Principal Information Security Engineer – IS Mod at Mayo Clinic

CityRochester

StateMN

RemoteYES

DepartmentInformation Security

Why Mayo Clinic

Mayo Clinic is top-ranked in more specialties than any other care provider according to U.S. News & World Report. As we work together to put the needs of the patient first, we are also dedicated to our employees, investing in competitive compensation and comprehensive benefit plans – to take care of you and your family, now and in the future. And with continuing education and advancement opportunities at every turn, you can build a long, successful career with Mayo Clinic.

Benefits Highlights

Medical: Multiple plan options.
Dental: Delta Dental or reimbursement account for flexible coverage.
Vision: Affordable plan with national network.
Pre-Tax Savings: HSA and FSAs for eligible expenses.
Retirement: Competitive retirement package to secure your future.

Responsibilities

The Office of Information Security’s Email-Endpoint-PKI Security Team is seeking a Principal Information Security Engineer with a strong background in endpoint security infrastructure and solutions. The individual will collaborate with business units across Mayo Clinic to enhance our endpoint security strategies. This role will lead efforts to modernize and govern Mayo Clinic’s endpoint security infrastructure and practices, working collaboratively across the IT and Risk departments to ensure a safe, compliant, and resilient endpoint environment.

The acts as an information security liaison to various business units and the Information Security department to provide direction, training, and guidance for OIS staff. The Principal Information Security Engineer is considered an expert, leader and mentor; identifying and resolving technology related information security gaps based on the organization’s risk posture. Specifically, the Principal Information Security Engineer is knowledgeable, proficient and experienced in:
•Working with business partners across the organization to achieve organizational and OIS goals
•Working collaboratively with team members and other leaders to develop and implement cybersecurity strategy based on industry best practice
•Developing secure endpoint architecture
•Analyzing technology security posture and appropriate use of security defenses
•Matching technical solutions with business requirements and then designing and implementing them;
•Software development, testing, support/problem solving, and overall technology administration;
•Organizational procedures such as the system development lifecycle;
•Use of defensive measures and information to identify, analyze and report security events;
•Researching and understanding pertinent information technology laws, policies and procedures
•Providing direct support for acquiring information security technology and applications
•Applying IT-related laws and policies, and providing IT-related guidance throughout the software acquisition lifecycle
•Collecting and analyzing information to identify vulnerabilities and potential for exploitation
•Managing and administering processes and tools that enable the organization to identify, document, and access intellectual capital and information content
•Executing duties governing hardware, software, and information system acquisition programs and other program management policies

Mayo Clinic will not sponsor or transfer visas for this position including F1 OPT STEM.

Qualifications

Master’s degree with three (3) years’ experience OR Bachelor’s degree in Computer Science, Information Systems, Engineering or related major and a minimum five (5) years’ experience in the information security field required.The Information Security Principal Engineer also requires the following skills/abilities.
•Understands the use and efficacy of information security tools, server configurations and controls with the ability to install, configure, test and operate them.
•Able to test, implement, deploy, maintain, review and administer the infrastructure hardware and software required to effectively secure the enterprise, protect data, identify and mitigate risks
•Ability to collect, process, preserve, analyze and present computer related evidence in support of network vulnerability mitigation and/or criminal, fraud, counterintelligence or law enforcement investigations.
•Provides advanced technical opinions/conclusions re. security tools, trends, and controls which are supported by documented evidence, based on multiple perspectives and leverage of a variety of resources
•Demonstrates a deep and broad knowledge of standard operating procedures, workflows and supporting technology across numerous critical user areas and an in-depth knowledge of multiple computing technologies either being actively used or of significant interest to Mayo; understands how systems fit into larger picture of technology at Mayo.
•Capacity to work independently and willingness to seek advice/assistance.
Must have one of the following certifications (or equivalent) at time of hire.
• CISSP
• GSEC
• CISM
• HCISPP
• OSCP

Exemption Status

Exempt

Compensation Detail

$145,225.60 – $210,558.40 / year

Benefits Eligible

Yes

Schedule

Full Time

Hours/Pay Period

Schedule Details

Monday – Friday, 8am – 5pm

Weekend Schedule

As needed

International Assignment

Site Description

Just as our reputation has spread beyond our Minnesota roots, so have our locations. Today, our employees are located at our three major campuses in Phoenix/Scottsdale, Arizona, Jacksonville, Florida, Rochester, Minnesota, and at Mayo Clinic Health System campuses throughout Midwestern communities, and at our international locations. Each Mayo Clinic location is a special place where our employees thrive in both their work and personal lives. Learn more about what each unique Mayo Clinic campus has to offer, and where your best fit is.

Equal Opportunity

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, protected veteran status or disability status. Learn more about the “EOE is the Law”. Mayo Clinic participates in E-Verify and may provide the Social Security Administration and, if necessary, the Department of Homeland Security with information from each new employee’s Form I-9 to confirm work authorization.

Recruiter

Ted Keefe

Source link
{link}