IS - Senior Information Security Analyst



City
Rochester
State
Minnesota
Telecommute
No
Department
Information Security
Why Mayo Clinic
Healthcare Information Security seeking a senior IS analyst. Preference to IS candidates with experience and certifications:
• CISSP
• CISM
• HCISPP
• GIAC
• OSCP
Position description
The Information Security Senior Analyst has a broad understanding of information security concepts and how to apply and implement them. They serve as a liaison between Information Security, Information Technology, business representatives, and various oversight committees, assisting with developing, communicating, and achieving Mayo’s Information Security goals. The Information Security Senior Analyst is considered knowledgeable and skilled in industry standard information security concepts with particular focus on the NIST Cybersecurity Framework, or equivalent.
The Information Security Senior Analyst is knowledgeable, proficient, and experienced in:
•Integrating multiple disciplines (e.g., business / systems process analysis, data analysis, data informatics, riskmanagement, regulatory requirements, and technology) for strategic and operational planning.
•Using problem-solving methods, planning techniques, continuous improvement, project management, and analyticaltools and methodologies to achieve Mayo goals.
•Conducting information security assessments.
•Addressing information security questions and inquiries from business, clinical areas, and other OIS teams.
•Ensuring appropriate treatment of cybersecurity risk and monitoring compliance to Mayo’s Information Security policies,processes and procedures.
•Creating, supporting, and evaluating security prototypes.
•Administering Information Security processes and tools that enable the organization to operate effectively and efficiently
•Creating policies, processes and procedures and guiding them through the approval process.
•Handles a varied workload of projects with multiple priorities.
•Staying current on information security, technology and healthcare trends and institutional changes.
•Using excellent interpersonal skills to include presentation, negotiation, influencing, team facilitation and writtencommunications.
•Effectively managing time.
•Assists with directing the work of Analysts and Associate Analysts.
•Drafting communication of risk and complex cyber security topics to a diverse audience.
Additional qualifications may apply (see additional experience and/or qualifications):
• Organizational Change Management – particular focus on Procsi’s ADKAR model
• Project Management – particular focus on the Project Management Body of Knowledge (PMBOK)
• Business Analysis – particular focus is on the Business Analysis Body of Knowledge (BABOK)
This position is on the Cybersecurity Assurance Services Assessment Team. The successful candidate will conduct security assessments of one or more of the following: IT projects, platforms and infrastructure; medical and research devices; and third-party business engagements. Assessments have both administrative and technical aspects. Strong process skills and attention to detail are required.
Qualifications
Master's degree in applicable field and 4 years' experience, or Bachelor’s degree in applicable field and 5 years’ experience.
Pertinent fields of study and experience includes (but is not limited to) the following: information security, operational analysis,
process change, electronic systems implementation, leadership, systems analysis and project management with broad-based
key enterprise initiatives.

This vacancy is not eligible for sponsorship/ we will not sponsor or transfer visas for this position.
License or certification
Must have one of the following certifications (or equivalent) at time of hire. In lieu of
certification at time of hire, candidate must pass the exam within three years and complete the certification process
once years of service requirements of the certifying body have been met.
• CISSP
• CISM
• HCISPP
• GIAC
• OSCP
Exemption status
Exempt
Compensation Detail
Education, experience and tenure may be considered along with internal equity when job offers are extended.  The minimum salary every 2 weeks is approx $3,735 based on a full-time position.
Benefits eligible
Yes
Schedule
Full Time
Hours / Pay period
Full Time
Schedule details
Monday - Friday, 8:00 a.m. - 5:00 p.m. May be required to provide 24/7 on-call support.
Weekend schedule
May be required to provide 24/7 on-call support.
Site description
Mayo Clinic is located in the heart of downtown Rochester, Minnesota, a vibrant, friendly city that provides a highly livable environment for more than 34,000 Mayo staff and students. The city is consistently ranked among the best places to live in the United States because of its affordable cost of living, healthy lifestyle, excellent school systems and exceptionally high quality of life.
Category
IT and Engineering
Career profile
Information Security
Job posting number
137239BR
Recruiter
Karissa Wirt
Equal opportunity employer
As an Affirmative Action and Equal Opportunity Employer Mayo Clinic is committed to creating an inclusive environment that values the diversity of its employees and does not discriminate against any employee or candidate. Women, minorities, veterans, people from the LGBTQ communities and people with disabilities are strongly encouraged to apply to join our teams. Reasonable accommodations to access job openings or to apply for a job are available.