Skip to main content
Saved Jobs

SR Info Security Engineer

Job ID 193833BR Date posted 11/21/2022
  • Rochester, Minnesota
  • Full Time
  • Information Security
Apply Now

Not ready to apply? Join our talent community

Why Mayo Clinic
Mayo Clinic is the nation's best hospital (U.S. News & World Report, 2022-2023) and ranked #1 in more specialties than any other care provider. We have a vast array of opportunities ranging from Nursing, Clinical, to Finance, IT, Administrative, Research and Support Services to name a few. Across all locations, you’ll find career opportunities that support diversity, equity and inclusion. At Mayo Clinic, we invest in you with opportunities for growth and development and our benefits and compensation package are highly competitive. We invite you to be a part of our team where you’ll discover a culture of teamwork, professionalism, mutual respect, and most importantly, a life-changing career!

Mayo Clinic offers a variety of employee benefits. For additional information please visit Mayo Clinic Benefits. Eligibility may vary.

Position description
The main task of a Senior Information Security Engineer on the Security Testing Services team is to improve the security of Mayo Clinic by finding and reporting technical vulnerabilities that an adversary could exploit. The high-level characteristics of someone fitting this role successfully are the following:
  • Follow a process consistently
  • Have an astute attention to detail
  • Be proactive in collaborating and sharing knowledge with a team
  • Possess experience with hardware security testing
  • Possess knowledge of networking fundamentals, computer architecture, and operating systems
  • Identify, understand, and explain the root cause of security vulnerabilities
  • Be able to clearly report steps to reproduce a security vulnerability
  • Possess experience with pen testing professionally or have experience in the form of "boot to root" challenges (e.g., Vulnhub, Hack the Box, TryHackMe, OSPG, etc.).
  • Have experience with the following tools:
    • Pentesting frameworks including Kali Linux and Metasploit
    • Network utility tools including Wireshark, nmap, and netcat
    • Web application testing tools including BurpSuite
  • Possess skills to understand, repurpose, compile, and execute 3rd party code
  • Work remotely and independently solves problems to complete tasks on-time with limited guidance
While this is a remote position, candidates will only be considered if they live within commutable distance of Rochester, MN. This position requires the capability to perform periodic hardware security testing at the Rochester campus of Mayo Clinic. Qualified candidates will be given a technical challenge to discover and report vulnerabilities in a 48-hour period using a supplied report template.

The Information Security Senior Engineer is results oriented, multi-disciplined, and comfortable in implementing system security solutions in multi-vendor environments and acts as an information security liaison to various business units and the information technology department to assist with the security design, consultation, and technology implementation for various Mayo Clinic projects and initiatives.

The incumbent also assists system users relative to information systems security matters and undertakes complex projects requiring additional specialized technical knowledge. Specifically, the Information Security Senior Engineer is knowledgeable, proficient, and experienced in:
  • Working with business partners within the department to achieve organizational and OIS goals
  • Developing required competencies by mastering fundamental tasks
  • Independently analyzing technology security posture and appropriate use of security defenses
  • Matching technical solutions with business requirements and then designing and implementing them
  • Self-directed software development, testing, support/problem solving, and overall technology administration
  • Organizational procedures such as the system development life cycle
  • Use of defensive measures and information to identify, analyze and report security events
  • Researching and understanding pertinent information technology laws, policies, and procedures
  • Establishing timelines and delivery of requirements
  • Applying IT-related laws and policies, and providing IT-related guidance throughout the software acquisition lifecycle
  • Collecting and analyzing information to identify vulnerabilities and potential for exploitation
  • Managing and administering processes and tools that enable the organization to identify, document, and access intellectual capital and information content
  • Executing duties governing hardware, software, and information system acquisition programs and other program management policies with minimal support
Work is primarily done remotely but at times will require incumbent to be on the Rochester Campus. Therefore incumbent must live within a reasonable distance to Rochester, MN.


Qualifications
Master’s degree with one (1) year experience or Bachelor’s degree in Computer Science, Information Systems, Engineering or related major and a minimum two (2) years’ experience in the information security field required.

Additional qualifications
The Information Security Senior Engineer also requires the following skills/abilities.
• Understands the use and efficacy of information security tools, server configurations and controls with the ability to install, configure, test and operate them.
• Able to test, implement, deploy, maintain, review and administer the infrastructure hardware and software required to effectively secure the enterprise, protect data, identify and mitigate risks
• Ability to collect, process, preserve, analyze and present computer related evidence in support of network vulnerability mitigation and/or criminal, fraud, counterintelligence or law enforcement investigations.
• Provides advanced technical opinions/conclusions re. security tools, trends, and controls which are supported by documented evidence, based on multiple perspectives and leverage of a variety of resources
• Demonstrates a deep and broad knowledge of standard operating procedures, workflows and supporting technology across numerous critical user areas and an in-depth knowledge of multiple computing technologies either being actively used or of significant interest to Mayo; understands how systems fit into larger picture of technology at Mayo.
• Capacity to work independently and willingness to seek advice/assistance.


License or certification
Must have one of the following certifications (or equivalent) at time of hire. In lieu of certification at time of hire, candidate must pass the exam within two years and complete the certification process once years of service requirements of the certifying body have been met.
• CISSP
• GSEC
• CISM
• OSCP
• HCISPP

Exemption status
Exempt

Compensation Detail
$121,701.00 - $176,446.00 / year

Benefits eligible
Yes

Schedule
Full Time

Hours / Pay period
80

Schedule details

8am-4pm Central Time, Monday through Friday.



Weekend schedule

This position is mainly M-F 8am-4pm Central Time. There is no on-call, but weekend help may be needed in the case of an emergency or if a task is behind schedule.



Remote
Yes

International Assignment
No

Site description
Mayo Clinic is located in the heart of downtown Rochester, Minnesota, a vibrant, friendly city that provides a highly livable environment for more than 34,000 Mayo staff and students. The city is consistently ranked among the best places to live in the United States because of its affordable cost of living, healthy lifestyle, excellent school systems and exceptionally high quality of life.

Recruiter
Ted Keefe

EOE
As an Affirmative Action and Equal Opportunity Employer Mayo Clinic is committed to creating an inclusive environment that values the diversity of its employees and does not discriminate against any employee or candidate. Women, minorities, veterans, people from the LGBTQ communities and people with disabilities are strongly encouraged to apply to join our teams. Reasonable accommodations to access job openings or to apply for a job are available.
Apply Now

Join Our Talent Community

Sign up, stay connected and get opportunities that match your skills sent right to your inbox

(Must be under 1MB)

Interested InSelect a job category from the list of options. Select a location from the list of options. Finally, click “Add” to create your job alert.

By submitting your information, you consent to receive email communication from Mayo Clinic.

Join our talent community.

Join our global talent community to receive alerts when new life-changing opportunities become available.

  • About Us

    About Us

    If you want to know what it's really like at Mayo Clinic, just ask. You'll find that our pride–in where we work, and in what we do–is a common trait. You will also find a lot of inspiring stories about lives changed for the better.

  • Nurse Training Programs

  • Benefits

    Benefits

    As your career evolves, our compensation and benefits packages are designed to change with you — meeting needs now, and anticipating what comes next. We know that when Mayo Clinic takes care of you, you can take better care of our patients.

Equal opportunity

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, protected veteran status, or disability status. Learn more about "EEO is the Law." Mayo Clinic participates in E-Verify and may provide the Social Security Administration and, if necessary, the Department of Homeland Security with information from each new employee's Form I-9 to confirm work authorization.

Reasonable accommodations

Mayo Clinic provides reasonable accommodations to individuals with disabilities to increase opportunities and eliminate barriers to employment.  If you need a reasonable accommodation in the application process; to access job postings, to apply for a job, for a job interview, for pre-employment testing, or with the onboarding process, please contact HR Connect at 507-266-0440 or  888-266-0440.

Job offers

Job offers are contingent upon successful completion of a post offer placement assessment including a urine drug screen, immunization review and tuberculin (TB) skin testing, if applicable.

Advertising

Mayo Clinic is a not-for-profit organization and proceeds from Web advertising help support our mission. Mayo Clinic does not endorse any of the third party products and services advertised.

Advertising and sponsorship policy | Advertising and sponsorship opportunities

Reprint permissions

A single copy of these materials may be reprinted for noncommercial personal use only. "Mayo," "Mayo Clinic," "MayoClinic.org," "Mayo Clinic Healthy Living," and the triple-shield Mayo Clinic logo are trademarks of Mayo Foundation for Medical Education and Research.

Any use of this site constitutes your agreement to the Terms and Conditions and Privacy Policy linked below.

Terms and Conditions | Privacy Policy | Notice of Privacy Practices | Notice of Nondiscrimination

© 1998-2022 Mayo Foundation for Medical Education and Research (MFMER). All rights reserved.

Top