Senior Information Security Engineer (Remote)
About the position The Senior Information Security Engineer at Mayo Clinic plays a crucial role in enhancing the organization's cybersecurity posture. This position involves hands-on security research, penetration testing, and vulnerability assessments to protect the clinic's IT infrastructure and medical devices. The engineer will collaborate with various teams to identify and mitigate security vulnerabilities, ensuring that patient care remains uncompromised. The role emphasizes continuous learning and adaptation to new technologies and threats in the cybersecurity landscape.
Responsibilities
- Work with business partners within the department to achieve organizational and OIS goals
- Apply technical expertise in penetration testing, vulnerability research, red teaming, code auditing, and reverse engineering to perform in-depth security assessments of IT infrastructure (on-prem and cloud), medical devices, and various types of software (including web and mobile applications)
- Identify, understand, and explain the root cause of technical security vulnerabilities and clearly report steps to reproduce a vulnerability
- Develop and recommend technical strategies to mitigate or remediate identified vulnerabilities to asset owners
- Regularly research and learn new TTPs in public and closed forums, and work with teammates to assess risk and implement and validate controls as necessary
- Develop and maintain tools and scripts used in penetration-testing and red team processes
- Support purple team exercises designed to build strength across the cybersecurity operations center, threat hunting, and red team
- Train offensive and defensive colleagues on new TTPs and mentor junior teammates
- Occasionally attend and participate in risk assessment or policy discussion meetings
- Undertake complex projects requiring specialized technical knowledge
- Perform other security-related duties or enhancements as assigned
- Establish timelines and delivery of requirements.
Requirements
- Strong written and verbal skills
- Professional, focused, penetration testing experience
- Good understanding of at least three operating systems (Microsoft Windows, GNU/Linux, Android, macOS, or iOS)
- Advanced experience with security tools, including Metasploit Framework, Burp Suite, Frida, Wireshark, and Responder
- Provide security recommendations about cryptographic implementations
- Understands system-level concepts
- Understands OWASP, NIST CVSS, and the software development lifecycle (SDLC)
- Experience in at least one programming language (Rust, Go, Java, .NET, C or C++) or one scripting language (Python, PHP, Ruby)
- Experience in testing at least one of the following: cloud infrastructures (AWS, GCP) mobile applications (iOS and Android)
- Have an astute attention to detail
- Highly organized and efficient
- Demonstrates a deep and broad knowledge of standard operating procedures, workflows and supporting technology across numerous critical user areas and an in-depth knowledge of multiple computing technologies either being actively used or of significant interest to Mayo; understands how systems fit into larger picture of technology at Mayo
- Capacity to work remotely, independently, and be willing to seek advice/assistance.
Nice-to-haves
- Experience in secure systems architecture designs
- Experience in reverse engineering (x86, x64, ARM32, ARM64 architectures), and familiarity with relevant tools (IDA Pro or Ghidra)
- Experience with hardware security testing
Benefits
- Medical: Multiple plan options
- Dental: Delta Dental or reimbursement account for flexible coverage
- Vision: Affordable plan with national network
- Pre-Tax Savings: HSA and FSAs for eligible expenses
- Retirement: Competitive retirement package to secure your future
Apply tot his job Apply To this Job