Network Security Engineer II

Introduction

Last year our HCA Healthcare colleagues invested over 156,000 hours
volunteering in our communities. As a Network Security Engineer II with HCA
Healthcare you can be a part of an organization that is devoted to giving
back!

Benefits

HCA Healthcare, offers a total rewards package that supports the health, life,
career and retirement of our colleagues. The available plans and programs
include:

• Comprehensive medical coverage that covers many common services at no cost or for a low copay. Plans include prescription drug and behavioral health coverage as well as free telemedicine services and free AirMed medical transportation.
• Additional options for dental and vision benefits, life and disability coverage, flexible spending accounts, supplemental health protection plans (accident, critical illness, hospital indemnity), auto and home insurance, identity theft protection, legal counseling, long-term care coverage, moving assistance, pet insurance and more.
• Free counseling services and resources for emotional, physical and financial wellbeing
• 401(k) Plan with a 100% match on 3% to 9% of pay (based on years of service)
• Employee Stock Purchase Plan with 10% off HCA Healthcare stock
• Family support through fertility and family building benefits with Progyny and adoption assistance.
• Referral services for child, elder and pet care, home and auto repair, event planning and more
• Consumer discounts through Abenity and Consumer Discounts
• Retirement readiness, rollover assistance services and preferred banking partnerships
• Education assistance (tuition, student loan, certification support, dependent scholarships)
• Colleague recognition program
• Time Away From Work Program (paid time off, paid family leave, long- and short-term disability coverage and leaves of absence)
• Employee Health Assistance Fund that offers free employee-only coverage to full-time and part-time colleagues based on income.

Learn more about Employee Benefits
_Note: Eligibility for benefits may vary by location._
Would you like to unlock your potential with a leading healthcare provider
dedicated to the growth and development of our colleagues? Join the HCA
Healthcare family! We will give you the tools and resources you need to
succeed in our organization. We are looking for an enthusiastic Network
Security Engineer II to help us reach our goals. Unlock your potential!

Job Summary and Qualifications

JOB SUMMARY
Support and contribute to the implementation, modernization, standardization
and enhancement of network security controls to protect a Fortune 100
enterprise’s infrastructure, patients and data from increasing risk and
threats. The position will perform reviews and assess policies for risk and
vulnerabilities with assistance from assessments or internal security audits
and identify potential hardening opportunities, provide remediation
recommendations and solutions and assist in the implementation or
configuration changes to support continuous security control maturity and risk
reduction.
This position will work collaboratively with other IT teams to implement risk
management practices, optimize technology solutions, monitor and adjust
infrastructure to meet current and future needs, ensure compliance with
regulatory requirements, and continuously plan for the future to improve our
security posture and control maturity. The ideal candidate will be experienced
in network security fundamentals and have a strong understanding of how to
develop and implement remediation plans to address identified risks, implement
new features and technologies, standardize and optimize existing technologies,
establish and maintain baselines, and automate processes wherever possible to
increase efficiency and reduce errors.
GENERAL RESPONSIBILITIES
Responsibilities include but are not limited to the following;
• Assist in the evaluation, recommendation, and implementation of appropriate
security measures, including next-generation firewall features, intrusion
detection/prevention systems, VPN, network segmentation/zero trust,
multifactor and access control mechanisms.
• Conduct firewall rule reviews, security audits, baseline and best practice
compliance, forensic network investigation to support data transmission
adherence and implement or oversee recommendations
• Support and contribute to network security solutions under the guidance of
senior engineers to protect the organization’s infrastructure, applications,
and data from cyber threats in accordance with regulatory and industry
requirements, such as PCI DSS, SOX, NIST, ISO 27000, and HIPAA.
• Evaluate vulnerability assessments, penetration tests, metrics and security
audits to identify potential hardening opportunities and provide remediation
recommendations and solutions.
• Assisting with the implementation of solutions and configuration changes
within a large enterprise network under the guidance of senior engineers in
support of continuous security control maturity and risk reduction.
• Participate in incident response and disaster recovery planning and testing
• Collaborate with other IT teams to ensure that network security controls are
integrated with other systems and applications and are up to security
standards
• Conduct routine network security audits and control tests on deployed
technologies, collecting and consolidating indicators of performance, risks,
trends and providing recommendations, baseline and regulatory compliance
ratings.
• Participate in relationships with vendors and contractors to ensure that
security services are timely delivered and implemented in alignment to
security policies
• Collaborate with senior engineers on the development and documentation of
security policies and procedures, training and awareness.
• Assist department leads with training peers on compliance and best
practices.
• Assist with research and design enhancements of automated solutions or best
of breed technologies while assisting with integration tests with vendors.
• Keep up-to-date with the latest threats and vulnerabilities, as well as
relevant regulations and industry best practices, and implement
recommendations to improve the organization’s security posture and control
maturity.
EDUCATION
Bachelor’s degree preferred
EXPERIENCE
3+ years of relevant work experience required
OTHER/SPECIAL QUALIFICATIONS
Relevant experience with security technologies, such as next-generation
firewalls, intrusion detection/prevention systems, VPN, network segmentation,
access control mechanisms, and security design, management, best practices,
policy, standards in large 1000+ firewall environments.
Experience in Checkpoint Firewall, CMA, Provider-1, Maestro, VSX/VSLS, Cloud
Guard
Administration of one or many of the following Cisco Network Security Products
& Technologies (i.e. Firepower, ASA, VPN, WSA, ISE, Stealthwatch, etc.)
Strong understanding of network protocols, topologies, tools, subnetting and
architectures
Aptitude in Network Security Policy Management tools (Algosec, Tufin) and/or
conducting risk assessments, firewall rule review, and security audits
Strong knowledge of enterprise security technologies and processes (Zscaler,
A10, F5, WAF, Advanced Threat Detection Tools, Antibot, Antimalware, Threat
Emulation, SIEM, IDS/IPS, Network Packet Analysis, Netflow, etc.)
Experience administrating solutions for security standards and frameworks,
such as HIPAA, SOX, PCI DSS, HITECH, ISO/IEC 27001, and NIST Cybersecurity
Framework
Knowledge of Network Security Management Tools/Technologies (e.g.: Splunk,
TrustSec, segmentation, syslog, etc.)
Excellent verbal and written communication, interpersonal, analytical and
problem-solving skills.
Ability to work independently and as part of a team
Relevant certification from ISC2 (CISSP), GIAC (GISP), ISACA (CISA), Cisco
Security or CompTIA are a plus
PHYSICAL DEMANDS/WORKING CONDITIONS
• Position expectations are nominal supervision required due to design,
service and support knowledge/skillsets
• Position may require periodic after hours work and light travel at times
with little notice
Position requires sitting for extended periods
HCA Healthcare has been recognized as one of the World’s Most Ethical
Companies® by the Ethisphere Institute more than ten times. In recent years,
HCA Healthcare spent an estimated $3.7 billion in cost for the delivery of
charitable care, uninsured discounts, and other uncompensated expenses.
> “There is so much good to do in the world and so many different ways to do
> it.”- Dr. Thomas Frist, Sr.
> HCA Healthcare Co-Founder
Be a part of an organization that invests in you! We are reviewing
applications for our Network Security Engineer II opening. Qualified
candidates will be contacted for interviews. Submit your application and help
us raise the bar in patient care!
We are an equal opportunity employer and value diversity at our company. We do
not discriminate on the basis of race, religion, color, national origin,
gender, sexual orientation, age, marital status, veteran status, or disability
status.
Apply