Job Description

Who We Are

At Cboe, we inspire our people to solve complex challenges together because what we do matters. We provide the financial infrastructure that powers the global economy through work that invites connection. Our people power our trusted markets and in turn, we power them through robust benefits, perks and a company culture that prioritizes connection, collaboration and inclusivity. As a leading provider of market infrastructure and tradable products, Cboe delivers cutting-edge trading, clearing and investment solutions to market participants around the world.

Internship Program Overview

This program is designed to engage you in day-to-day activities and projects contributing towards our team and corporate goals scheduled to begin in September and last through December. You will also have the opportunity to apply what you have learned in the educational offerings to actual business situations. As a summer intern at Cboe, you will have the unique opportunity to learn about the financial industry through various educational offerings.

The Information Security Vulnerability Management Intern position will provide exposure to the various functions, tools, and activities focusing on reducing Cboe’s attack surface by way of vulnerability management. Help us identify and patch all the things!

As part of a growing, dynamic global team, the Vulnerability Management Intern will have the opportunity to learn and contribute via a range of opportunities that provide real-world, hands-on cybersecurity experience. You will gain experience with patchable network vulnerabilities, application vulnerabilities, operating system vulnerabilities, commercial vulnerability scanning tools, segmented network architectures, systems management automation for both Windows and Linux, IP address management, and will be introduced to metrics reporting in the context of a global organization. You will interact with members of the entire Global Information Security Team along with Network Engineering, Windows Engineering and Linux Engineering teams to identify, report, and help solve problems.

Internship Requirements:

The ideal candidate will be an undergraduate student with a strong technology emphasis, majoring in Information Security, Cyber Security, Computer Science, Engineering or equivalent exposure and experience related to these fields. The candidate should be eager to learn quickly and able to communicate clearly and professionally. This candidate should have base knowledge of security concepts, versed in TCP/IP, common ports/services, and overall networking concepts such as routing, switching and firewalls. They should be able to perform basic administrative tasks on both Linux and Windows based systems. Ideally some familiarity with operating systems or interfaces for networking/security equipment such as Nexpose, Qualys, or Tenable vulnerability scanners. Strong skills in Python and/or PowerShell are beneficial but are not required. In addition, you should have working knowledge of Microsoft Office products including Excel, Word and PowerPoint. The intern will present a final report or complete a project tailored as much as possible to their particular area of interest.

Duties and Responsibilities:

• Monitor the security ticket queue for vulnerability management related tasks, troubleshoot and resolve issues in a timely manner

• Assist with day-to-day operational tasks, such as scan monitoring, scan issue resolution, reporting of vulnerabilities to system owners from scan results leveraging a ticketing system

• Remain aware of breaking vulnerability news stories by leveraging various threat intelligence feeds

• Investigate and remediate any vulnerability alerts relating to several different cloud environments

• Document/improve vulnerability management procedures

• Perform additional duties and assignments as requested

Equal Employment Opportunity
We're proud to be an equal opportunity employer - and celebrate our associates' differences, including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, and Veteran status.

#LI-AD1

Any communication from Cboe regarding this position will only come from a Cboe recruiter who has a @cboe.com email or via LinkedIn Recruiter. Cboe does not use any other third party communication tools for recruiting purposes.