You are viewing a preview of this job. Log in or register to view more details about this job.

Summer Associate Internship (Policy Analyst - Security Standards)

Navy Federal Credit Union
Email

Standards is a team within the Security Governance & Risk (SG&R) Division of the NFCU’s Security Department.  The SG&R Division focuses on furthering the department's mission by enabling the business, helping to develop secure, quick-to-market products, and managing information security technical risk across the enterprise. 

The Standards team works to ensure that NFCU Information Security Documentation (Policies, Instructions, and Standards) is managed to help guide the continued security and confidentiality of member and employee confidential information.  In addition, we provide guidance to the enterprise around appropriate security controls; in doing so we partner across the various business units to ensure the continued effectiveness of our Documentation.

The Summer Associate Program is a 12-week internship program beginning in May 2024 and ending in August 2024. Students will work on impactful projects and meaningful work during their internship. To qualify for this position, applicants must be currently pursuing a degree from an accredited college or university and have an anticipated graduation date of December 2024 or later.

 

Responsibilities

The Standards Transformation Project is a significant effort for the Standards team which will see the current Standards updated and aligned against a new Information Security Framework. We are currently targeting NIST SP 800-53. During the internship, we plan to be in the document generation and new requirements analysis phases of the project.

Project Specifications:

  1. Work with team members in aligning the Standards to the selected framework by assisting with a full reorganization of the Standards.
  2. Coordinate the updates with stakeholders from across NFCU to ensure that updates to the Standards align with current or proposed future practices.
  3. Recommend information security controls and assist with the tailoring of the baseline control selections.
  4. Identify, leverage, and present relationships between industry frameworks to evaluate compliance levels from NFCU documented requirements to industry.
  5. Propose changes to the Standards to ensure they better align with the selected framework and meet a level of security necessary to ensure the continued security and confidentiality of member and employee confidential information.
  6. Report back on the progress of the Standards Transformation Project, including highlighting control and control enhancement recommendations, and outline the next steps.
  7. As time permits assist in the next steps planning and implementation activities.

 

Qualifications

Skills and Experience: 

  • Total Professional and Educational Experience 5+ years of which Information Technology is Experience 1+ years.

Business Soft Skills:

  • Excellent communication skills
  • Self-starter / self-directed
  • Understanding of general Information Technology concepts
  • Experience with business process definition and optimization
  • Strong analytical skills with experience creating reports and analyses
  • High-level proficiency with Microsoft Office

Technical Skills Preferred (as many of the following):

  • Knowledge of federal banking safety and soundness regulations and extensive familiarity with FFIEC and examination approaches from NCUA, OCC, FHFA, and the CFPB.
  • Knowledge of industry-leading risk and security program management frameworks such as COSO, COBIT, NIST CSF, and ITIL)
  • Knowledge of the PCI standards framework
  • Working knowledge of at least one data protection and/or privacy framework (e.g., GDPR, CCPA, NIST Privacy Framework)
  • Experience in the development of risk management frameworks along with the requisite implementation
  • Advanced knowledge of information technology systems, project processes, and application development
  • Advanced organizational, planning, and time management skills
  • Advanced research, analytical, and problem-solving skills
  • Advanced skill in developing and implementing programs in a leadership role
  • Advanced skill in building effective relationships with all levels of staff, management, stakeholders, and vendors, through rapport, trust, diplomacy, and tact
  • Advanced verbal, written, interpersonal, and presentation skills to communicate clearly and concisely technical and non-technical information to all levels of management
  • Effective skill to influence, negotiate, and persuade to reach agreeable exchange and positive outcomes
  • Advanced skills exercising initiative and using good judgment to make sound decisions

Future Role: 

This role will collaborate with NFCU business unit leaders across the enterprise to identify, mitigate and manage information security risks. Uses extensive industry and real-world experience to assist in providing input regarding information security governance and risk management activities, contribute to developing pragmatic solutions to address gaps in line with established risk appetites. Assist with ensuring information security governance and risk management activities align with strategic business initiatives, achieve business and quality objectives, mitigate risk and enhance operating procedures. Develop dashboards, metrics and reporting data to provide consultative guidance during monthly and quarterly governance committees.  Promote operational efficiency and service excellence through appropriate risk controls, process improvements and training while reducing and mitigating financial losses.

Application Documents
Resume (Required)
 

Location: Remote | 820 Follin Lane, Vienna, VA 22180 | 5550 Heritage Oaks Dr Pensacola, FL 32526

Hours: Monday – Friday 8:00 am - 4:30 pm
 

About Us

You have goals, dreams, hobbies, and things you’re passionate about—what’s important to you is important to us. We’re looking for people who not only want to do meaningful, challenging work, keep their skills sharp and move ahead, but who also take time for the things that matter to them—friends, family, and passions. And we're looking for team members who are passionate about our mission—making a difference in military members' and their families' lives. Together, we can make it happen. Don’t take our word for it:

  • Military Times 2022 Best for Vets Employers
  • WayUp Top 100 Internship Programs
  • Forbes® 2022 The Best Employers for New Grads
  • Fortune Best Workplaces for Women
  • Fortune 100 Best Companies to Work For®
  • Computerworld® Best Places to Work in IT
  • Ripplematch Campus Forward Award - Excellence in Early Career Hiring
  • Fortune Best Place to Work for Financial and Insurance Services

Equal Employment Opportunity: Navy Federal values, celebrates, and enacts diversity in the workplace. Navy Federal takes affirmative action to employ and advance in employment qualified individuals with disabilities, disabled veterans, Armed Forces service medal veterans, recently separated veterans, and other protected veterans. EOE/AA/M/F/Veteran/Disability EOE/AA/M/F/Veteran/Disability

Hybrid Workplace: Navy Federal Credit Union is a hybrid workplace, and details will be discussed during your interview process.

Disclaimers: Navy Federal reserves the right to fill this role at a higher/lower grade level based on business need. An assessment may be required to compete for this position. Job postings are subject to close early or extend out longer than the anticipated closing date at the hiring team’s discretion based on qualified applicant volume. Navy Federal Credit Union assesses market data to establish salary ranges that enable us to remain competitive. You are paid within the salary range, based on your experience, location and market position.

Bank Secrecy Act: Remains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.