HCA Healthcare
Senior Network Security Engineer
HCA Healthcare, Nashville, Tennessee, United States,
HCA Healthcare Senior Network Security Engineer Nashville, Tennessee Apply Now
Do you want to join an organization that invests in you as a Senior Network Security Engineer? At HCA Healthcare, you come first. HCA Healthcare has committed up to $300 million in programs to support our incredible team members over the course of three years.HCA Healthcare offers a total rewards package that supports the health, life, career and retirement of our colleagues. The available plans and programs include:Comprehensive medical coverage that covers many common services at no cost or for a low copay.Additional options for dental and vision benefits, life and disability coverage, flexible spending accounts, supplemental health protection plans, auto and home insurance, identity theft protection, legal counseling, long-term care coverage, moving assistance, pet insurance and more.Free counseling services and resources for emotional, physical and financial wellbeing.401(k) Plan with a 100% match on 3% to 9% of pay (based on years of service).Employee Stock Purchase Plan with 10% off HCA Healthcare stock.Family support through fertility and family building benefits and adoption assistance.Referral services for child, elder and pet care, home and auto repair, event planning and more.Consumer discounts through Abenity and Consumer Discounts.Retirement readiness, rollover assistance services and preferred banking partnerships.Education assistance (tuition, student loan, certification support, dependent scholarships).Colleague recognition program.Time Away From Work Program (paid time off, paid family leave, long- and short-term disability coverage and leaves of absence).Employee Health Assistance Fund that offers free employee-only coverage to full-time and part-time colleagues based on income.Note: Eligibility for benefits may vary by location.You contribute to our success. Every role has an impact on our patients’ lives and you have the opportunity to make a difference. We are looking for a dedicated Senior Network Security Engineer like you to be a part of our team.Job Summary and QualificationsLead efforts in implementation, modernization, standardization and enhancement of network security controls to protect a Fortune 100 enterprise’s infrastructure, patients and data from increasing risk and threats. The position will perform and oversee reviews and assessments of policies for risk and vulnerabilities and identify potential hardening opportunities, provide remediation recommendations, designs and solutions while implementing configuration changes for continuous security control maturity and risk reduction.This position will work collaboratively with other IT teams to implement risk management practices, optimize technology solutions, monitor and adjust infrastructure to meet current and future needs, ensure compliance with regulatory requirements, and continuously plan for the future to improve our security posture and control maturity. The ideal candidate will be experienced in network security fundamentals and have a strong understanding of how to develop and implement remediation plans to address identified risks, implement new features and technologies, standardize and optimize existing technologies, establish and maintain baselines, and automate processes wherever possible to increase efficiency and reduce errors.GENERAL RESPONSIBILITIESResponsibilities include but are not limited to the following:Evaluate, recommend and implement appropriate security measures, including next-generation firewall features, intrusion detection/prevention systems, VPN, network segmentation/zero trust, multifactor and access control mechanisms.Conduct firewall rule reviews, security audits, baseline and best practice compliance, forensic network investigation to support data transmission adherence and implement or oversee recommendations.Support and manage network security solutions to protect the organization's infrastructure, applications, and data from cyber threats in accordance with regulatory and industry requirements, such as PCI DSS, SOX, NIST, ISO 27000 and HIPAA.Evaluate vulnerability assessments, penetration tests, metrics and security audits to identify potential hardening opportunities and provide remediation recommendations and solutions.Recommend and implement complex solutions and configuration changes within a large enterprise network in support of continuous security control maturity and risk reduction.Participate in incident response and disaster recovery planning and testing.Collaborate with other IT teams to ensure that network security controls are integrated with other systems, applications and comply with security standards.Routinely perform audits and control tests on deployed technologies, collecting and consolidating indicators of performance, risks, trends and providing recommendations, baseline and regulatory compliance ratings.Manage relationships with vendors and contractors to ensure that security services are timely delivered and implemented in alignment to security policies.Collaborate on the development and documentation of security policies and procedures, training and awareness.Provide guidance and training to peers on compliance and best practices.Research design enhancements and identify automated solutions or best of breed technologies while assisting with integration tests with vendors.Keep up-to-date with the latest threats and vulnerabilities, as well as relevant regulations and industry best practices, and implement recommendations to improve the organization's security posture and control maturity.EDUCATION AND EXPERIENCEQualified candidates will have 7+ years of relevant work experience required.OTHER/SPECIAL QUALIFICATIONSExtensive experience with security technologies, such as next-generation firewalls, intrusion detection/prevention systems, VPN, network segmentation, access control mechanisms, and security design, management, best practices, policy, standards in large 1000+ firewall environments.Expertise in Checkpoint Firewall, CMA, Provider-1, Maestro, VSX/VSLS, CloudGuard.Cisco Network Security Products & Technologies (i.e. Firepower, ASA, VPN, WSA, ISE, Stealthwatch, etc.).Strong understanding of network protocols, topologies, tools, subnetting and architectures.Aptitude in Network Security Policy Management tools (Algosec, Tufin) and/or conducting risk assessments, firewall rule review, and security audits.Strong knowledge of enterprise security technologies and processes (Zscaler, A10, F5, WAF, Advanced Threat Detection Tools, Antibot, Antimalware, Threat Emulation, SIEM, IDS/IPS, Network Packet Analysis, Netflow, etc.).Experience designing solutions for security standards and frameworks, such as HIPAA, SOX, PCI DSS, HITECH, ISO/IEC 27001, and NIST Cybersecurity Framework.Network Security Management Tools/Technologies (e.g: Splunk, Trustsec, segmentation, syslog, etc.).Excellent verbal and written communication, interpersonal, analytical and problem-solving skills.Demonstrated leadership and mentorship skills, with the ability to guide and train junior engineers.Ability to work independently and as part of a team.Relevant certification from ISC2 (CISSP), GIAC (GISP), ISACA (CISA), Cisco Security or CompTIA are a plus.PHYSICAL DEMANDS/WORKING CONDITIONS• Position expectations are minimal supervision required due to design, service and support knowledge/skillsets.• Position may require periodic after hours work and light travel at times with little notice.• Position requires sitting for extended periods.HCA Healthcare has been recognized as one of the World's Most Ethical Companies by the Ethisphere Institute more than ten times. In recent years, HCA Healthcare spent an estimated $3.7 billion in cost for the delivery of charitable care, uninsured discounts, and other uncompensated expenses."Good people beget good people."- Dr. Thomas Frist, Sr.We are a family 270,000 dedicated professionals! Our Talent Acquisition team is reviewing applications for our Senior Network Security Engineer opening. Qualified candidates will be contacted for interviews.
Submit your resume today to join our community of caring!We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
#J-18808-Ljbffr
Do you want to join an organization that invests in you as a Senior Network Security Engineer? At HCA Healthcare, you come first. HCA Healthcare has committed up to $300 million in programs to support our incredible team members over the course of three years.HCA Healthcare offers a total rewards package that supports the health, life, career and retirement of our colleagues. The available plans and programs include:Comprehensive medical coverage that covers many common services at no cost or for a low copay.Additional options for dental and vision benefits, life and disability coverage, flexible spending accounts, supplemental health protection plans, auto and home insurance, identity theft protection, legal counseling, long-term care coverage, moving assistance, pet insurance and more.Free counseling services and resources for emotional, physical and financial wellbeing.401(k) Plan with a 100% match on 3% to 9% of pay (based on years of service).Employee Stock Purchase Plan with 10% off HCA Healthcare stock.Family support through fertility and family building benefits and adoption assistance.Referral services for child, elder and pet care, home and auto repair, event planning and more.Consumer discounts through Abenity and Consumer Discounts.Retirement readiness, rollover assistance services and preferred banking partnerships.Education assistance (tuition, student loan, certification support, dependent scholarships).Colleague recognition program.Time Away From Work Program (paid time off, paid family leave, long- and short-term disability coverage and leaves of absence).Employee Health Assistance Fund that offers free employee-only coverage to full-time and part-time colleagues based on income.Note: Eligibility for benefits may vary by location.You contribute to our success. Every role has an impact on our patients’ lives and you have the opportunity to make a difference. We are looking for a dedicated Senior Network Security Engineer like you to be a part of our team.Job Summary and QualificationsLead efforts in implementation, modernization, standardization and enhancement of network security controls to protect a Fortune 100 enterprise’s infrastructure, patients and data from increasing risk and threats. The position will perform and oversee reviews and assessments of policies for risk and vulnerabilities and identify potential hardening opportunities, provide remediation recommendations, designs and solutions while implementing configuration changes for continuous security control maturity and risk reduction.This position will work collaboratively with other IT teams to implement risk management practices, optimize technology solutions, monitor and adjust infrastructure to meet current and future needs, ensure compliance with regulatory requirements, and continuously plan for the future to improve our security posture and control maturity. The ideal candidate will be experienced in network security fundamentals and have a strong understanding of how to develop and implement remediation plans to address identified risks, implement new features and technologies, standardize and optimize existing technologies, establish and maintain baselines, and automate processes wherever possible to increase efficiency and reduce errors.GENERAL RESPONSIBILITIESResponsibilities include but are not limited to the following:Evaluate, recommend and implement appropriate security measures, including next-generation firewall features, intrusion detection/prevention systems, VPN, network segmentation/zero trust, multifactor and access control mechanisms.Conduct firewall rule reviews, security audits, baseline and best practice compliance, forensic network investigation to support data transmission adherence and implement or oversee recommendations.Support and manage network security solutions to protect the organization's infrastructure, applications, and data from cyber threats in accordance with regulatory and industry requirements, such as PCI DSS, SOX, NIST, ISO 27000 and HIPAA.Evaluate vulnerability assessments, penetration tests, metrics and security audits to identify potential hardening opportunities and provide remediation recommendations and solutions.Recommend and implement complex solutions and configuration changes within a large enterprise network in support of continuous security control maturity and risk reduction.Participate in incident response and disaster recovery planning and testing.Collaborate with other IT teams to ensure that network security controls are integrated with other systems, applications and comply with security standards.Routinely perform audits and control tests on deployed technologies, collecting and consolidating indicators of performance, risks, trends and providing recommendations, baseline and regulatory compliance ratings.Manage relationships with vendors and contractors to ensure that security services are timely delivered and implemented in alignment to security policies.Collaborate on the development and documentation of security policies and procedures, training and awareness.Provide guidance and training to peers on compliance and best practices.Research design enhancements and identify automated solutions or best of breed technologies while assisting with integration tests with vendors.Keep up-to-date with the latest threats and vulnerabilities, as well as relevant regulations and industry best practices, and implement recommendations to improve the organization's security posture and control maturity.EDUCATION AND EXPERIENCEQualified candidates will have 7+ years of relevant work experience required.OTHER/SPECIAL QUALIFICATIONSExtensive experience with security technologies, such as next-generation firewalls, intrusion detection/prevention systems, VPN, network segmentation, access control mechanisms, and security design, management, best practices, policy, standards in large 1000+ firewall environments.Expertise in Checkpoint Firewall, CMA, Provider-1, Maestro, VSX/VSLS, CloudGuard.Cisco Network Security Products & Technologies (i.e. Firepower, ASA, VPN, WSA, ISE, Stealthwatch, etc.).Strong understanding of network protocols, topologies, tools, subnetting and architectures.Aptitude in Network Security Policy Management tools (Algosec, Tufin) and/or conducting risk assessments, firewall rule review, and security audits.Strong knowledge of enterprise security technologies and processes (Zscaler, A10, F5, WAF, Advanced Threat Detection Tools, Antibot, Antimalware, Threat Emulation, SIEM, IDS/IPS, Network Packet Analysis, Netflow, etc.).Experience designing solutions for security standards and frameworks, such as HIPAA, SOX, PCI DSS, HITECH, ISO/IEC 27001, and NIST Cybersecurity Framework.Network Security Management Tools/Technologies (e.g: Splunk, Trustsec, segmentation, syslog, etc.).Excellent verbal and written communication, interpersonal, analytical and problem-solving skills.Demonstrated leadership and mentorship skills, with the ability to guide and train junior engineers.Ability to work independently and as part of a team.Relevant certification from ISC2 (CISSP), GIAC (GISP), ISACA (CISA), Cisco Security or CompTIA are a plus.PHYSICAL DEMANDS/WORKING CONDITIONS• Position expectations are minimal supervision required due to design, service and support knowledge/skillsets.• Position may require periodic after hours work and light travel at times with little notice.• Position requires sitting for extended periods.HCA Healthcare has been recognized as one of the World's Most Ethical Companies by the Ethisphere Institute more than ten times. In recent years, HCA Healthcare spent an estimated $3.7 billion in cost for the delivery of charitable care, uninsured discounts, and other uncompensated expenses."Good people beget good people."- Dr. Thomas Frist, Sr.We are a family 270,000 dedicated professionals! Our Talent Acquisition team is reviewing applications for our Senior Network Security Engineer opening. Qualified candidates will be contacted for interviews.
Submit your resume today to join our community of caring!We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
#J-18808-Ljbffr