2021Information Security Summer Intern in Raleigh, NC at Advance Auto Parts

Date Posted: 10/4/2020

Career Snapshot

Career Description



Job Description

Information Security 2021 Summer Intern

Location: Raleigh, NC or Roanoke, VA

Schedule – 40 hours a week, Monday – Friday // May 24 – July 30, 2021

Advance Auto Parts, Inc., a leading automotive aftermarket parts provider in North America, serves both the professional installer and do-it-yourself customers. Advance operates approximately 5,100 stores, 126 Worldpac branches and serves approximately 1,300 independently owned CARQUEST branded stores in the United States, Puerto Rico, the U.S. Virgin Islands and Canada.

We are currently searching for an Information Security Intern to join our Cyber Security Team in Raleigh, NC.  The Information Security Intern will work to support the cyber security team of the organization.  In this role you will, under direct supervision, work to ensure the security of Information Systems assets within the company and to protect systems from intentional or inadvertent access or destruction.   

General Job Responsibilities:

  • Support Governance, Risk and Compliance (GRC) team including processes related to Disaster Recovery, SOX and PCI Compliance, Data Protection and Security Awareness and Training
  • Work with broader information security team including architecture and engineering, , security operations and vulnerability management teams on various efforts, projects, and programs to improve our security
  • Help to educate the company on pertinent cybersecurity topics, and conduct phishing simulations to evaluate risk factors
  • Respond to requests for assistance from business units and other internal customers
  • Contribute to ongoing improvement of AAP’s security posture
  • Keep Information Security Leadership apprised of activities, issues, commitments, etc.
  • Work with audit and internal controls teams to ensure identified issues are remediated, and help to expand data protection processes to keep company data safe and protect sensitive information
  • Help to identify risks to the security of the company and develop remediation plans to address those risks

Position Requirements:

Required Skills & Experience:

  • Basic familiarity with security controls for operating systems, applications, and network devices
  • Familiarity with basic security concepts, trends, and threats
  • Working knowledge of internal controls and compliance including access requirements, segregation of duties, IT General controls
  • Familiarity or experience with governance frameworks like SOX, NIST, ISO
  • Basic knowledge of policy creation and enforcement
  • Basic understanding of Data classification, protection, encryption and retention requirements
  • Familiarity with DLP rules and policies
  • Ability to create reporting and metrics to evaluate effectiveness of process changes
  • Good writing and communication skills to help educate the company
  • Working knowledge of cloud and on-prem environments, contingency planning and disaster recovery concepts

Requirements:

•Must be a 2021 rising Junior or Senior actively pursuing a Bachelor's degree or higher in Computer Science, Computer Security, Information Technology or relevant field