Amazon Web Services (AWS), Analysis Skills, Artificial Intelligence (AI), Banking Services, Behavioral Health, CISM - Certified Information Security Manager, CISSP - Certified Information Systems Security Professional, Cataloguing, Classification Tools, Cloud Computing, Communication Skills, Computer Security, Continuous Deployment/Delivery, Continuous Integration, Cross-Functional, Cryptography, Data Modeling, Enterprise Architecture, Enterprise Protection, Flexible Spending Accounts, HIPAA (Health Insurance Portability and Accountability Act), Healthcare, Information Technology & Information Systems, Information/Data Security (InfoSec), Legal, Maintain Compliance, Microsoft Windows Azure, Multiplatform/Cross-Platform, Operations Security (OPSEC), Performance Metrics, Philosophy, Prescription Drugs, Privacy Controls, Problem Solving Skills, Python Programming/Scripting Language, Regulatory Compliance, Regulatory Requirements, Risk, Risk Management, Scripting (Scripting Languages), Security Analysis, Security Architecture, Security Attacks, Security Infrastructure, Security Monitoring, Software Engineering, Stock Purchase Plans, Team Player, Telemedicine, Testing, Threat Modeling, Time Management
Last year our HCA Healthcare colleagues invested over 156,000 hours volunteering in our communities. As an engineer with HCA Healthcare you can be a part of an organization that is devoted to giving back!
Job Summary and Qualifications
We are enabling the organization to leverage AI technologies while maintaining strong security, privacy, and compliance standards. The Senior AI/Data Security Engineer partners closely with AI and data product teams to implement and operationalize security controls across AI platforms and data solutions.
This role focuses on hands-on security engineering, vulnerability management, threat modeling, and secure pipeline integration. The position supports established AI security frameworks and collaborates with architects and senior security leaders to ensure AI and data products meet organizational security standards.
Major Responsibilities
Security Engineering & Implementation
- Conduct security testing and vulnerability assessments aligned with enterprise data security standards.
- Perform threat modeling for AI and data solutions to identify and mitigate security risks.
- Integrate automated security scans and controls into CI/CD pipelines.
- Ensure security checks are incorporated into data and model deployment pipelines.
- Implement and support monitoring tools for data/MLOps environments to detect potential security incidents.
AI & Data Security Support - Apply established AI security frameworks and standards to ML and LLM-based solutions.
- Assist in operationalizing measurable AI security objectives and KPIs.
- Collaborate with Enterprise Security Architecture and AI Security Architects to implement roadmap initiatives.
- Stay current on emerging AI security threats, including adversarial ML and LLM risks.
Collaboration & Delivery - Partner with developers and product teams to embed secure-by-design principles into AI and data products.
- Collaborate with Legal, Privacy, Risk, and Information Protection teams to support timely security reviews and approvals.
- Participate in third-party security assessments and vulnerability testing engagements.
- Serve as a security advisor to development pods on operationalizing threat detection and vulnerability remediation.
Documentation, Monitoring & Reporting - Document identified security issues and track remediation through resolution.
- Contribute to security reporting and dashboards that provide visibility into AI and data security posture.
- Maintain security documentation aligned with regulatory and enterprise requirements.
- Ensure compliance with applicable healthcare regulations (e.g., HIPAA, HITECH).
Training & Continuous Improvement - Support security awareness initiatives for AI and data development teams.
- Recommend security improvements where gaps are identified and track implementation progress.
- Continuously refine controls and processes based on lessons learned and evolving threat landscapes.
- Performs other duties as assigned
- Practices and adheres to the “Code of Conduct” philosophy and “Mission and Value Statement.”
What qualifications you will need:
- Bachelors Degree in Information Systems preferred
- Bachelor's Degree required
- Five or more years of experience in a security, cloud or software engineering role
Licenses, Certifications and Training
- CISSP
- CISM
- CEH
- Cloud security certifications (e.g., Google Cloud, AWS, Azure)
Knowledge, Skills Abilities, Behaviors:
Required:
- Experience securing cloud environments (preferably Google Cloud).
- Strong understanding of encryption, IAM, data protection, and cloud-native security controls.
- Experience integrating security controls into CI/CD pipelines.
- Proficiency in Python or other scripting languages used in Data/ML environments
- Knowledge of HIPAA, HITECH, and healthcare regulatory requirements.
- Familiarity with DevSecOps practices, CSPM tools, and security monitoring platforms.
- Strong analytical and problem-solving skills.
- Ability to collaborate effectively with cross-functional teams.
Preferred: - Familiarity with ML lifecycle, model training workflows, and LLM security considerations.
- Knowledge of adversarial ML risks and AI security research.
- Experience with data cataloging and classification tools.
Behavioral Competencies - Demonstrates integrity and commitment to organizational values.
- Communicates clearly with technical and non-technical stakeholders.
- Makes informed decisions within defined governance structures.
- Drives execution through collaboration rather than formal authority.
- Adapts effectively to evolving security and AI landscapes.
Benefits
HCA Healthcare, offers a total rewards package that supports the health, life, career and retirement of our colleagues. The available plans and programs include:
- Comprehensive benefits for medical, prescription drug, dental, vision, behavioral health and telemedicine services
- Wellbeing support, including free counseling and referral services
- Time away from work programs for paid time off, paid family leave, long- and short-term disability coverage and leaves of absence
- Savings and retirement resources, including a 401(k) Plan with a 100% match on 3% to 9% of pay (based on years of service), Employee Stock Purchase Plan, flexible spending accounts, preferred banking partnerships, retirement readiness tools, rollover support and financial wellbeing counseling
- Education support through tuition assistance, student loan assistance, certification support, dependent scholarships and a partnership with Galen College of Nursing
- Additional benefits for fertility and family building, adoption assistance, life insurance, supplemental health protection plans, auto and home insurance, legal counseling, identity theft protection and consumer discounts
Learn more about Employee Benefits
Note: Eligibility for benefits may vary by location.
HCA Healthcare has been recognized as one of the World's Most Ethical Companies® by the Ethisphere Institute more than ten times. In recent years, HCA Healthcare spent an estimated $3.7 billion in cost for the delivery of charitable care, uninsured discounts, and other uncompensated expenses.
"There is so much good to do in the world and so many different ways to do it."- Dr. Thomas Frist, Sr.
HCA Healthcare Co-Founder
Be a part of an organization that invests in you! We are reviewing applications for our eng opening. Qualified candidates will be contacted for interviews. Submit your application and help us raise the bar in patient care!
We are an equal opportunity employer. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
H
HCA Healthcare
At its founding in 1968, Nashville-based HCA was one of the nation's first hospital companies. Today, we are the nation's leading provider of healthcare services, a company comprised of locally managed facilities that includes about 165 hospitals and 115 freestanding surgery centers in 20 states and England and employing approximately 204,000 people. Approximately four to five percent of all inpatient care delivered in the country today is provided by HCA facilities. Richard M. Bracken serves as Chairman of HCA and R. Milton Johnson is the company's President and Chief Executive Officer.
HCA is committed to the care and improvement of human life and strives to deliver high quality, cost effective healthcare in the communities we serve. Building on the foundation provided by our Mission & Values, HCA puts patients first and works to constantly improve the care we give them by implementing measures that support our caregivers, help ensure patient safety and provide the highest possible quality. Investing in our communities is important to us. HCA typically invests about $1.5 billion annually to keep our facilities modern and up-to-date technologically and to expand and add services where needed. Focusing primarily on communities where the company is a leading healthcare provider, HCA selectively adds new facilities in order to better serve our communities.
And because two HCA founders were physicians, we value highly the strong relationships we've created with local physicians. We endeavor to provide them with a wide array of services and modern facilities in order to help them deliver the best possible care.