Intern - Information Security - Risk

The Security Testing Team (STS) within the Mayo Clinic Office of Information Security (OIS) seeks interns to support our enterprise vulnerability management program. In return, interns will acquire valuable knowledge and real-world experience in cybersecurity that will complement their studies.

STS identifies and reports vulnerabilities, including CVEs, while also providing remediation advice to technical, clinical, and business stakeholders. We assess risk levels based on factors such as the number of affected assets, network exposure, and exploit maturity. These operational tasks are performed through the following services offered by our team to Mayo Clinic:

• Continuous Monitoring and Scheduled Tests
        a. Static and Dynamic Application Security Testing
        b. Enterprise Asset Scanning (Servers, Endpoints, Containers, IoT, etc)
        c. Phishing Simulation
        d. Daily Vulnerability Assessment and Coordination of newly announced industry threats
• Point-in-Time Testing Driven by a Risk-Based Queue
        a. Technical Vulnerability Assessments
        b. Penetration Testing
        c. Red Team Operations
   

Our interns provide essential support to maintain these services and work on tasks to enhance efficiency through automation. This temporary position requires applicants to be available for a duration of 6-12 months, working a minimum of 20 hours per week and a maximum of 40 hours per week.

The primary purpose of the Internship is to provide an intern with relevant field experiences in their chosen field of study. One or more mentors will be assigned to the intern to provide instruction, guidance and to assess performance. The intern is responsible for observing the functions and processes of the assigned work unit. In addition, the intern may be given selected work assignments to reinforce the learning experience, to assess the performance levels and to provide benefit to the work unit. The intern will be responsible for completing all internship-related assignments and reports for both Mayo and the participating educational facility. The duration and timing of the internship will be arranged with the intern.

*This position is 100% remote work. Individual may live anywhere in the US.
**This vacancy is not eligible for sponsorship / we will not sponsor or transfer visas for this position.

During the selection process, you may participate in an OnDemand (pre-recorded) interview that you can complete at your convenience. During the OnDemand interview, a question will appear on your screen, and you will have time to consider each question before responding. You will have the opportunity to re-record your answer to each question - Mayo Clinic will only see the final recording. The complete interview will be reviewed by a Mayo Clinic staff member and you will be notified of next steps.

The incumbent must be enrolled in a bachelors, masters or graduate degree program from a college or university with a demonstrated focus on cybersecurity in their studies. Typically, this internship would occur after the student has taken most of the courses required by the degree program.

Where applicable - the degree program must require an internship as a graduation requirement (or offer as a credit option).

This position will accept applications until 02/24/2024. This deadline may be extended if the necessary candidate pool is not met by this date.

Why Mayo Clinic
Mayo Clinic is top-ranked in more specialties than any other care provider according to U.S. News & World Report. As we work together to put the needs of the patient first, we are also dedicated to our employees, investing in competitive compensation and comprehensive benefit plans – to take care of you and your family, now and in the future. And with continuing education and advancement opportunities at every turn, you can build a long, successful career with Mayo Clinic. You’ll thrive in an environment that supports innovation, is committed to ending racism and supporting diversity, equity and inclusion, and provides the resources you need to succeed.