This is a Co-op position within BCG's Information Security Risk Management team. The role of Information Security includes protecting intellectual property that is critical to BCG and our clients, protecting BCG's brand reputation by securing our environment and data from disclosure as well as protecting people, processes and technology of all systems owned and operated by BCG. The Information Security Co-Op works with security, Risk, IT, and business services teams inside BCG to secure enterprise information by evaluating security requirements; planning, implementing, and testing security systems; participate in Risk and IT projects representing information security; assisting in the preparation of security standards, policies, procedures, and risk assessments; and providing information security guidance.
Some Co-op responsibilities include, but are not limited to:
Perform first level analysis of existing and proposed applications and systems to identify threats and risks
Suggest alternative security mitigations or compensating controls to allow for business to continue while protecting BCG’s assets
Develop and enhance security checklists and procedures
Assist in the creation, maintenance, and delivery of the information security technology strategy and roadmap
Participate in the configuration, implementation, monitoring, and support of security software and systems that will help ensure compliance with regulatory, industry, and corporate guidelines, policies, and procedures
YOU'RE GOOD AT
Logical thinking and analysis to review business and information security requirements, consider potential vulnerabilities and exploits, and help determine risk.
Researching, analyzing, and understanding new technologies in the field of information technology and information management.
Documenting and communicating the results of your analysis.
Methodical troubleshooting
Working with a team
YOU BRING (EXPERIENCE & QUALIFICATIONS)
Must be an undergraduate student currently enrolled in Northeastern University and approved by the university to participate in the January to June 2025 co-op cycleBroad understanding of information technology including concepts of operating systems, databases, and networks, with detailed knowledge of some specific operating systems, databases, and networks. Previous experience in writing software and with scripting languages. Previous experience in information security and use of information security tools is desirable but not required.
YOU'LL WORK WITH
You will work under the guidance of an experienced information security architect, working directly with a variety of teams consisting of information security and risk professionals, information technology professionals, and business service delivery professionals.