Profiles search

Sarah Jopp

Principal Information Security Analyst at Mayo Clinic
Chicago, IL, United States

Details

Education: Master of Business Administration (MBA)



Augsburg College

2007 : 2009

Bachelor's degree

Finance, Business Administration

Winona State University

2001 : 2006
Experience: Cybersecurity Resilience

2021 : Present

Mayo Clinic

Principal Information Security Analyst

Clinical Information Security and Cybersecurity Resilience

2016 : 2021

Mayo Clinic

Sr Information Security Analyst

Governance, Risk Management, and Compliance

2014 : 2016

Mayo Clinic

Information Security Analyst

The Department of Planning Services provides unbiased, accurate, replicable data, analysis and consultation to support Mayo leadership in decision-making and the setting of strategic direction.

As a Business Analyst I facilitated data standardization, data delivery, business requirements gathering, testing, and end-user training in support of data stewardship and business intelligence policies, processes, solutions, and tools for the enterprise.

2012 : 2014

Mayo Clinic

Business Analyst

As an analyst in the Internal Control Evaluation (ICE) Office I utilized the Sarbanes-Oxley legislation as a guideline to annually assess the effectiveness and efficiency of Mayo’s internal controls related to financial reporting.

2007 : 2012

Mayo Clinic

Analyst II
Company: Mayo Clinic
Years of Experience: 18
Spoken Language: English, Spanish

Skills

Access, Agile & Waterfall Methodologies, Agile Methodologies, Analysis, Analytic Reporting, Auditing, Budgeting, Business Analysis, Business Intelligence, Business Objects, Business Process Improvement, Compliance, Contract Negotiation, Corporate Governance, CRR, Crystal Reports, Customer Service, Cybersecurity, Data Analysis, Data Warehousing, Decision-Making, Finance, Financial Reporting, Healthcare, Healthcare Information Technology, HITRUST, Information Security, Internal Controls, IT Audit, Medical Devices, Medical Device Security, Microsoft Excel, Microsoft Office, NIST 800-53, Oracle, PCI DSS, Process Improvement, Reporting Requirements, Risk Management, Sarbanes-Oxley, Security, SharePoint, Software Development Life Cycle (SDLC), Software Documentation, Team Building, Time Management, Training, User Acceptance Testing, Visio, Vulnerability Assessment