HTM Information Security Engineer in Rochester, Minnesota, United States

Job Information

Mayo Clinic HTM Information Security Engineer in Rochester, Minnesota

Why Mayo Clinic

Mayo Clinic is top-ranked in more specialties than any other care provider according to U.S. News & World Report. As we work together to put the needs of the patient first, we are also dedicated to our employees, investing in competitive compensation and comprehensive benefit plans (https://jobs.mayoclinic.org/benefits/) – to take care of you and your family, now and in the future. And with continuing education and advancement opportunities at every turn, you can build a long, successful career with Mayo Clinic. You’ll thrive in an environment that supports innovation, is committed to ending racism and supporting diversity, equity and inclusion, and provides the resources you need to succeed.

Responsibilities

The Information Security Engineer position requires an information security professional who is results oriented, multi-disciplined, and comfortable in implementing system security solutions in multi-vendor environments. This position is responsible for the research, technical analysis, configuration, and administration of systems and procedures to ensure the protection of information processed, stored or transmitted in Mayo Clinic's computing environments. This position assists with the security design, consultation, and technology governance oversight for various projects and initiatives. The incumbent also assists system users relative to information systems security matters and undertakes complex projects requiring additional specialized technical knowledge. This position acts as information security liaison to various business units and the information technology department. This position receives general supervision and guidance from Information Security Directors and Senior Information Security Engineers.

We are looking for a person with a clinical/biomedical engineering background who will function as an information security professional to help to operationalize processes for our security engineering team that is responsible for mitigating the information security risks and vulnerabilities on medical and facilities devices. You will work closely with clinical, facilities, and biomed engineering staff, as well as IT and security teams, to ensure the devices are configured, networked, and monitored in a secure and compliant manner. You will also troubleshoot connectivity issues, mitigate security risks, and provide recommendations for improvement. In addition, you will have strong business analyst skills and abilities to analyze the business needs and goals, define the scope and requirements, design and document the processes, policies, and best practices for medical and facilities devices security, and communicate and present them to relevant stakeholders.

Responsibilities Include:

Operationalize the processes for medical and facility security, including device inventory, configuration, network connectivity, monitoring, patching, and incident response.
Work with clinical, facility, and biomed engineering staff to understand the functionality, requirements, and risks of the medical and facility devices.
Work with IT and security teams to ensure that the medical and facility devices are integrated with the network and security infrastructure.
Troubleshoot connectivity issues and provide technical support for the medical and facility devices.
Analyze the business needs and goals for medical and facility device security and define the scope and requirements for the processes, policies, and best practices.
Design and document the processes, policies, and best practices for medical and facility security using appropriate tools and methods, such as process mapping, flowcharts, diagrams, etc.
Communicate and present the processes, policies, and best practices for medical and facility security to relevant stakeholders, such as clinical and biomed engineering staff, IT and security teams, management, etc.
Stay updated on the latest trends, threats, and best practices for medical and facility security.

Qualifications

Bachelors degree in Computer Science, Information Systems, Engineering or related major and a minimum one (1) year experience in the information security field required, OR Associates degree and two (2) years experience in the information security field, OR in lieu of a degree, five (5) years experience in the information security field required.

Ability to develop specific proactive procedures for detection of security breaches, identifying security risks in the software development process and code promotion procedures. Basic knowledge of TCP/IP networking. Possesses human relation skills to interact effectively with a variety of personnel. Ability to multi-task and prioritize issues appropriately. Demonstrated ability to work effectively in a team environment as a participant. Capacity to work independently and willingness to seek advice/assistance. Certified as CISSP, GIAC, CISM, or security equivalent; or will obtain certification within 2 years of hire.

Preferred Qualifications:

Experience in information security, biomed engineering, or related field.
Strong knowledge and experience in configuring and networking medical and facility devices, especially medical and facilities devices.
Strong knowledge and experience in information security principles, standards, and best practices, such as NIST, HIPAA, ISO, etc.
Strong knowledge and experience in network and security technologies.
Strong troubleshooting and problem-solving skills.
Strong interpersonal and communication skills, both verbal and written.
Strong business analyst skills and abilities, such as business analysis, scope and requirements definition, process design and documentation, and presentation.
Certifications in information security, biomed engineering, or IoT are preferred, such as CISSP, CISM, CBET, CHTM, CCNA, etc.

Authorization to work and remain in the United States, without necessity for Mayo Clinic sponsorship now, or in the future (for example, be a U.S. Citizen, national, or permanent resident, refugee, or asylee). Also, Mayo Clinic does not participate in the F-1 STEM OPT extension program.

Exemption Status

Exempt

Compensation Detail

$97,884.80 - $137,030.40 / year

Benefits Eligible

Yes

Schedule

Full Time

Hours/Pay Period

80 Hours / Pay Period

Schedule Details

Core work hours are 8am -5pm; Monday - Friday. Presently, on-call support is not provided but the ability to flex time is necessary at times (<5%).

Weekend Schedule

Ability to flex time is necessary at times (<5%)

International Assignment

Site Description

Just as our reputation has spread beyond our Minnesota roots, so have our locations. Today, our employees are located at our three major campuses in Phoenix/Scottsdale, Arizona, Jacksonville, Florida, Rochester, Minnesota, and at Mayo Clinic Health System campuses throughout Midwestern communities, and at our international locations. Each Mayo Clinic location is a special place where our employees thrive in both their work and personal lives. Learn more about what each unique Mayo Clinic campus has to offer, and where your best fit is. (https://jobs.mayoclinic.org/alllocations)

Affirmative Action and Equal Opportunity Employer

As an Affirmative Action and Equal Opportunity Employer Mayo Clinic is committed to creating an inclusive environment that values the diversity of its employees and does not discriminate against any employee or candidate. Women, minorities, veterans, people from the LGBTQ communities and people with disabilities are strongly encouraged to apply to join our teams. Reasonable accommodations to access job openings or to apply for a job are available.

Recruiter

Miranda Grabner

Equal opportunity

Apply Now

Campus Pride Jobs

Job Information

Mayo Clinic HTM Information Security Engineer in Rochester, Minnesota

Current Search Criteria