Enterprise Information Security Intern
Detroit, Michigan, Us
•Assisted with Enterprise Information Security - Security Framework responsibilities in the areas of governance, risk, compliance (GRC), and program maturity. •Reviewed findings/non-compliance gaps resulting from internal/external assessments and audits to develop mitigation plan. •Assisted/performed in security assessments and performs security attestations. Participated in security investigations and compliance reviews as requested. •Worked with the Security Operations Center (SOC) managing cyber threats, analyzing blocked emails for malware and legitimacy.•Maintained tracking status for Information Security policy, standard, and processes reviews and exceptions. •Created, disseminated and updated documentation of identified information security risks and controls.•Evaluated cyber threats and their impact within different frameworks (HITRUST, NIST, Etc.), and analyzed/compared framework documentation with current threats. •Assisted the Information Security Assurance team in creating Splunk dashboards tracking metrics in regard to HITRUST controls.•Supported Splunk developers with communication between the technical team and management.•Analyzed over spam emails daily for malware, phishing attempts, threats, etc.•Participated and provided support during audits, assessments, and other required third-party reviews.