We are searching for a Cyber-Attack Intern!

First off, what is CyberGRX?

CyberGRX provides enterprises and their third parties with the most cost-effective and scalable approach to third-party cyber risk management today. Built on the market's first third-party cyber risk Exchange, CyberGRX arms organizations with a dynamic stream of third party-data and advanced analytics so they can efficiently manage, monitor and mitigate risk in their partner ecosystems.

What does a Cyber-Attack Intern do at CyberGRX?

What a day in the life looks like:

This position will be primarily focused on researching, understanding, and documenting historical cyber-attacks. You will be leveraging the MITRE ATT&CK framework to organize and document the details of cyber-attacks along with the appropriate security control measures which could prevent, detect, or respond to those attacks. Your work will expand CyberGRX’s library of attack “use cases” which are used to provide insightful and actionable intelligence to our customers. 

In addition, you will assist CyberGRX analysts in the evaluation of our existing cybersecurity assessment content (i.e. the controls, questions, and answer options). This analysis will help us to identify opportunities to improve our assessment based on emerging technologies, the modern threat landscape, and any identified gaps in the existing content.

What you bring to the table:

We are looking for an individual with solid cyber security knowledge and a general understanding of how hackers, nation states, and script kiddies attempt to steal data through various types of attacks.

Desired Skills/Experience:

• Security+ (or comparable) certification
• At least 1 year of cyber security focused experience or education
• Familiarity with MITRE ATT&CK framework, tactics, and techniques
• Strong desire to learn/understand highly technical cyber-attack techniques and how to defend against them
• Ability to work independently
• Strong attention to detail
• Self-starter with a natural curiously, who is not afraid to ask questions

CyberGRX does not discriminate in employment matters on the basis of race, color, religion, gender, national origin, age, military service eligibility, veteran status, sexual orientation, marital status, disability, or any other protected class. We support workplace diversity.