HCA Healthcare
Introduction
Are you passionate about the patient experience? At HCA Healthcare, we are committed to caring for patients with purpose and integrity. We care like family! Jump-start your career as a Security Threat Engineer II today with HCA Healthcare.
Benefits
HCA Healthcare offers a total rewards package that supports the health, life, career and retirement of our colleagues. The available plans and programs include:
Comprehensive medical coverage that covers many common services at no cost or for a low copay. Plans include prescription drug and behavioral health coverage as well as free telemedicine services and free AirMed medical transportation.
Additional options for dental and vision benefits, life and disability coverage, flexible spending accounts, supplemental health protection plans (accident, critical illness, hospital indemnity), auto and home insurance, identity theft protection, legal counseling, long-term care coverage, moving assistance, pet insurance and more.
Free counseling services and resources for emotional, physical and financial wellbeing
401(k) Plan with a 100% match on 3% to 9% of pay (based on years of service)
Employee Stock Purchase Plan with 10% off HCA Healthcare stock
Family support through fertility and family building benefits with Progyny and adoption assistance.
Referral services for child, elder and pet care, home and auto repair, event planning and more
Consumer discounts through Abenity and Consumer Discounts
Retirement readiness, rollover assistance services and preferred banking partnerships
Education assistance (tuition, student loan, certification support, dependent scholarships)
Colleague recognition program
Time Away From Work Program (paid time off, paid family leave, long- and short-term disability coverage and leaves of absence)
Employee Health Assistance Fund that offers free employee-only coverage to full-time and part-time colleagues based on income.
Note: Eligibility for benefits may vary by location.
Come join our team as a Security Threat Engineer II. We care for our community! Just last year, HCA Healthcare and our colleagues donated $13.8 million dollars to charitable organizations. Apply Today!
Job Summary And Qualifications
The Threat Response Engineer II – serves as the last line of defense between HCA and the threat actors that wish to bring harm to HCA Healthcare and the patients we serve – is a critical member of the 24/7 CDC team. They use state of the art technologies to detect threats on our network and eradicate them as a member of our Cyber Defense Center (CDC). As a member of the CDC, they operate along with a small team of like-minded individuals with a passion for cyber security.
This role provides Tier 2+ analysis and response to cyber security threats. Threat Response Engineer IIs are expected to React to escalated incidents from junior analysts to provide specific expertise on specifically difficult incidents requiring elevated knowledge in Cyber Defense. Successful analysts must be naturally curious and self-motivated to investigate and discover root causes of events while working in a fast-paced and sometimes stressful environment. Good teamwork, communication and leadership skills are vital.
Major Responsibilities
React to escalated incidents from junior analysts to provide specific expertise on difficult incidents. Investigate and triage these escalated events based on criticality. Provide recommendations on how to mitigate the threats. Use analytic techniques and critical thinking to solve complex and new cyber incidents.
Provide Tier 2+ Incident Response to cyber events, and self-driven investigative efforts against incidents.
Provide guidance to field resources on how to properly remediate a threat.
Provide training to other CDC team members to improve tools, techniques, and procedures for CDC operation.
Continuously improve documentation of work products and processes.
Participate in red/blue team exercises.
Execute HCA Healthcare’s Incident Response plan as part of an incident response team. Serve as Incident Commander, Task Lead, or Scribe during incidents.
Routinely collaborate with individuals and teams from across the enterprise.
Desired Experience
Experience as a member of a Cyber Incident Response Team (CIRT) or comparable team.
Experience executing an Incident Response plan, preferably based on recognized industry standards (e.g. NIST, SANS).
Experience in Windows Artifact Analysis and Initial Forensic Analysis using industry standard tools and available logs (EDR, etc.).
Experience in Memory Analysis using tools such as Volatility.
Experience in network forensic analysis using SEIM logs.
Experience in DFIR (Digital Forensics Incident Response).
Experience with an event/information analysis framework such as ACH.
Experience in Security Incident and Event Management (SIEM) technologies. SPLUNK and SPL experience preferred.
Experience with SOC policies and run book procedures for incident response.
Experience documenting root cause analysis and lessons learned.
Experience consuming and generating cybersecurity threat intelligence.
Experience across the technology stack; familiarity with OSI layers and expertise in some.
Experience with security tools: SIEM, Firewalls, Web Proxy, AV/NGAV, EDR, Sandboxing, VMs, Netflow, Malware Repositories, Threat Intelligence, Deception Stack, IDS/IPS, SOAR, Phishing Triage, UBA, Email Hygiene and Filtering.
Experience interfacing with peer security and IT teams; ability to work in a high-tempo environment; experience with ticketing systems (ServiceNow, JIRA).
Experience with Threat Modeling and Kill Chain analysis.
Education
Bachelor’s Degree - Required
Relevant Work Experience
3 or more years
Other/Special Qualifications
Experience as CDC lead/senior analyst role for 1 or more years.
Able to maintain a superior knowledge of cybersecurity capabilities of operating systems, networking devices, and vendor offerings.
Excellent critical thinking and communication skills; ability to work under pressure and maintain confidentiality.
Strong desire to determine root causes and to fully investigate alternatives.
Ability to self-prioritize tasks based on criticality and threat level.
Advanced written and oral communication skills.
Certifications and courses (helpful but not required): CEH; GIAC (GSEC, GCIH, GCIA, GCED, GMON, GCDA, GDAT, GCFE or comparable); CompTIA Security+.
HCA Healthcare has been recognized as one of the World's Most Ethical Companies® by the Ethisphere Institute and has a history of charitable work. If you are looking for an opportunity that provides satisfaction and personal growth, apply for our Security Threat Engineer II opening. We promptly review all applications; highly qualified candidates will be contacted for interviews. Unlock the possibilities and apply today!
We are an equal opportunity employer. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
Seniority level Mid-Senior level
Employment type Full-time
Job function Information Technology and Health Care Provider
Industries Hospitals and Health Care
#J-18808-Ljbffr
Are you passionate about the patient experience? At HCA Healthcare, we are committed to caring for patients with purpose and integrity. We care like family! Jump-start your career as a Security Threat Engineer II today with HCA Healthcare.
Benefits
HCA Healthcare offers a total rewards package that supports the health, life, career and retirement of our colleagues. The available plans and programs include:
Comprehensive medical coverage that covers many common services at no cost or for a low copay. Plans include prescription drug and behavioral health coverage as well as free telemedicine services and free AirMed medical transportation.
Additional options for dental and vision benefits, life and disability coverage, flexible spending accounts, supplemental health protection plans (accident, critical illness, hospital indemnity), auto and home insurance, identity theft protection, legal counseling, long-term care coverage, moving assistance, pet insurance and more.
Free counseling services and resources for emotional, physical and financial wellbeing
401(k) Plan with a 100% match on 3% to 9% of pay (based on years of service)
Employee Stock Purchase Plan with 10% off HCA Healthcare stock
Family support through fertility and family building benefits with Progyny and adoption assistance.
Referral services for child, elder and pet care, home and auto repair, event planning and more
Consumer discounts through Abenity and Consumer Discounts
Retirement readiness, rollover assistance services and preferred banking partnerships
Education assistance (tuition, student loan, certification support, dependent scholarships)
Colleague recognition program
Time Away From Work Program (paid time off, paid family leave, long- and short-term disability coverage and leaves of absence)
Employee Health Assistance Fund that offers free employee-only coverage to full-time and part-time colleagues based on income.
Note: Eligibility for benefits may vary by location.
Come join our team as a Security Threat Engineer II. We care for our community! Just last year, HCA Healthcare and our colleagues donated $13.8 million dollars to charitable organizations. Apply Today!
Job Summary And Qualifications
The Threat Response Engineer II – serves as the last line of defense between HCA and the threat actors that wish to bring harm to HCA Healthcare and the patients we serve – is a critical member of the 24/7 CDC team. They use state of the art technologies to detect threats on our network and eradicate them as a member of our Cyber Defense Center (CDC). As a member of the CDC, they operate along with a small team of like-minded individuals with a passion for cyber security.
This role provides Tier 2+ analysis and response to cyber security threats. Threat Response Engineer IIs are expected to React to escalated incidents from junior analysts to provide specific expertise on specifically difficult incidents requiring elevated knowledge in Cyber Defense. Successful analysts must be naturally curious and self-motivated to investigate and discover root causes of events while working in a fast-paced and sometimes stressful environment. Good teamwork, communication and leadership skills are vital.
Major Responsibilities
React to escalated incidents from junior analysts to provide specific expertise on difficult incidents. Investigate and triage these escalated events based on criticality. Provide recommendations on how to mitigate the threats. Use analytic techniques and critical thinking to solve complex and new cyber incidents.
Provide Tier 2+ Incident Response to cyber events, and self-driven investigative efforts against incidents.
Provide guidance to field resources on how to properly remediate a threat.
Provide training to other CDC team members to improve tools, techniques, and procedures for CDC operation.
Continuously improve documentation of work products and processes.
Participate in red/blue team exercises.
Execute HCA Healthcare’s Incident Response plan as part of an incident response team. Serve as Incident Commander, Task Lead, or Scribe during incidents.
Routinely collaborate with individuals and teams from across the enterprise.
Desired Experience
Experience as a member of a Cyber Incident Response Team (CIRT) or comparable team.
Experience executing an Incident Response plan, preferably based on recognized industry standards (e.g. NIST, SANS).
Experience in Windows Artifact Analysis and Initial Forensic Analysis using industry standard tools and available logs (EDR, etc.).
Experience in Memory Analysis using tools such as Volatility.
Experience in network forensic analysis using SEIM logs.
Experience in DFIR (Digital Forensics Incident Response).
Experience with an event/information analysis framework such as ACH.
Experience in Security Incident and Event Management (SIEM) technologies. SPLUNK and SPL experience preferred.
Experience with SOC policies and run book procedures for incident response.
Experience documenting root cause analysis and lessons learned.
Experience consuming and generating cybersecurity threat intelligence.
Experience across the technology stack; familiarity with OSI layers and expertise in some.
Experience with security tools: SIEM, Firewalls, Web Proxy, AV/NGAV, EDR, Sandboxing, VMs, Netflow, Malware Repositories, Threat Intelligence, Deception Stack, IDS/IPS, SOAR, Phishing Triage, UBA, Email Hygiene and Filtering.
Experience interfacing with peer security and IT teams; ability to work in a high-tempo environment; experience with ticketing systems (ServiceNow, JIRA).
Experience with Threat Modeling and Kill Chain analysis.
Education
Bachelor’s Degree - Required
Relevant Work Experience
3 or more years
Other/Special Qualifications
Experience as CDC lead/senior analyst role for 1 or more years.
Able to maintain a superior knowledge of cybersecurity capabilities of operating systems, networking devices, and vendor offerings.
Excellent critical thinking and communication skills; ability to work under pressure and maintain confidentiality.
Strong desire to determine root causes and to fully investigate alternatives.
Ability to self-prioritize tasks based on criticality and threat level.
Advanced written and oral communication skills.
Certifications and courses (helpful but not required): CEH; GIAC (GSEC, GCIH, GCIA, GCED, GMON, GCDA, GDAT, GCFE or comparable); CompTIA Security+.
HCA Healthcare has been recognized as one of the World's Most Ethical Companies® by the Ethisphere Institute and has a history of charitable work. If you are looking for an opportunity that provides satisfaction and personal growth, apply for our Security Threat Engineer II opening. We promptly review all applications; highly qualified candidates will be contacted for interviews. Unlock the possibilities and apply today!
We are an equal opportunity employer. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
Seniority level Mid-Senior level
Employment type Full-time
Job function Information Technology and Health Care Provider
Industries Hospitals and Health Care
#J-18808-Ljbffr