• Senior Information Security Engineer, IS Mod…

    Mayo Clinic (Rochester, MN)


    Why Mayo Clinic

     

    Mayo Clinic is top-ranked in more specialties than any other care provider according to U.S. News & World Report. As we work together to put the needs of the patient first, we are also dedicated to our employees, investing in competitive compensation and comprehensive benefit plans (https://jobs.mayoclinic.org/benefits/) – to take care of you and your family, now and in the future. And with continuing education and advancement opportunities at every turn, you can build a long, successful career with Mayo Clinic.

    Benefits Highlights

    + Medical: Multiple plan options.

    + Dental: Delta Dental or reimbursement account for flexible coverage.

    + Vision: Affordable plan with national network.

    + Pre-Tax Savings: HSA and FSAs for eligible expenses.

    + Retirement: Competitive retirement package to secure your future.

    Responsibilities

    The Senior Information Security Engineer – Application Protection will design, implement, and maintain enterprise security platforms and tools that support vulnerability management, application security, and API protection. The role focuses primarily on engineering and administration of security tools, with secondary support for vulnerability analysis and secure software development initiatives.

    Key Responsibilities:

    + Administer and maintain tools that perform application code scanning, application security posture management, host and network vulnerability scanning, and API security protections.

    + Design and implement integrations and automation between security tools and enterprise systems, including the ServiceNow platform, using available APIs and orchestration workflows.

    + Monitor the performance, availability, and efficacy of security tools to ensure accurate and consistent results.

    + Develop and maintain scripts, dashboards, and reports to improve visibility, efficiency, and response capabilities.

    + Collaborate with application, infrastructure, and network teams to ensure proper configuration and effective operation of security tools.

    + Support secure software development lifecycle and API security initiatives through reliable tool operation and ensuring data integrity.

    + Troubleshoot tool performance issues and coordinate with vendors for maintenance, updates, and enhancements.

    Qualifications

    Master’s degree with one (1) year experience or Bachelor’s degree in Computer Science, Information Systems, Engineering or related major and a minimum two (2) years’ experience in the information security field required.

    The Information Security Senior Engineer also requires the following skills/abilities:

    + Understands the use and efficacy of information security tools, server configurations and controls with the ability to install, configure, test and operate them.

    + Able to test, implement, deploy, maintain, review and administer the infrastructure hardware and software required to effectively secure the enterprise, protect data, identify and mitigate risks

    + Ability to collect, process, preserve, analyze and present computer related evidence in support of network vulnerability mitigation and/or criminal, fraud, counterintelligence or law enforcement investigations.

    + Provides advanced technical opinions/conclusions re. security tools, trends, and controls which are supported by documented evidence, based on multiple perspectives and leverage of a variety of resources

    + Demonstrates a deep and broad knowledge of standard operating procedures, workflows and supporting technology across numerous critical user areas and an in-depth knowledge of multiple computing technologies either being actively used or of significant interest to Mayo; understands how systems fit into larger picture of technology at Mayo.

    + Capacity to work independently and willingness to seek advice/assistance.Must have one of the following certifications (or equivalent) at time of hire. In lieu of certification at time of hire, candidate must pass the exam within two years and complete the certification process once years of service requirements of the certifying body have been met.

    + CISSP

    + GSEC

    + CISM

    + OSCP

    + HCISPP

    Additional Qualifications

    + Strong systems engineering background with experience in Windows, Linux, or cloud environments.

    + Demonstrated expertise in networking concepts, protocols, and troubleshooting.

    + Familiarity with application security concepts, APIs, and network architectures.

    + Proficiency with scripting or automation languages such as PowerShell or Python.

    + Proven ability to diagnose and resolve complex system and tool issues independently, even without vendor support.

    + Experience administering and integrating enterprise-grade security or IT management tools.

    + Ability to identify performance issues, detect coverage gaps in security tooling, and recover from operational incidents.

    + Effective communication and collaboration skills for working across security and IT teams.

     

    This vacancy is not eligible for sponsorship/ we will not sponsor or transfer visas for this position. Also, Mayo Clinic DOES NOT participate in the F-1 STEM OPT extension program.

     

    Exemption Status

     

    Exempt

     

    Compensation Detail

     

    $131,705 - $190,923 / year

     

    Benefits Eligible

     

    Yes

     

    Schedule

     

    Full Time

     

    Hours/Pay Period

     

    80

     

    Schedule Details

     

    Monday - Friday; 8:00 am - 5:00 pm

     

    Weekend Schedule

     

    As needed

     

    International Assignment

     

    No

    Site Description

    Just as our reputation has spread beyond our Minnesota roots, so have our locations. Today, our employees are located at our three major campuses in Phoenix/Scottsdale, Arizona, Jacksonville, Florida, Rochester, Minnesota, and at Mayo Clinic Health System campuses throughout Midwestern communities, and at our international locations. Each Mayo Clinic location is a special place where our employees thrive in both their work and personal lives. Learn more about what each unique Mayo Clinic campus has to offer, and where your best fit is. (https://jobs.mayoclinic.org/alllocations)

     

    Equal Opportunity

     

    All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, protected veteran status or disability status. Learn more about the "EOE is the Law" (https://www.eeoc.gov/poster) . Mayo Clinic participates in E-Verify (https://www.e-verify.gov/sites/default/files/everify/posters/EVerifyParticipationPoster.pdf) and may provide the Social Security Administration and, if necessary, the Department of Homeland Security with information from each new employee's Form I-9 to confirm work authorization.

     

    Recruiter

     

    Ted Keefe

    Equal opportunity

    As an Affirmative Action and Equal Opportunity Employer Mayo Clinic is committed to creating an inclusive environment that values the diversity of its employees and does not discriminate against any employee or candidate. Women, minorities, veterans, people from the LGBTQ communities and people with disabilities are strongly encouraged to apply to join our teams. Reasonable accommodations to access job openings or to apply for a job are available.