Security Products & Technologies (i.e. Firepower, ASA, VPN, WSA, ISE, Stealthwatch, etc.)

Strong understanding of network protocols, topologies, tools, subnetting and architectures

Aptitude in Network Security Policy Management tools (Algosec, Tufin) and/or conducting risk assessments, firewall rule review, and security audits

Strong knowledge of enterprise security technologies and processes (Zscaler, A10, F5, WAF, Advanced Threat Detection Tools, Antibot, Antimalware, Threat Emulation, SIEM, IDS/IPS, Network Packet Analysis, Netflow, etc.)

Experience administrating solutions for security standards and frameworks, such as HIPAA, SOX, PCI DSS, HITECH, ISO/IEC 27001, and NIST Cybersecurity Framework

Knowledge of Network Security Management Tools/Technologies (e.g: Splunk, TrustSec, segmentation, syslog, etc..)

Excellent verbal and written communication, interpersonal, analytical and problem-solving skills.

Ability to work independently and as part of a team

Relevant certifications from ISC2 (CISSP), GIAC (GISP), ISACA (CISA), Cisco Security or CompTIA are a plus

PHYSICAL DEMANDS/WORKING CONDITIONS

Position expectations are nominal supervision required due to design, service and support knowledge/skillsets

Position may require periodic after hours work and light travel at times with little notice and requires sitting for extended periods

Benefits

HCA Healthcare, offers a total rewards package that supports the health, life, career and retirement of our colleagues. The available plans and programs include:

• Comprehensive benefits for medical, prescription drug, dental, vision, behavioral health and telemedicine services
• Wellbeing support, including free counseling and referral services
• Time away from work programs for paid time off, paid family leave, long- and short-term disability coverage and leaves of absence
• Savings and retirement resources , including a 401(k) Plan with a 100% match on 3% to 9% of pay (based on years of service), Employee Stock Purchase Plan, flexible spending accounts, preferred banking partnerships, retirement readiness tools, rollover support and financial wellbeing counseling
• Education support through tuition assistance, student loan assistance, certification support, dependent scholarships and a partnership with Galen College of Nursing
• Additional benefits for fertility and family building, adoption assistance, life insurance, supplemental health protection plans, auto and home insurance, legal counseling, identity theft protection and consumer discounts

Learn more about Employee Benefits

Note: Eligibility for benefits may vary by location.

HCA Healthcare has been recognized as one of the World's Most Ethical Companies by the Ethisphere Institute more than ten times. In recent years, HCA Healthcare spent an estimated $3.7 billion in cost for the delivery of charitable care, uninsured discounts, and other uncompensated expenses.

Be a part of an organization that invests in you! We are reviewing applications for our Network Security Engineer II opening. Qualified candidates will be contacted for interviews. Submit your application and help us raise the bar in patient care!

We are an equal opportunity employer. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.