Principal Information Security Engineer

The Principal Information Security Engineer in the Cybersecurity Operations Center provides leadership and senior level technical skills responsible for advancing the organizations security operations incident response capabilities and overall security monitoring program maturity. Serves as an information security liaison partnering closely with organizational units and stakeholders to provide deep subject matter expertise in security operations functions incident response requirements and responsible application of AIenabled security capabilities. Recognized as an expert in digital forensics and malware reverse engineering and plays a critical role during highimpact cybersecurity incidents by advising and supporting incident handling activities participation in an oncall rotation for escalated and enterprisesignificant security events. Provides strong technical leadership to drive consistency and excellence across security operations through mentorship training and authoritative guidance. Drives program process improvements to ensure advanced analytics automation and artificial intelligence are leveraged to enhance detection investigation and response outcomes. Works closely with team members to provide technical decisionmaking complex problem solving and crossteam coordination to improve detection and response processes. Produce clear actionable reporting metrics and investigative findings to support operational decisionmaking leadership visibility and continuous improvement of security operations. Operates with a longterm systemslevel perspective shaping how security capabilities are designed implemented and sustained including the evaluation and integration of AIdriven tools and techniques. Success in this role is measured by improved operational outcomes reduced risk increased response effectiveness and the maturity and scalability of the organizations security operations center and incident response practices.

The Information Security Principal Engineer acts as an information security liaison to various business units and the Information Technology Department to provide direction training and guidance for OIS staff. The Information Security Principal Engineer is considered an expert leader and mentor; identifying and resolving technology related information security gaps based on the organizations risk posture. Specifically the Information Security Principal Engineer is knowledgeable proficient and experienced in:
Working with business partners across the organization to achieve organizational and OIS goals
Working collaboratively with team members and other leaders to develop and implement cybersecurity strategy based on industry best practice
Developing secure network and systems architecture
Analyzing technology security posture and appropriate use of security defenses
Matching technical solutions with business requirements and then designing and implementing them;
Software development testing support/problem solving and overall technology administration;
Organizational procedures such as the system development lifecycle;
Use of defensive measures and information to identify analyze and report security events;
Researching and understanding pertinent information technology laws policies and procedures
Providing direct support for acquiring information security technology and applications
Applying IT-related laws and policies and providing IT-related guidance throughout the software acquisition lifecycle
Collecting and analyzing information to identify vulnerabilities and potential for exploitation
Managing and administering processes and tools that enable the organization to identify document and access intellectual capital and information content
Executing duties governing hardware software and information system acquisition programs and other program management policies

This is a hybrid position and incumbent must live within 100 miles of a Mayo Clinic campus.

Mayo Clinic will not sponsor or transfer visas for this position including F1 OPT STEM.

Masters degree with three (3) years experience OR Bachelors degree in Computer Science Information Systems Engineering or related major and a minimum five (5) years experience in the information security field Information Security Principal Engineer also requires the following skills/abilities.
Understands the use and efficacy of information security tools server configurations and controls with the ability to install configure test and operate them.
Able to test implement deploy maintain review and administer the infrastructure hardware and software required to effectively secure the enterprise protect data identify and mitigate risks
Ability to collect process preserve analyze and present computer related evidence in support of network vulnerability mitigation and/or criminal fraud counterintelligence or law enforcement investigations.
Provides advanced technical opinions/conclusions re. security tools trends and controls which are supported by documented evidence based on multiple perspectives and leverage of a variety of resources
Demonstrates a deep and broad knowledge of standard operating procedures workflows and supporting technology across numerous critical user areas and an in-depth knowledge of multiple computing technologies either being actively used or of significant interest to Mayo; understands how systems fit into larger picture of technology at Mayo.
Capacity to work independently and willingness to seek advice/assistance.
Must have one of the following certifications (or equivalent) at time of hire.
CISSP
GSEC
CISM
HCISPP
OSCP