CASY-MSCCN Jobs

Why Mayo Clinic

Mayo Clinic is top-ranked in more specialties than any other care provider according to U.S. News & World Report. As we work together to put the needs of the patient first, we are also dedicated to our employees, investing in competitive compensation and comprehensive benefit plans (https://jobs.mayoclinic.org/benefits/) – to take care of you and your family, now and in the future. And with continuing education and advancement opportunities at every turn, you can build a long, successful career with Mayo Clinic. You’ll thrive in an environment that supports innovation, is committed to ending racism and supporting diversity, equity and inclusion, and provides the resources you need to succeed.

Responsibilities

The position is based out of Rochester, however hybrid working arrangements will be considered but the incumbent must reside close to a Mayo Clinic location (Rochester, MN; Phoenix, AZ; Jacksonville, FL; and certain locations in the Mayo Clinic Health Systems).

The incumbent will be responsible for assisting in designing and supporting operational needs of the HTM Cybersecurity Team. This includes helping to develop efficient processes, drafting procedures and process flow diagrams, identifying key metrics, creating reports, and other duties as assigned. This is not a traditional security position and will require the incumbent to have strong project management skills, a solid understanding of risks and controls, excellent time management abilities, and proficient communication skills. The incumbent must be comfortable with being assigned multiple tasks or activities, dealing with a diverse changing environment, decisive but always willing to ask questions, and able to work independently.

The Senior Information Security Analyst has a broad understanding of information security concepts and how to apply and implement them. They serve as a liaison between Information Security, Information Technology, business representatives, and various oversight committees, assisting with developing, communicating, and achieving Mayo’s Information Security goals. The Information Security Senior Analyst is considered knowledgeable and skilled in industry standard information security concepts with particular focus on the NIST Cybersecurity Framework, or equivalent.

The main duties of this role include:

• Analyzing current operations and identifying areas for improvement or optimization

• Developing and documenting new or revised processes and procedures in alignment with best practices and standards

• Collaborating with various stakeholders across the organization to communicate and align on security objectives, requirements, and expectations

• Monitoring and evaluating the performance and outcomes of processes and procedures and reporting on key metrics and indicators

• Recommending and initiating corrective actions or enhancements to address any issues or gaps

• Performing other tasks as assigned

The Senior Information Security Analyst is knowledgeable, proficient, and experienced in:

• Integrating multiple disciplines (e.g., business / systems process analysis, data analysis, data informatics, risk management, regulatory requirements, and technology) for strategic and operational planning

• Using problem-solving methods, planning techniques, continuous improvement, project management, and analytical tools and methodologies to achieve Mayo goals

• Conducting information security assessments

• Addressing information security questions and inquiries from business, clinical areas, and other OIS teams

• Ensuring appropriate treatment of cybersecurity risk and monitoring compliance to Mayo’s Information Security policies, processes and procedures

• Creating, supporting, and evaluating security prototypes

• Administering Information Security processes and tools that enable the organization to operate effectively and efficiently

• Creating policies, processes and procedures and guiding them through the approval process

• Handles a varied workload of projects with multiple priorities

• Staying current on information security, technology and healthcare trends and institutional changes

• Using excellent interpersonal skills to include presentation, negotiation, influencing, team facilitation and written communications

• Effectively managing time

• Assists with directing the work of Analysts and Associate Analysts

• Drafting communication of risk and complex cyber security topics to a diverse audience.

Additional qualifications may apply (see additional experience and/or qualifications):

• Organizational Change Management – particular focus on Procsi’s ADKAR model

• Project Management – particular focus on the Project Management Body of Knowledge (PMBOK)

• Business Analysis – particular focus is on the Business Analysis Body of Knowledge (BABOK)

Qualifications

Master's degree in applicable field and 4 years' experience, or Bachelor’s degree in applicable field and 5 years’ experience. Pertinent fields of study and experience includes (but is not limited to) the following: information security, operational analysis, process change, electronic systems implementation, leadership, systems analysis and project management with broad-based key enterprise initiatives.

Must have one of the following certifications (or equivalent) at time of hire. In lieu of certification at time of hire, candidate must pass the exam within three years and complete the certification process once years of service requirements of the certifying body have been met.

• CISSP

• CISM

• HCISPP

• GSEC

• OSCP

Preferred Qualifications:

• Knowledge of security principles, frameworks, standards, and best practices

• Experience in developing, documenting, implementing, and testing processes and procedures

• Ability to analyze complex data and information and provide actionable insights and solutions

• Strong project management skills and ability to manage multiple tasks or activities simultaneously

• Excellent communication skills and ability to collaborate with diverse stakeholders across the organization

• Ability to to a diverse and changing environment

• Comfortable in making decisions while seeking guidance when needed

Authorization to work and remain in the United States, without necessity for Mayo Clinic sponsorship now, or in the future (for example, be a U.S. Citizen, national, or permanent resident, refugee, or asylee). Also, Mayo Clinic does not participate in the F-1 STEM OPT extension program.

Exemption Status

Exempt

Compensation Detail

$53.37 - $77.39 / hour

Benefits Eligible

Yes

Schedule

Full Time

Hours/Pay Period

80 hours / Pay period

Schedule Details

Core work hours are 8am -5pm; Monday - Friday. Presently, on-call support is not provided but the ability to flex time is necessary at times (<5%).

Weekend Schedule

Ability to flex time is necessary at times (<5%)

International Assignment

No

Site Description

Just as our reputation has spread beyond our Minnesota roots, so have our locations. Today, our employees are located at our three major campuses in Phoenix/Scottsdale, Arizona, Jacksonville, Florida, Rochester, Minnesota, and at Mayo Clinic Health System campuses throughout Midwestern communities, and at our international locations. Each Mayo Clinic location is a special place where our employees thrive in both their work and personal lives. Learn more about what each unique Mayo Clinic campus has to offer, and where your best fit is. (https://jobs.mayoclinic.org/alllocations)

Affirmative Action and Equal Opportunity Employer

As an Affirmative Action and Equal Opportunity Employer Mayo Clinic is committed to creating an inclusive environment that values the diversity of its employees and does not discriminate against any employee or candidate. Women, minorities, veterans, people from the LGBTQ communities and people with disabilities are strongly encouraged to apply to join our teams. Reasonable accommodations to access job openings or to apply for a job are available.

Recruiter

Miranda Grabner

Equal opportunity

As an Affirmative Action and Equal Opportunity Employer Mayo Clinic is committed to creating an inclusive environment that values the diversity of its employees and does not discriminate against any employee or candidate. Women, minorities, veterans, people from the LGBTQ communities and people with disabilities are strongly encouraged to apply to join our teams. Reasonable accommodations to access job openings or to apply for a job are available.