Technology Risk Management/Governance Risk & Compliance Internship - Summer 2020 Technology Risk Management/Governance Risk &  …

Chicago Mercantile Exchange
in Chicago, IL, United States
Permanent, Full time
Last application, 14 Jan 20
Competitive
Chicago Mercantile Exchange
in Chicago, IL, United States
Permanent, Full time
Last application, 14 Jan 20
Competitive
Technology Risk Management/Governance Risk & Compliance Internship - Summer 2020
Description
CME Group is the world's leading and most diverse derivatives marketplace. But who we are goes deeper than that. Here, you can impact markets worldwide. Transform industries. And build a career shaping tomorrow. We invest in your success and you own it, all while working alongside a team of leading experts who inspire you in ways big and small. Joining our company gives you the opportunity to make a difference in global financial markets every day, whether you work on our industry-leading technology and risk management services, our benchmark products or in a corporate services area that helps us serve our customers better. We're small enough for you and your contributions to be known. But big enough for your ideas to make an impact. The pace is dynamic, the work is unlike any other firm in the business, and the possibilities are endless. Problem solvers, difference makers, trailblazers. Those are our people. And we're looking for more.

To learn more about what a career at CME Group can offer you, visit us at  www.wherefuturesaremade.com .

CME Group (www.cmegroup.com) is the world's leading and most diverse derivatives marketplace. But who we are goes deeper than that. Here, you can impact markets worldwide. Transform industries. And build a career shaping tomorrow. We invest in your success and you own it - all while working alongside a team of leading experts who inspire you in ways big and small. Joining our company gives you the opportunity to make a difference in global financial markets every day - whether you work on our industry-leading technology and risk management services, our benchmark products or in a corporate services area that helps us serve our customers better.
With 2,500 employees located around the world, we're small enough for you and your contributions to be known. But big enough for your ideas to make an impact. The pace is dynamic, the work is unlike any other firm in the business, and the possibilities are endless.
Problem solvers, difference makers, trailblazers. Those are our people. And we're looking for more.

We are looking for motivated and talented students who want to help us solve some of the most complex challenges in financial technology. The Global Information Security (GIS) Department is a critical component of the Technology Division and is focused on delivering a safe and secure environment for the operation of our markets. This internship will have shared responsibilities in the disciplines of third-party risk management, security awareness, and Governance Risk & Compliance (GRC) platform support. 

Third-party security risk assessments are conducted on products / services being considered by CME Group to mitigate the security risks and threats associated with third-party vendors to CME Group. Additionally, the Security Management team educates the CME Group workforce through its security awareness education program on their responsibility to help protect the confidentiality, availability and integrity of CME Group's information and information assets. This is accomplished through the review, design and customization of all security awareness computer-based training course materials, including simulated internal phishing campaigns, as well as other security awareness training materials.

The GRC team are the gatekeepers of the GRC platform. They are focused on designing, building and deploying customer focused solutions with passion and precision. Potential duties could include requirements gathering, analysis, high-level design, configuration, integration, testing, deployment, and post-deployment support.

The intern can expect to participate in several core roles, including:
  • Assisting in the execution of third-party vendor security risk assessments
  • Supporting the design and customization of security awareness training course materials as well as internal phishing campaigns
  • Developing additional security awareness training materials (e.g., deployment of security related screensavers, news articles, employee communication emails, etc.)
  • Assisting in the development of GRC Application and/or related API's
  • Participating in the SDLC Lifecycle of application development (Analyze, Design, Build, Test and Deploy)
  • Assisting in the documentation of Business Processes


Minimum qualifications:
  • Computer Science, Information Systems or Cyber security majors with an interest in Information Security and/or Risk Management
  • Must be team oriented with a high level of professionalism
  • Excellent written and verbal communication skills, with a strong attention to detail
  • Holds self accountable to meet commitments
  • Ability to collaborate with others to get work done and achieve stated objectives
  • Understands the need to be flexible and adapt in real time to match different situations
  • Strong organizational skills
  • Computer proficiency in MS Office including Word, Excel, and PowerPoint
  • Familiarity with technology frameworks and standards such as: NIST, COBIT, ISO/IEC, PCI DSS, etc. a plus, but not required

Bonus qualifications:
  • Experience with computer programming or business processes
  • Experience with data extraction and analysis

For EU Residents, the Candidate Privacy Policy can be found here.
Close
Loading...