Information Security Intern

About The Position

Requirements

• Basic understanding of cybersecurity principles, firewalls, IDS/IPS, security frameworks, and risk management fundamentals.
• Basic understanding of networking, secure online connection, access control, secure email, backup file protection.
• General familiarity with security tools such as SIEM, SOAR, vulnerability management tools, Data Loss Prevention (DLP), etc.
• Experience with OS (Linux, MacOS, Windows, etc.).
• Knowledge of industry security frameworks such as NIST CSF, ISO 27001, CIS, etc.
• Familiarity with cloud security practices (e.g., AWS, Azure) is a bonus.
• Familiarity with scripting or programming languages like Python, Bash, or PowerShell is a plus.
• Enrolled and pursuing a four-year Bachelor's degree in Information Security, Cybersecurity, Computer Science, Information Technology or a related field from an accredited college or university, and able to provide transcripts upon request.
• Must have a GPA of at least 3.0 (overall or within your program) to qualify for consideration in the Intern Program.
• Must be authorized to work in the United States and will not require sponsorship now or in the future.

Responsibilities

• Assess with monitoring the MillerKnoll enterprise in IT, OT and AWS environments; determine critical issues and its impact to the organization; assist with remediation and post-mortem filing of all critical events.
• Monitor security alerts from firewalls, intrusion detection systems (IDS), and other Advanced Threat Protection, Endpoint Detection and Response (EDR) tools.
• Analyze and report on suspicious activity, anomalies, potential threats, and vulnerabilities.
• Support the incident response team in investigating security incidents.
• Help document and execute response plans to mitigate potential threats.
• Conduct table-top simulations running various cyber security incident scenarios.
• Conduct vulnerability assessments on MillerKnoll digital assets using vulnerability tools, processes, and procedures.
• Assist in identifying, reporting, and tracking security vulnerabilities.
• Provide support in the deployment and execution of patches to ensure timely security updates.
• Help develop and distribute educational materials to raise employee awareness on information security best practices.
• Support the organization of internal security training sessions and awareness programs.
• Assist in reviewing and updating security policies, procedures, and guidelines.
• Assess and identify gaps within the technology environments based on NIST security framework; assist in applying appropriate controls to improve NIST CSF scoring.
• Participate in security risk assessments and help evaluate potential risks to the company's assets.
• Assist in developing risk assessment profiles and metrics.
• Assist in developing risk mitigation strategies and recommending security improvements.
• Conduct research on new security threats, vulnerabilities, and trends in cybersecurity.
• Maintain detailed documentation of security incidents, policies, procedures, and risk assessments.

Benefits

• Mentorship from experienced professionals
• Exposure to impactful projects and business challenges
• Opportunity to develop technical and analytical skills
• Collaborative and inclusive work culture