OVERVIEW:

First Citizens Bank offers an exciting summer internship program that provides development opportunities and hands on work experience while creating a talent pipeline for the Bank. Our interns will apply classroom knowledge in a corporate environment while making a positive impact across the organization and the communities we serve. Come help First Citizens build for the future!

The UEBA and Shadow IT Intern ensures the technological and digital security of the Bank at an advanced level of ability and technical expertise with a concentration on User and Entity Behavior Analytics (UEBA) and Shadow IT (Unsanctioned SaaS Applications). Mitigates exposure to cyber threats, security risks, and unauthorized access. Assesses organizational networks, applications, or systems for potential vulnerabilities. Protects assets and information through a variety of methods, resolving security issues or incidents as they arise. Maintains a strong knowledge of industry practices, technology, and evolving threats in order to enhance defenses for the Bank's information systems and resources.

Specific responsibilities for this role are:

• Technical Security - Administers tools or processes that secure assigned technical areas and data. Participates in security audits, identifies security gaps, and develops and implements risk mitigation solutions.
• Analysis - Identifies and evaluates potential threats or vulnerabilities in the Bank's networks, applications, or systems. Compiles data from external or internal sources. Creates actionable intelligence based on review of analysis.
• Security Expertise - Maintains a current knowledge of technology, emerging threats, and security trends within the assigned technical area. Participates in special projects as a technical and security resource.
• Issue Resolution - Investigates and resolves security incidents which may include unauthorized access, malware infections, configuration anomalies, cyber attacks, and other risks. Escalates as appropriate.
• Business Planning - May assist in in the development of security policies, standards, and strategies.
• Remote eligible.

In North Carolina - the base pay for this position is relative to your experience but the range is generally $21.25/hr - $32.50/hr. This position is not eligible for the benefits program.

RESPONSIBILITIES:

In this role, you will:

• Be part of a dynamic team with interesting projects. Accountabilities can and may include areas such as research, analytics, projects, strategy, process review and improvement, as well as technology enhancements and support.
• Attend professional development sessions, informational sessions, networking and community service events.
• Have a dedicated manager and program manager to help you navigate the bank and the internship program.
• Be assigned a project, designed to improve a specific process or solve a problem that you will present at the close of the internship.
• Prepare a wrap-up presentation to be shared with the division leader and other key stakeholders in the company to outline your accomplishments and experience during the internship

QUALIFICATIONS:

Required qualifications:

• High School Diploma or GED and 1 year of experience
• Currently enrolled at an accredited collegiate institution (during the time of the summer program)
• Ability to work 40 hours per week during the duration of the program

Preferred qualifications:

• 3.0 minimum GPA
• Strong desire to learn and grow
• Possess a positive attitude, naturally curious and enjoys collaborating with others
• Strong verbal and written communication skills
• Critical thinking skills
• Ability to multitask
• Ability to adapt and adjust priorities based on business needs
• Ability to take direction and absorb information quickly
• Knowledge of data security practices, procedures, monitoring and alert tools, and risk management standards.
• Knowledge of data lake/SIEM and querying, data source parsing, application policy configuration, data and event enrichment, CASB, web proxy, SOAR, Active Directory administration and user provisioning, Domain Name System, Group Policy Objects, New Technology File System permissions, File Shares, SharePoint, and Domain controllers, Knowledge of Identity and Access Management concepts and technologies.
• Basic knowledge of the Linux command line interface.
• Ability to clearly communicate risks, threats, and vulnerabilities identified during assessments.
• Ability to utilize vendor resources and open-source intelligence for independent problem solving and continuous tool enhancement.