Information Security Analyst - Intern

The Information Security Analyst - Intern is assigned to the Office of the Chief Information Security Officer (CISO) at the Center for Internet Security. Reporting to the Information Security Operations Manager, this position will collaborate with other cybersecurity team members to promote the CISO operational security standards and help support the growth of the CISO organization. The primary purpose of this position is to monitor the effectiveness of implemented security controls and define new operational capabilities for the protection of the enterprise information assets.

The Center for Internet Security (CIS) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit responsible for industry leading best practices for securing IT systems and data. We lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats.

Hourly Rate: $15 - $20

• Perform security assessments, control effectiveness review, and cyber incident response
• Build and write scripts/queries to assess the security posture of CIS infrastructure
• Provide regular reporting on the status of the information security program to senior staff
• Ensure continued compliance of the security programs with all applicable laws and regulations
• Assist with security incidents and events to protect corporate IT assets, including IP, data, and company reputation
• Develop and monitor continuous audit and assessment practices
• Support the implementation and maintenance of the most current version of the CIS Critical Security Controls
• Maintain a current understanding of the cyber threat landscape
• Communicate best practices and risks across the organization
• Other tasks and responsibilities as assigned

• Technical knowledge of different types of networking, applications and operating systems
• Working knowledge of the CIS controls and implementation strategies
• Strong attention to detail
• Excellent interpersonal skills and professional demeanor
• Excellent verbal and written communication skills
• Must be authorized to work in the United States

It's a plus if you have:

• Knowledge of or experience with Zero Trust concepts and infrastructure
• Previous experience with advanced security implementation (honeypots, security response automation, high availability monitoring)
• Blue, Red, or Purple team experience

At CIS, we are committed to providing an inclusive environment in which the diverse backgrounds, experiences, and views of our employees, members, and customers are valued and respected. It is through this commitment that we are able to work together towards our common mission: to make the connected world a safer place.