EIC Information Security Operations Engineer Intern

Summary: Cushman & Wakefield is a global commercial real estate services leader with 52,000 professionals worldwide, committed to driving forward for their clients and communities. The selected candidate will work within the Security Operations Center to enhance security alerts, responses, and remediation of detected issues, while collaborating with other teams to maintain a secure environment. Responsibilities: - Serves as the regional point of contact for security escalations/requests and escalates requests to Security architecture as needed - Responsible for the identification and assessment of enterprise risks. Identifies, evaluates, and tests appropriate security products, tools, and systems to ensure alignment with the CushWake global security posture - Articulates security policies, guidelines and standards to customers and developers. Able to apply theories, concepts, principles, and methodologies to difficult but conventional assignments. Assignments are given in terms of objectives to be met - Works independently within an established framework - Develop techniques and procedures for conducting IS and cyber security risk assessments and compliance audits, the evaluation and testing of hardware, firmware, and software for possible impact on system security, and the investigation and resolution of security incidents - Implement IS and cyber security policies and take measures against intrusion, frauds, attacks, or leaks - Continue to build knowledge of the organization, processes, and customers. Performs a range of straightforward assignments. Use prescribed guidelines or policies to analyze and resolve problems. Receives a moderate level of guidance and direction - Partners with Security Architecture on critical scope delivery - Reviews security INC(s) to ensure proper processes have been followed and to identify additional IoA(s)/IoC(s) - Perform proactive threat hunting using hypothesis, and telemetry from endpoints, identities, cloud and network to identify malicious activity, abnormal behaviors, and emerging attacker techniques - Serves as the security stakeholder for IR/MIM activities until Security Architecture and/or senior leadership can engage Required Qualifications: - bachelors-degree - Junior or Senior pursuing a Bachelor's or Master's degree in Computer Science, Engineering, Information Systems, Cybersecurity, or a related degree - Experience in security domain with exposure to tools such as CrowdStrike, ZScaler, Palo Alto, Mimecast, MS Defender is a plus - Highly skilled and knowledgeable within the Microsoft environment and toolset - Energetic and a quick learner - Good communication skills with a positive attitude - A willingness to learn new technology - Experienced in incident response lifecycle and SLAs - Any Security Certification is an added advantage Required Skills: Incident Response, Cybersecurity concepts and principles, NIST Security Framework, Networking architecture, Application architecture, System architecture, Web technology, Internet protocols, ICS protocols, Windows operating system security, Mac operating system security, Zscaler, CrowdStrike, Mimecast, Wiz, Microsoft Defender, Conditional Access Policies, Advanced Persistent Threat (APT) analysis, Threat hunting methodologies, SIEM, EDR, Telemetry analysis, CVSS risk classification, Vulnerability management lifecycle, Microsoft environment and toolset Benefits: Health, vision, and dental insurance, Flexible spending accounts, Health savings accounts, Retirement savings plans, Life, and disability insurance programs, Paid and unpaid time away from work