Security Threat Engineer I jobs in United States
cer-icon
Apply on Employer Site
company-logo

HCA Healthcare · 1 day ago

Security Threat Engineer I

positionNashville, TN
timeFull-time
remoteOnsite
seniorityEntry Level
date1+ years exp

HCA Healthcare is part of the nation's leading provider of healthcare services, and they are seeking a Security Threat Engineer I to join their Cyber Defense Center. This role is critical in detecting and responding to cyber security threats, providing tier 1 and tier 2 analysis and support during incidents.

BiotechnologyHealth CareHospitalMedicalPrimary and Urgent Care
check
H1B Sponsor Likelynote

Responsibilities

Monitor security alert queue – investigate and triage events based on criticality. Provide recommendations on how to mitigate the threats. Use analytic techniques and critical thinking to determine if and when to escalate threats to larger Cyber Security team
Provide guidance to field resources on how to properly remediate a threat
Work closely with other CDC team members to improve tools, techniques, and procedures for CDC operation
Continuously improve documentation of work products and processes
Participate in red/blue team exercises
Execute HCA’s Incident Response plan as part of an incident response team. Serve as Incident Commander, Task Lead, or Scribe during incidents
Routinely collaborate with individuals and teams from across the enterprise

Qualification

Cyber Incident ResponseIncident Response PlanWindows Artifact AnalysisMemory AnalysisNetwork Forensic AnalysisDigital Forensics Incident ResponseSecurity IncidentEvent ManagementThreat IntelligenceSIEMCertified Ethical HackerCompTIA Security+TeamworkCommunication Skills

Required

Bachelor's degree preferred
1+ years of relevant experience
Monitor security alert queue – investigate and triage events based on criticality. Provide recommendations on how to mitigate the threats. Use analytic techniques and critical thinking to determine if and when to escalate threats to larger Cyber Security team
Provide guidance to field resources on how to properly remediate a threat
Work closely with other CDC team members to improve tools, techniques, and procedures for CDC operation
Continuously improve documentation of work products and processes
Participate in red/blue team exercises
Execute HCA's Incident Response plan as part of an incident response team. Serve as Incident Commander, Task Lead, or Scribe during incidents
Routinely collaborate with individuals and teams from across the enterprise
Experience as a member of a Cyber Incident Response Team (CIRT) or comparable team
Experience executing an Incident Response plan, preferably based on recognized industry standards (e.g. – NIST, SANS, etc)
Experience in Windows Artifact Analysis and Initial Forensic Analysis (e.g. – Program Execution, File/Folder opening, Account Usage, pulling memory, following proper evidence handling procedures, etc) using industry standard tools and available logs (e.g. – Endpoint Detection and Response (EDR) tools)
Experience in Memory Analysis using tools such as Volatility
Experience in network forensic analysis to determine validity of detected events using available network logs collected via SEIM
Experience in DFIR (Digital Forensics Incident Response)
Experience with an event/information analysis framework such as Analysis of Competing Hypotheses (ACH)
Experience in performing security analysis or reporting utilizing Security Incident and Event Management (SIEM) Technologies. Preferably Splunk and SPL experience
Experience with document management and sustaining Security Operations Center (SOC) policies and run book procedures for incident response
Experience with documenting root cause analysis and lessons learned
Experience consuming and generating cybersecurity threat intelligence
Experience across the technology stack. Familiarity with all OSI layers and expertise in some
Experiencing using the following types of security tools: SIEM, Firewalls, Web Proxy, Anti-Virus (AV), Next Gen Anti-Virus (NGAV), Endpoint Detection and Response (EDR), Sandboxing, Virtual Machines, Netflow analysis, Malware Repositories, Threat Intelligence, Deception Stack, Intrusion Detection/Prevention System (IDS/IPS), Security Orchestration Automation Response (SOAR), Phishing Triage, User Behavior Analytics (UBA), Email Hygiene and Filtering
Experience interfacing with peer support teams (Security Engineering, Vulnerability and Patching Teams, Networking, Access Management, Legal, Risk/Governance, etc.)
Experience working in a high-tempo, dynamic environment with a high-performance team
Experience with work ticketing systems (e.g. – ServiceNow, JIRA)
Experience with Threat Modeling and Kill Chain analysis

Preferred

The following certifications and courses are helpful, but, not required: Certified Ethical Hacker (CEH), GIAC: GSEC, GCIH, GCIA, GCED, GMON, GCDA, GDAT, GCFE or comparable, CompTIA Security+

Benefits

Comprehensive medical coverage that covers many common services at no cost or for a low copay. Plans include prescription drug and behavioral health coverage as well as free telemedicine services and free AirMed medical transportation.
Additional options for dental and vision benefits, life and disability coverage, flexible spending accounts, supplemental health protection plans (accident, critical illness, hospital indemnity), auto and home insurance, identity theft protection, legal counseling, long-term care coverage, moving assistance, pet insurance and more.
Free counseling services and resources for emotional, physical and financial wellbeing
401(k) Plan with a 100% match on 3% to 9% of pay (based on years of service)
Employee Stock Purchase Plan with 10% off HCA Healthcare stock
Family support through fertility and family building benefits with Progyny and adoption assistance.
Referral services for child, elder and pet care, home and auto repair, event planning and more
Consumer discounts through Abenity and Consumer Discounts
Retirement readiness, rollover assistance services and preferred banking partnerships
Education assistance (tuition, student loan, certification support, dependent scholarships)
Colleague recognition program
Time Away From Work Program (paid time off, paid family leave, long- and short-term disability coverage and leaves of absence)
Employee Health Assistance Fund that offers free employee-only coverage to full-time and part-time colleagues based on income.

Company

HCA Healthcare

twittertwittertwitter
Glassdoor3.3
company-logo
HCA Healthcare provides medical education and healthcare services in locally managed facilities. It is a sub-organization of North Florida Endoscopy Center.
dateFounded in 1968
location
Nashville, Tennessee, USA
people-size10001+ employees
web-link
https://hcahealthcare.com/

H1B Sponsorship

HCA Healthcare has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (2)
2022 (2)
2020 (1)

Funding

Current Stage
Public Company
Total Funding
$8.51B
2025-10-31Post Ipo Debt· $3.25B
2025-02-24Post Ipo Debt· $5.25B
2014-06-25Post Ipo Debt· $3.2M

Leadership Team

leader-logo
Nicholas Manning
Chief Executive Officer
linkedin
leader-logo
Nick Lane
Regional Vice President Human Resources
linkedin

Recent News

Business Wire
HCA Healthcare, Inc. 4th Quarter 2025 Earnings Conference Call
2025-12-31
The Motley Fool
These 2 Healthcare Stocks Beat the Market in 2025. Should You Buy Them in 2026?
2025-12-26
EIN Presswire
Orlando Rehabilitation Hospital Announces Residency Affiliation
2025-12-24
Company data provided by crunchbase