Intern, Cyber Risk Management - Remote

American Heart Association

Mar 8, 2024

Applications are closed

Internship
Full-time
Starts on May 19
Off-cycle Internship
Software Engineering
Dallas
Remote

Requirements

An understanding of key technology concepts such as access control, confidential data, encryption, business continuity, info-sec scans, and vendor apps.
Knowledge of IT organization business processes and systems including (IT Security, data management, architectural and planning, technology life cycle management, regulatory concerns).
Beginning understanding of risk management functions, including IT audit, cyber security, and/or IT compliance.
Experience or knowledge of 3rd party/vendor management lifecycle.
Strong oral and written communication skills to work effectively with employees at all levels of the organization.
Be receptive to mentorship from manager and able to effectively communicate results to manager.
Ability to be highly productive, both working alone and as part of a team.
Ability to deal expertly in a corporate or non-profit environment and assume responsibility for guiding projects and programs from inception through completion.
Ability to work in a fast-paced, dynamic environment handling multiple priorities involving multiple entities
Intermediate to excellent proficiency in MS Word, Excel, Outlook and PowerPoint.
Required Equipment: Reliable WiFi Connection.
Minimum availability of 20 hrs/wk, M-F between the hours of 8:30am-5pm.
Must be legally authorized to work in the United States for any employer without sponsorship, now or in the future. For any roles working remotely, the work must also be performed inside the United States, not in a foreign country.

Responsibilities

Act as ‘first line of defense’ analyzing and assessing third party contracts for technological risks and compliance.
Maintain inventory of all digital assets and applications.
Propose and document risk mitigation strategies in partnership with the business.
Liaison with Legal Department’s risk analysis and documentation department to ensure IT and Legal work collaboratively to secure the organization.
Gather and document requirements for CyberSecurity Risk Department initiatives including internal PCI Compliance Attestation, Penetration Testing, etc.
Learn to write CyberSecurity new policies, evaluating existing policies, and maintaining policy library.
Learn how to conduct third-party certificate and attestation audits to ensure all third-party contracts.
Work alongside Risk manager and learn how to handle third parties during data breach or security incidents to document potential impacts to the organization.
Be a part of a strong CyberSecurity team through collaboration, communication, and knowledge share.
Investigate applicable regulatory risks from changes or additions to regulatory guidance and requirements from legal and Cyber.

American Heart Association

To be a relentless force for a world of longer, healthier lives.

Science & Healthcare

Industry

1001-5000

Employees

1924

Founded Year

Mission & Purpose

Our mission : To be a relentless force for a world of longer, healthier lives. As the nation's oldest and largest voluntary health organization. Our purpose is to help Americans live heart healthy and prevent America's No. 1 and No. 5 killers, heart disease and stroke. We are advocates of good health and promoters of positive behaviors, nutritious eating habits and healthy lifestyles. We also fund cutting-edge research and professional education programs. We promise to have an extraordinary impact on your life by empowering you and your loved ones to save lives, live healthier and enjoy more peace of mind about cardiovascular health. 2024 Impact Goal: Every person deserves the opportunity for a full, healthy life. As champions for health equity, by 2024, the American Heart Association will advance cardiovascular health for all, including identifying and removing barriers to health care access and quality.