Network Security Engineer II

Support and contribute to the implementation, modernization, standardization and enhancement of network security controls to protect a Fortune 100 enterprise's infrastructure, patients and data from increasing risk and threats. The position will perform reviews and assess policies for risk and vulnerabilities with assistance from assessments or internal security audits and identify potential hardening opportunities, provide remediation recommendations and solutions and assist in the implementation or configuration changes to support continuous security control maturity and risk reduction.

This position will work collaboratively with other IT teams to implement risk management practices, optimize technology solutions, monitor and adjust infrastructure to meet current and future needs, ensure compliance with regulatory requirements, and continuously plan for the future to improve our security posture and control maturity. The ideal candidate will be experienced in network security fundamentals and have a strong understanding of how to develop and implement remediation plans to address identified risks, implement new features and technologies, standardize and optimize existing technologies, establish and maintain baselines, and automate processes wherever possible to increase efficiency and reduce errors., * Assist in the evaluation, recommendation, and implementation of appropriate security measures, including next-generation firewall features, intrusion detection/prevention systems, VPN, network segmentation/zero trust, multifactor and access control mechanisms.

• Conduct firewall rule reviews, security audits, baseline and best practice compliance, forensic network investigation to support data transmission adherence and implement or oversee recommendations

• Support and contribute to network security solutions under the guidance of senior engineers to protect the organization's infrastructure, applications, and data from cyber threats in accordance with regulatory and industry requirements, such as PCI DSS, SOX, NIST, ISO 27000, and HIPAA.

• Evaluate vulnerability assessments, penetration tests, metrics and security audits to identify potential hardening opportunities and provide remediation recommendations and solutions.

• Assisting with the implementation of solutions and configuration changes within a large enterprise network under the guidance of senior engineers in support of continuous security control maturity and risk reduction.

• Participate in incident response and disaster recovery planning and testing

• Collaborate with other IT teams to ensure that network security controls are integrated with other systems and applications and are up to security standards

• Conduct routine network security audits and control tests on deployed technologies, collecting and consolidating indicators of performance, risks, trends and providing recommendations, baseline and regulatory compliance ratings.

• Participate in relationships with vendors and contractors to ensure that security services are timely delivered and implemented in alignment to security policies

• Collaborate with senior engineers on the development and documentation of security policies and procedures, training and awareness.

• Assist department leads with training peers on compliance and best practices.

• Assist with research and design enhancements of automated solutions or best of breed technologies while assisting with integration tests with vendors.

• Keep up to date with the latest threats and vulnerabilities, as well as relevant regulations and industry best practices, and implement recommendations to improve the organization's security posture and maturity control.

Do you have experience in ISO 27000?, Qualified candidates must have 3+ years of relevant work experience, Bachelor's degree preferred

OTHER/SPECIAL QUALIFICATIONS

Relevant experience with security technologies, such as next-generation firewalls, intrusion detection/prevention systems, VPN, network segmentation, access control mechanisms, and security design, management, best practices, policy, standards in large 1000+ firewall environments.

Experience in Checkpoint Firewall, CMA, Provider-1, Maestro, VSX/VSLS, Cloud Guard

Administration of one or many of the following Cisco Network Security Products & Technologies (i.e. Firepower, ASA, VPN, WSA, ISE, Stealthwatch, etc.)

Strong understanding of network protocols, topologies, tools, subnetting and architectures

Aptitude in Network Security Policy Management tools (Algosec, Tufin) and/or conducting risk assessments, firewall rule review, and security audits

Strong knowledge of enterprise security technologies and processes (Zscaler, A10, F5, WAF, Advanced Threat Detection Tools, Antibot, Antimalware, Threat Emulation, SIEM, IDS/IPS, Network Packet Analysis, Netflow, etc.)

Experience administrating solutions for security standards and frameworks, such as HIPAA, SOX, PCI DSS, HITECH, ISO/IEC 27001, and NIST Cybersecurity Framework

Knowledge of Network Security Management Tools/Technologies (e.g: Splunk, TrustSec, segmentation, syslog, etc..)

Excellent verbal and written communication, interpersonal, analytical and problem-solving skills.

Ability to work independently and as part of a team

Relevant certifications from ISC2 (CISSP), GIAC (GISP), ISACA (CISA), Cisco Security or CompTIA are a plus

Pulled from the full job description

• Loan assistance
• Tuition reimbursement
• Employee stock purchase plan
• Health insurance
• 401(k) matching
• Paid time off
• Vision insurance, * Position expectations are nominal supervision required due to design, service and support knowledge/skillsets, HCA Healthcare, offers a total rewards package that supports the health, life, career and retirement of our colleagues. The available plans and programs include:
• Comprehensive benefits for medical, prescription drug, dental, vision, behavioral health and telemedicine services
• Wellbeing support, including free counseling and referral services
• Time away from work programs for paid time off, paid family leave, long- and short-term disability coverage and leaves of absence
• Savings and retirement resources, including a 401(k) Plan with a 100% match on 3% to 9% of pay (based on years of service), Employee Stock Purchase Plan, flexible spending accounts, preferred banking partnerships, retirement readiness tools, rollover support and financial wellbeing counseling
• Education support through tuition assistance, student loan assistance, certification support, dependent scholarships and a partnership with Galen College of Nursing
• Additional benefits for fertility and family building, adoption assistance, life insurance, supplemental health protection plans, auto and home insurance, legal counseling, identity theft protection and consumer discounts

Learn more about Employee Benefits

HCA Healthcare has been recognized as one of the World's Most Ethical Companies® by the Ethisphere Institute more than ten times. In recent years, HCA Healthcare spent an estimated $3.7 billion in cost for the delivery of charitable care, uninsured discounts, and other uncompensated expenses. "There is so much good to do in the world and so many different ways to do it."- Dr. Thomas Frist, Sr.