Innovation and compassion are paramount to providing world-class medical care to patients from all over the world. We lean on the variety of perspectives and backgrounds of our colleagues’ to continuously challenge ourselves and to create a workplace that supports diversity, equity, and inclusion. Become part of the legacy that embraces our differences and enables us to provide the best care to patients from all over the world.
*This is a full time telework position.* The Information Security Senior Analyst has a broad understanding of information security concepts and how to apply and implement them. They serve as a liaison between Information Security, Information Technology, business representatives, and various oversight committees, assisting with developing, communicating, and achieving Mayo’s Information Security goals. The Information Security Senior Analyst is considered knowledgeable and skilled in industry standard information security concepts with particular focus on the NIST Cybersecurity Framework, or equivalent.This position will focus on ensuring IAM roles within the Mayo Clinic cloud environment are secure. The Information Security Senior Analyst is knowledgeable, proficient, and experienced in: •Integrating multiple disciplines (e.g., business / systems process analysis, data analysis, data informatics, riskmanagement, regulatory requirements, and technology) for strategic and operational planning. •Using problem-solving methods, planning techniques, continuous improvement, project management, and analyticaltools and methodologies to achieve Mayo goals. •Conducting information security assessments. •Addressing information security questions and inquiries from business, clinical areas, and other OIS teams. •Ensuring appropriate treatment of cybersecurity risk and monitoring compliance to Mayo’s Information Security policies,processes and procedures. •Creating, supporting, and evaluating security prototypes. •Administering Information Security processes and tools that enable the organization to operate effectively and efficiently •Creating policies, processes and procedures and guiding them through the approval process. •Handles a varied workload of projects with multiple priorities. •Staying current on information security, technology and healthcare trends and institutional changes. •Using excellent interpersonal skills to include presentation, negotiation, influencing, team facilitation and written communications. •Effectively managing time. •Assists with directing the work of Analysts and Associate Analysts. •Drafting communication of risk and complex cyber security topics to a diverse audience.
Additional qualifications may apply (see additional experience and/or qualifications):
Serve as a subject-matter expert across IAM topics with focus on cloud environment.
Support the adoption of creative solutions to address complex, global IAM problems.
Participate in IAM enterprise governance processes and support adoption of IAM standards.
Develop cloud IAM roles that support business needs while aligning to strategic vision.
Participate in creating, maintaining and aligning IAM policies and standards with security industry best practices and business needs, including cloud environments.
Review IAM roles with respect to organizational security policies and standards within a cloud. security context, identifying security risk and recommending alternative solutions to meet business needs.
Develop solutions and recommendations for IAM issues caused by process challenges, emerging threats and technology changes, including cloud environments.
Experience related to cloud IAM, with a preference for Google Cloud Platform.
Experience with Azure Dev Ops, Terraform Enterprise, Infrastructure as Code (IaC).
Knowledge regarding IAM related protocols (i.e. SAML, OpenID and OAuth).
Experience with Directories, SSO, and Federation.
Master's degree in applicable field and 4 years' experience, or Bachelor’s degree in applicable field and 5 years’ experience. Pertinent fields of study and experience includes (but is not limited to) the following: information security, operational analysis, process change, electronic systems implementation, leadership, systems analysis and project management with broad-based key enterprise initiatives.
License or certification
Must have one of the following certifications (or equivalent) at time of hire. In lieu of certification at time of hire, candidate must pass the exam within three years and complete the certification process once years of service requirements of the certifying body have been met. • CISSP • CISM • HCISPP • GIAC • OSCP
Education, experience and tenure may be considered along with internal equity when job offers are extended. The minimum salary every 2 weeks is approx $3,735.20, based on a full-time position.
Hours / Pay period
This is a full time telework position. Monday - Friday, 8am - 5pm.
Mayo Clinic is located in the heart of downtown Rochester, Minnesota, a vibrant, friendly city that provides a highly livable environment for more than 34,000 Mayo staff and students. The city is consistently ranked among the best places to live in the United States because of its affordable cost of living, healthy lifestyle, excellent school systems and exceptionally high quality of life.
IT and Engineering
Job posting number
Equal opportunity employer
As an Affirmative Action and Equal Opportunity Employer Mayo Clinic is committed to creating an inclusive environment that values the diversity of its employees and does not discriminate against any employee or candidate. Women, minorities, veterans, people from the LGBTQ communities and people with disabilities are strongly encouraged to apply to join our teams. Reasonable accommodations to access job openings or to apply for a job are available.