Consulting Dev Security Ops Engineer

at  HCA Healthcare

INTRODUCTION

Do you want to join an organization that invests in you as a Consulting Dev Security Ops Engineer? At HCA Healthcare, you come first. HCA Healthcare has committed up to $300 million in programs to support our incredible team members over the course of three years.

NOTE: ELIGIBILITY FOR BENEFITS MAY VARY BY LOCATION.

You contribute to our success. Every role has an impact on our patients’ lives and you have the opportunity to make a difference. We are looking for a dedicated Consulting Dev Security Ops Engineer like you to be a part of our team.

JOB SUMMARY AND QUALIFICATIONS

Position Summary
Consulting DevSecOps Engineer will provide expertise in establishing and implementing HCA Healthcare’s DevSecOps initiative. The engineer will be responsible for building standardized CI/CD pipeline for various languages used within the enterprise ensuring security standards are implemented. Engineer will be responsible enabling Security tooling as part of CI/CD pipeline. Key responsibilities of the role include directing a team in defining, building, automating, and implementing software security engineering best practices, governance, controls and helping teams in remediation. Day to day responsibilities include building standard DevOps pipelines keeping security top of the mind, customer relationship management, problem and incident management and guiding the DevSecOps team in delivering high quality software security consulting for stakeholders and product teams. This role will include the coaching/mentoring responsibilities for software development teams across the enterprise.
Consulting DevSecOps Engineer will work with the Software Security Initiative and Internal Audit to design security best practices, governance documentation and automated CI/CD security templates. Consulting DevSecOps Engineer will work within the Enterprise DevOps team to provide a robust CI/CD pipeline, allowing code to be tested and validated for quality and security utilizing industry standards for automated deployment. Consulting DevSecOps Engineer will work with internal partners to define product security/vulnerability standards as well as create team assessments of security maturity for product development teams.

Major Responsibilities:

• Ability to write automation scripts with Python, PowerShell, or C#.
• Design, build and implement secure automation solutions for production environments
• Create and Publish CICD best practices, patterns, and solutions.
• Build and maintain CICD building blocks and shared libraries to enable quicker build and deployment for app teams.
• Experience with cloud platforms such as Azure, AWS, and GCP.
• Design, develop and implement solutions to address infrastructure and security requirements.
• Design, implement automation and system integration with developer tools.
• Familiarity and experience with databases such as SQL Server, PostgresDB, DB2, BigQuery etc.
• Experience with deployment, support, and troubleshooting of n-tier applications.
• Lead team in implementing security best practices and configuration management
• Ability to provide technical documentation necessary for operational handoff.
• Remain current in DevSecOps industry trends and best practices
• Experience with key/value and secret stores such as Vault, or Azure Key Vault.
• Experience with virtual technology, such as, VMWare ESX, Hyper-V, hyperconverged platforms, and private cloud technologies is highly desirable.
• Perform other duties as assigned.
• Practice and adhere to the “Code of Conduct” philosophy and “Mission and Value Statement.”

EDUCATION

Bachelor’s degree required
Master’s degree preferred

EXPERIENCE REQUIRED

Knowledge, Skills, Abilities, Behaviors:

• Must have 7+ years’ experience in deploying technically complex infrastructure solutions across various platforms in development, QA, and production environments.
• Proven experience in leading DevOps teams and mentoring junior engineers
• Experience in designing and building CICD pipelines using GitHub/ADO
• Strong background with deploying workloads to one of the Cloud Azure or GCP.
• Demonstrated ability in working with Cross functional team
• Excellent communication, leadership skills.

HCA Healthcare has been recognized as one of the World’s Most Ethical Companies® by the Ethisphere Institute more than ten times. In recent years, HCA Healthcare spent an estimated $3.7 billion in cost for the delivery of charitable care, uninsured discounts, and other uncompensated expenses.
“Good people beget good people."- Dr. Thomas Frist, Sr.
HCA Healthcare Co-Founder
We are a family 270,000 dedicated professionals! Our Talent Acquisition team is reviewing applications for our Consulting Dev Security Ops Engineer opening. Qualified candidates will be contacted for interviews. Submit your resume today to join our community of caring!
We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status

• Ability to write automation scripts with Python, PowerShell, or C#.
• Design, build and implement secure automation solutions for production environments
• Create and Publish CICD best practices, patterns, and solutions.
• Build and maintain CICD building blocks and shared libraries to enable quicker build and deployment for app teams.
• Experience with cloud platforms such as Azure, AWS, and GCP.
• Design, develop and implement solutions to address infrastructure and security requirements.
• Design, implement automation and system integration with developer tools.
• Familiarity and experience with databases such as SQL Server, PostgresDB, DB2, BigQuery etc.
• Experience with deployment, support, and troubleshooting of n-tier applications.
• Lead team in implementing security best practices and configuration management
• Ability to provide technical documentation necessary for operational handoff.
• Remain current in DevSecOps industry trends and best practices
• Experience with key/value and secret stores such as Vault, or Azure Key Vault.
• Experience with virtual technology, such as, VMWare ESX, Hyper-V, hyperconverged platforms, and private cloud technologies is highly desirable.
• Perform other duties as assigned.
• Practice and adhere to the “Code of Conduct” philosophy and “Mission and Value Statement.