Security Analyst Intern

EBSCO Information Services (EIS) provides a complete and optimized research solution comprised of e-journals, e-books, and research databases - all combined with the most powerful discovery service to support the information needs and maximize the research experience of our end-users. Headquartered in Ipswich, MA, EIS employs more than 2,700 people worldwide, most now working hybrid or remotely. We are the leader in our field due to our cutting-edge technology, forward-thinking philosophy, and outstanding team. EIS is a company that will motivate you, inspire you, and allow you to grow. Our mission is to transform lives by providing relevant and reliable information when, where, and how people need it. We are looking for bright and creative individuals whose unique differences will allow us to achieve this inclusive mission around the world.

Basic Function and Scope:

In this role, you will perform a variety of cybersecurity and compliance activities that help protect EIS's products and our customer's data. You will work closely with other cybersecurity professionals and gain valuable exposure to cutting-edge security tools and operating environments. Risk analysis, incident investigation, vulnerability assessment.

Primary Duties:

* Conduct vulnerability assessments of cloud and on-premise environments.

* Use security tools to investigate potential security issues.

* Help develop effective security controls for development and production ecosystems.

* Assist in the management of security/privacy policies, standards, and procedures.

* Assist in the management of Vendor Risk Management program activities.

* Work with stakeholders to develop and implement security and privacy controls consistent with established policies and regulatory environments.

* Participate in reviewing Customer contracts, RFPs, Renewals, and associated documentation for security/privacy requirements and collaborate with EBSCO Legal regarding contractual obligations

* Assist in mapping control requirements across information security and privacy frameworks to identify overlapping requirements and compliance efficiencies

* Conduct audit reviews and information security risk assessments and submit results into Risk Register as needed

* Participate in regular exercises for Incident Response

What you will take away:

This is a great opportunity to get hands-on experience with cybersecurity and risk management tools and processes. EIS InfoSec is a fast paced, engaging environment that focuseson teamwork and shared responsibilities to get the job done.

Education and Training Preferences:

Basic understanding of cybersecurity concepts, such as threats (computer viruses, malware and the like) and vulnerabilities (defects in code or systems that can be exploited). Some experience with script development (Python) will be helpful. Overall, candidate must be able to work well in a team environment and be a strong self-starter. Bachelor's degree in CS or Cybersecurity

We are an equal opportunity employer and comply with all applicable federal, state, and local fair employment practices laws. We strictly prohibit and do not tolerate discrimination against employees, applicants, or any other covered persons because of race, color, sex, pregnancy status, age, national origin or ancestry, ethnicity, religion, creed, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state or local protected class. This policy applies to all terms and conditions of employment, including, but not limited to, hiring, training, promotion, discipline, compensation, benefits, and termination of employment.

We comply with the Americans with Disabilities Act (ADA), as amended by the ADA Amendments Act, and all applicable state or local law.