Senior Information Security Engineer

This position will support the Archer Governance Risk and Compliance (GRC) solution. The ideal candidate would have previous experience as an Archer System Administrator. Specific skills include configuring deploying and maintaining Archer applications and exporting and managing data within the Archer the Archer platform supports Mayo Clinic Information Security GRC position also plays a crucial role in supporting the GRCprogram by managing the platforms functionality and ensuring compliance.

The Information Security Senior Engineer is results oriented multidisciplined and comfortable in implementing system security solutions in multivendor environments and acts as an information security liaison to various business units and the information technology department to assist with the security design consultation and technology implementation for various Mayo Clinic projects and initiatives.

The incumbent also assists system users relative to information systems security matters and undertakes complex projects requiring additional specialized technical knowledge. Specifically the Information Security Senior Engineer is knowledgeable proficient and experienced in:
Working with business partners within the department to achieve organizational and OIS goals
Developing required competencies by mastering fundamental tasks
Independently analyzing technology security posture and appropriate use of security defenses
Matching technical solutions with business requirements and then designing and implementing them;
Selfdirected software development testing support/problem solving and overall technology administration;
Organizational procedures such as the system development lifecycle;
Use of defensive measures and information to identify analyze and report security events;
Researching and understanding pertinent information technology laws policies and procedures
Establishing timelines and delivery of requirements
Applying ITrelated laws and policies and providing ITrelated guidance throughout the software acquisition lifecycle
Collecting and analyzing information to identify vulnerabilities and potential for exploitation
Managing and administering processes and tools that enable the organization to identify document and access intellectual capital and information content
Executing duties governing hardware software and information system acquisition programs and other program management policies with minimal support

*This position is a 100% remote work. Individual may live anywhere in the US.
**This vacancy is not eligible for sponsorship / we will not sponsor or transfer visas for this position.

During the selection process you may participate in an OnDemand (prerecorded) interview that you can complete at your convenience. During the OnDemand interview a question will appear on your screen and you will have time to consider each question before responding. You will have the opportunity to rerecord your answer to each question Mayo Clinic will only see the final recording. The complete interview will be reviewed by a Mayo Clinic staff member and you will be notified of next steps.

Masters degree with one (1) year experience or Bachelors degree in Computer Science Information Systems Engineering or related major and a minimum two (2) years experience in the information security field required.

The Information Security Senior Engineer also requires the following skills/abilities.
Understands the use and efficacy of information security tools server configurations and controls with the ability to install configure test and operate them.
Able to test implement deploy maintain review and administer the infrastructure hardware and software required to effectively secure the enterprise protect data identify and mitigate risks
Ability to collect process preserve analyze and present computer related evidence in support of network vulnerability mitigation and/or criminal fraud counterintelligence or law enforcement investigations.
Provides advanced technical opinions/conclusions re. security tools trends and controls which are supported by documented evidence based on multiple perspectives and leverage of a variety of resources
Demonstrates a deep and broad knowledge of standard operating procedures workflows and supporting technology across numerous critical user areas and an indepth knowledge of multiple computing technologies either being actively used or of significant interest to Mayo; understands how systems fit into larger picture of technology at Mayo.
Capacity to work independently and willingness to seek advice/assistance.

Licensure or Certification:

Must have one of the following certifications (or equivalent) at time of hire. In lieu of certification at time of hire candidate must pass the exam within two years and complete the certification process once years of service requirements of the certifying body have been met.
CISSP
GSEC
CISM
OSCP
HCISPP