Senior Information Security Engineer

Rochester, MN, United States

Apply now Apply later

The Information Security Senior Cloud Engineer is results oriented, multi-disciplined, and comfortable in implementing system security solutions in multi-vendor environments and acts as an information security liaison to various business units and the information technology department to assist with the security design, consultation, and technology implementation for various Mayo Clinic projects and initiatives.


The incumbent also assists system users relative to information systems security matters and undertakes complex projects requiring additional specialized technical knowledge. Specifically, the Information Security Senior Cloud Engineer is knowledgeable, proficient, and experienced in:
• Working with business partners within the department to achieve organizational and Office of Information Security goals
• Developing required competencies by mastering fundamental tasks
• Independently analyzing technology security posture and appropriate use of security defenses
• Matching technical solutions with business requirements and then designing and implementing them
• Self-directed software development, testing, support/problem solving, and overall technology administration
• Organizational procedures such as the system/software development life-cycle
• Use of defensive measures and information to identify, analyze and report security events
• Researching and understanding pertinent information technology laws, policies and procedures
• Establishing timelines and delivery of requirements
• Applying IT-related laws and policies, and providing IT-related guidance throughout the software acquisition lifecycle
• Collecting and analyzing information to identify vulnerabilities and potential for exploitation
• Managing and administering processes and tools that enable the organization to identify, document, and access intellectual capital and information content
• Executing duties governing hardware, software, and information system acquisition programs and other program management policies with minimal support

*This position is primarily remote work. Individual may be required to provide onsite support based on business needs and must live within driving distance (70 miles) to the Mayo Clinic Rochester, MN, Jacksonville, FL, or Scottsdale, AZ campus. Preference is for candidate to be near the Rochester, MN campus.

**This vacancy is not eligible for sponsorship / we will not sponsor or transfer visas for this position.

During the selection process, you may participate in an OnDemand (pre-recorded) interview that you can complete at your convenience. During the OnDemand interview, a question will appear on your screen, and you will have time to consider each question before responding. You will have the opportunity to re-record your answer to each question - Mayo Clinic will only see the final recording. The complete interview will be reviewed by a Mayo Clinic staff member and you will be notified of next steps.

Master’s degree with one (1) year experience or Bachelor’s degree in Computer Science, Information Systems, Engineering or related major and a minimum two (2) years’ experience in the information security field required.

The Information Security Senior Engineer also requires the following skills/abilities.
• Understands the use and efficacy of information security tools, server configurations and controls with the ability to install, configure, test and operate them.
• Able to test, implement, deploy, maintain, review and administer the infrastructure hardware and software required to effectively secure the enterprise, protect data, identify and mitigate risks
• Ability to collect, process, preserve, analyze and present computer related evidence in support of network vulnerability mitigation and/or criminal, fraud, counterintelligence or law enforcement investigations.
• Provides advanced technical opinions/conclusions regarding security tools, trends, and controls which are supported by documented evidence, based on multiple perspectives and leverage of a variety of resources
• Demonstrates a deep and broad knowledge of standard operating procedures, workflows and supporting technology across numerous critical user areas and an in-depth knowledge of multiple computing technologies either being actively used or of significant interest to Mayo; understands how systems fit into the larger picture of technology at Mayo.
• Capacity to work independently and willingness to seek advice/assistance.

Experience in Google Cloud and Azure environments is preferred. Expertise in securing cloud environments using Palo Alto Prisma and cloud native tools is highly desired for this position.

Seeking candidates with experience working in an Agile environment that includes daily scrums, Azure DevOps to deploy code, and Infrastructure as Code (IaC). 
Highly desired: 
•    Cloud access provisioning and administration (Cloud IAM) experience across multiple CSPs (cloud service providers)/cloud environments
•    Experience with application of cloud security controls across CSPs including identifying, configuring, and testing controls; implementing and tuning rules; and evaluating alarms
•    Experience with Cloud ingress/egress controls
•    Knowledge and skills with detecting data exfiltration in the cloud 
•    Knowledge of a range of cloud security tool vendors and experience working with them to optimize delivered services
•    Expertise optimizing capabilities across multiple security tool vendors, including coordinating across tools and platforms, assessing overlapping functionality, refining use and optimizing capabilities of each platform with appropriate cross-coverage 
 

Licensure or Certification:

Must have one of the following certifications (or equivalent) at time of hire. In lieu of certification at time of hire, candidate must pass the exam within two years and complete the certification process once years of service requirements of the certifying body have been met.


• CISSP
• GSEC
• CISM
• OSCP
• HCISPP

This position will accept applications until 01/05/2025. This deadline may be extended if the necessary candidate pool is not met by this date.

Why Mayo Clinic
Mayo Clinic is top-ranked in more specialties than any other care provider according to U.S. News & World Report. As we work together to put the needs of the patient first, we are also dedicated to our employees, investing in competitive compensation and comprehensive benefit plans – to take care of you and your family, now and in the future. And with continuing education and advancement opportunities at every turn, you can build a long, successful career with Mayo Clinic. You’ll thrive in an environment that supports innovation, is committed to ending racism and supporting diversity, equity and inclusion, and provides the resources you need to succeed.
Benefits Highlights
  • Medical: Multiple plan options.
  • Dental: Delta Dental or reimbursement account for flexible coverage.
  • Vision: Affordable plan with national network.
  • Pre-Tax Savings: HSA and FSAs for eligible expenses.
  • Retirement: Competitive retirement package to secure your future.
Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  2  0  0

Tags: Agile Azure CISM CISSP Cloud Computer Science DevOps GCP GSEC IAM OSCP Vulnerabilities

Perks/benefits: Career development Competitive pay Equity / stock options Flex hours Health care

Region: North America
Country: United States

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.