Intern - Info Security

The Application Protection Team within the Mayo Clinic Office of Information Security (OIS) seeks interns to support our enterprise Vulnerability Management Program and Secure-SDLC. In return, interns will acquire valuable knowledge and real-world experience in cybersecurity that will complement their studies. Application Protection identifies and reports vulnerabilities, including CVEs, while also providing remediation advice to technical, clinical, and business stakeholders. We assess risk levels based on factors such as the number of affected assets, network exposure, and exploit maturity. These operational tasks are performed through the following services offered by our team to Mayo Clinic: •    Threat and Exposure Management o    External attack surface discovery o    Vulnerability Threat Monitoring and Triage •    Continuous Vulnerability Scanning o    Dynamic Application Security Testing o    Enterprise Asset Scanning (Servers, Endpoints, Containers, IoT, etc) •    Secure Software Development Lifecycle o    Static Application Code Scanning o    Container lifecycle and vulnerability management o    Risk & Exception management Our interns provide essential support to maintain these services and work on tasks to enhance efficiency through automation. This temporary position requires applicants to be available for a duration of 6-12 months, working a minimum of 20 hours per week and a maximum of 40 hours per week. This is a remote position within the United States.  Mayo Clinic will not sponsor or transfer visas for this position including F1 OPT STEM.