Information Security Intern - Remote

The Information Security Intern is part of the Information Security Office (ISO), which resides on the Information Security team and reports to the Information Security Director. As our Information Security Intern you will collaborate with other cybersecurity team members to promote the ISO operational security standards and compliance with regulatory needs. The primary purpose of this position is to monitor the effectiveness of implemented security controls and define new operational capabilities for the protection of enterprise information assets. This internship is remote and temporary, working up to 29 hours per week. What You'll Do: Perform security assessments, control effectiveness review, and cyber incident response Build and write scripts/queries to assess the security posture of CIS infrastructure Provide regular reporting on the status of the information security program to senior staff. Ensure continued compliance of the security and privacy programs with all applicable laws and regulations Assist with security incidents and events to protect corporate information assets, including IP, data, and company reputation Develop and monitor continuous audit and assessment practices; Support the implementation and maintenance of current laws, regulations, and industry best practices. Maintain a current understanding of the Cyber threat landscape Communicate best practices and risks across the organization Assist with internal Phishing engagements and vulnerability management. Other tasks and responsibilities as assigned What You'll Need: Technical knowledge of different types of networking, applications and operating systems A working knowledge of the CIS controls and implementation strategies Strong attention to detail Excellent interpersonal skills and professional demeanor Excellent verbal and written communication skills Must be authorized to work in the United States It's a Plus if You Have: Knowledge of or experience with governance concepts related to Information Security and privacy Previous experience with advanced security implementation (honeypots, security response automation, high availability monitoring) Blue, Red, or Purple team experience Physical security experience At CIS, we are committed to providing an inclusive environment in which the diverse backgrounds, experiences, and views of our employees, members, and customers are valued and respected. It is through this commitment that we are able to work together towards our common mission: to make the connected world a safer place. Compensation Range: USD$20.30 - $25.38 Welcome to our employment section. Here you can view our current job openings and apply for positions online. Can't decide on just one opening? Our online application system allows you to easily apply to additional positions, after creating your profile! CIS takes pride in providing a comprehensive benefits package and supportive work environment. We offer a competitive total rewards package at the Center for Internet Security: Base salary is determined on a number of factors including, but not limited to, education, experience and skills Health (PPO, EPO, HSA), Dental & Vision Insurance eligibility starting from the first day of hire $500 wellness card for Health Coverage Participants 401(k) with 4% Company Match, vested from the first day of hire Flexible Spending Account (FSA) & Dependent Care Account (DCA) Life Insurance Bonding Leave Paid Volunteering Program Bonus eligibility Paid Time Off (PTO) inclusive of vacation, personal and sick time Paid Holidays Wellness Program Employee Engagement Activities Professional Development Opportunities Tuition Reimbursement Student Loan PayDown Program Employee Referral program Employee Assistance Program The Center for Internet Security (CIS) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit responsible for industry-leading best practices for securing IT systems and data. CIS is also a trusted resource for cyber threat prevention, protection, response, and recovery for U.S. State, Local, Tribal, and Territorial (SLTT) government entities and election offices. CIS has an award-winning reputation for investing in its people (click here to learn more), as well as continuous learning and development. We offer our employees diverse opportunities to expand their impact personally and professionally, in their local communities, and among one another. Core Leadership Principles drive our employees at every level of the organization, empowering them to be leaders in everything they do. We are a community-driven nonprofit, responsible for the CIS Controls® and CIS Benchmarks™, globally recognized best practices for securing IT systems and data. We lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats. Our CIS Hardened Images® provide secure, on-demand, scalable computing environments in the cloud. CIS is home to the Multi-State Information Sharing and Analysis Center® (MS-ISAC®), the trusted resource for cyber threat prevention, protection, response, and recovery for U.S. State, Local, Tribal, and Territorial government entities, and the Elections Infrastructure Information Sharing and Analysis Center® (EI-ISAC®), which supports the rapidly changing cybersecurity needs of U.S. elections offices.