Mayo Clinic is top-ranked in more specialties than any other care provider according to U.S. News & World Report. As we work together to put the needs of the patient first, we are also dedicated to our employees, investing in competitive compensation and comprehensive benefit plans – to take care of you and your family, now and in the future. And with continuing education and advancement opportunities at every turn, you can build a long, successful career with Mayo Clinic. You’ll thrive in an environment that supports innovation, is committed to ending racism and supporting diversity, equity and inclusion, and provides the resources you need to succeed.
Responsibilities
The Information Security Senior Security Orchestration, Automation, and Response (SOAR) Engineer will design, develop, and implement SOAR solutions to automate security operations and incident response workflows. Collaborate with Security Operations Center (SOC) teams to identify automation opportunities and improve incident response processes. Develop and maintain playbooks, scripts, and automation workflows to streamline security operations. Conduct regular assessments of SOAR solutions to ensure effectiveness and identify areas for improvement. Provide technical leadership and mentoring to junior engineers and SOC analysts. Stay current with emerging security trends, threats, and technologies to proactively enhance our SOAR capabilities. Generate reports and metrics to measure the effectiveness of SOAR initiatives and present findings to stakeholders.
Results oriented, multi-disciplined, and comfortable in implementing system security solutions in multi-vendor environments and acts as an information security liaison to various business units and the information technology department to assist with the security design, consultation, and technology implementation for various Mayo Clinic projects and initiatives.
The incumbent also assists system users relative to information systems security matters and undertakes complex projects requiring additional specialized technical knowledge. Specifically, the Information Security Senior Engineer is knowledgeable, proficient, and experienced in:
• Working with business partners within the department to achieve organizational and OIS goals
• Developing required competencies by mastering fundamental tasks
• Independently analyzing technology security posture and appropriate use of security defenses
• Matching technical solutions with business requirements and then designing and implementing them;
• Self-directed software development, testing, support/problem solving, and overall technology administration;
• Organizational procedures such as the system development life-cycle;
• Use of defensive measures and information to identify, analyze and report security events;
• Researching and understanding pertinent information technology laws, policies and procedures
• Establishing timelines and delivery of requirements
• Applying IT-related laws and policies, and providing IT-related guidance throughout the software acquisition lifecycle
• Collecting and analyzing information to identify vulnerabilities and potential for exploitation
• Managing and administering processes and tools that enable the organization to identify, document, and access intellectual capital and information content
• Executing duties governing hardware, software, and information system acquisition programs and other program management policies with minimal support
This vacancy is not eligible for sponsorship/ we will not sponsor or transfer visas for this position. Also, Mayo Clinic DOES NOT participate in the F-1 STEM OPT extension program.
This position will accept applications until 11/07/2024. This deadline may be extended if the necessary candidate pool is not met by this date.
Qualifications
Qualifications:
Master’s degree with one (1) year experience or Bachelor’s degree in Computer Science, Information Systems, Engineering or related major and a minimum two (2) years’ experience in the information security field required.
The Information Security Senior Engineer also requires the following skills/abilities.
• Understands the use and efficacy of information security tools, server configurations and controls with the ability to install, configure, test and operate them.
• Able to test, implement, deploy, maintain, review and administer the infrastructure hardware and software required to effectively secure the enterprise, protect data, identify and mitigate risks
• Ability to collect, process, preserve, analyze and present computer related evidence in support of network vulnerability mitigation and/or criminal, fraud, counterintelligence or law enforcement investigations.
• Provides advanced technical opinions/conclusions re. security tools, trends, and controls which are supported by documented evidence, based on multiple perspectives and leverage of a variety of resources
• Demonstrates a deep and broad knowledge of standard operating procedures, workflows and supporting technology across numerous critical user areas and an in-depth knowledge of multiple computing technologies either being actively used or of significant interest to Mayo; understands how systems fit into larger picture of technology at Mayo.
• Capacity to work independently and willingness to seek advice/assistance.
Additional Qualifications:
The Information Security Senior SOAR Engineer must have extensive experience with SOAR tools and platforms (or other data centric automation technologies) with a high proficiency in scripting languages such as Python, PowerShell, or Bash. In-depth understanding of cybersecurity principles, threat detection, and incident response methodologies. Strong problem-solving abilities with a keen eye for detail in identifying and mitigating security threats. Must have excellent verbal and written communication skills for effective collaboration with cross-functional teams. Demonstrated ability to lead and mentor junior engineers and SOC analysts. Strong understanding of network protocols, operating systems, and security architecture. Experience in incident response, threat hunting, and forensic analysis. Ability to thrive in a fast-paced, constantly evolving security landscape.
License or Certifications:
Must have one of the following certifications (or equivalent) at time of hire. In lieu of certification at time of hire, candidate must pass the exam within two years and complete the certification process once years of service requirements of the certifying body have been met.
• CISSP
• GSEC
• CISM
• OSCP
• HCISPP
Exemption Status
Exempt
Compensation Detail
$128,502 - $186,264 / year
Benefits Eligible
Yes
Schedule
Full Time
Hours/Pay Period
80
Schedule Details
8am - 5pm Central Time Monday through Friday. This position is 100% remote; can work from anywhere in the U.S.
Weekend Schedule
As needed.
International Assignment
No
Site Description
Just as our reputation has spread beyond our Minnesota roots, so have our locations. Today, our employees are located at our three major campuses in Phoenix/Scottsdale, Arizona, Jacksonville, Florida, Rochester, Minnesota, and at Mayo Clinic Health System campuses throughout Midwestern communities, and at our international locations. Each Mayo Clinic location is a special place where our employees thrive in both their work and personal lives. Learn more about what each unique Mayo Clinic campus has to offer, and where your best fit is.
Affirmative Action and Equal Opportunity Employer
As an Affirmative Action and Equal Opportunity Employer Mayo Clinic is committed to creating an inclusive environment that values the diversity of its employees and does not discriminate against any employee or candidate. Women, minorities, veterans, people from the LGBTQ communities and people with disabilities are strongly encouraged to apply to join our teams. Reasonable accommodations to access job openings or to apply for a job are available.
Recruiter
Joy Kundrata