Security Analyst

About The Position

Requirements

• Experience supporting strategic cross-functional initiatives, especially in project management, data analysis, and strategic problem-solving.
• Comfortable managing multiple workstreams and balancing priorities to meet deliverables.
• Familiarity with Microsoft tools, particularly Microsoft Office applications.
• Knowledge of the Microsoft Power Platform for workflow automation, reporting, and solution development.
• Demonstrated agility in working with rapidly developing project scope and plan.
• Ability to identify and define problems as well as generate and recommend potential solutions.
• Experience with D3/Resolver, User Entity Behavioral Analytics (UEBA), and other client network and endpoint monitoring tools.

Nice To Haves

• Foundation in data storytelling.
• Ability to analyze information, spot trends, and clearly communicate insights to both technical and non-technical audiences.
• Familiarity with business operations and how decisions impact efficiency, risk, and organizational goals.
• Creativity and strategic thinking, including critical analysis, development of innovative solutions, and ability to contribute to forward-looking initiatives.
• Experience with third party open source intelligence providers and government open source intelligence partnerships.

Responsibilities

• Assists in the development, management and curation of the Security Enterprise Security Risk Management (GS-ESRM) Program.
• Supports the planning and execution of overarching security analysis endeavors.
• Supports the development of the ESRM approach.
• Takes a data-driven approach to make recommendations that support and advance business objectives.
• Ensures developed solutions satisfy stated requirements and business objectives.
• Applies knowledge base of relevant systems/applications as it relates to workflow, process, and problem resolution and recommends improvements.
• Researches and analyzes operational procedures and methods and recommends changes for improvement in efficiency and effectiveness.
• Identifies security threats by analyzing open source information and threat actor behavior.
• Collaborates with various Mayo Clinic departments including: the Office of Information Security, Legal, Operational Risk Management, Office of Patient Experience and Human Resources.
• Researches, develops, and evaluates procedures for the aggregation, processing, analyzing, and reporting on potential Security activities.
• Supports enterprise-wide security threat intelligence and countermeasure efforts.
• Reviews alerts, trends, or anomalies from data or in response to stakeholder inquiries using monitoring tools.
• Recommends the creation or implementation of Security policy, process, and procedures.
• Identifies and defines problems as well as generates and recommends potential solutions while involving appropriate stakeholders.
• Provides project management and analyst support for department projects.
• Consults Mayo Clinic leadership to provide unbiased and accurate information, analysis and recommendations to support and advance strategic and operational security initiatives.
• Conducts data triage of security events collected by the security records management system (D3/Resolver), third party open source intelligence providers, government open source intelligence partnerships, User Entity Behavioral Analytics (UEBA), and other client network and endpoint monitoring tools (infant protections system, video data analytics).
• Leverages data mining and integrates multiple sources of data to recommend strategic insights to best meet business needs.

Benefits

• Competitive compensation
• Comprehensive benefit plans
• Medical: Multiple plan options.
• Dental: Delta Dental or reimbursement account for flexible coverage.
• Vision: Affordable plan with national network.
• Pre-Tax Savings: HSA and FSAs for eligible expenses.
• Retirement: Competitive retirement package to secure your future.
• Continuing education and advancement opportunities