The Controls Assurance – Asset Based Testing team at Navy Federal needs to evaluate and validate IT and Information Security controls across the organization to ensure strong cybersecurity practices and regulatory compliance. The Summer Associate will support these efforts by assisting in planning, scoping, executing, and reporting on assessments.
Requirements
- Basic understanding of security risks, processes, and controls
- Familiarity with cybersecurity frameworks (NIST CSF, ISO 27001/27002, SANS/CIS 20, PCI DSS) is a plus
- Knowledge of federal and state regulations (FFIEC, NIST, GLBA, etc.) is beneficial
- Experience with data tools such as Axonius, Tenable, Splunk is a plus
- Comfortable working with large datasets and presenting findings
- Experience in technical writing or documentation is a plus
Responsibilities
- Assist in planning and scoping Asset Based Assessments
- Help develop test strategies and document work in alignment with audit standards
- Support documentation of issues and reporting of assessment results
- Analyze data to identify trends and support strategic recommendations
- Assist in evaluating security control design and remediation efforts
- Help ensure compliance with internal processes and external regulations
- Perform other duties as assigned to support the program
Other
- Currently pursuing a degree in Computer Science, Information Systems, Data Science, or a related field
- Strong interest in cybersecurity, risk management, and compliance
- Strong verbal, written, and interpersonal communication skills
- Effective planning, organizational, and problem-solving abilities
- Ability to work independently and think critically
- Ability to collaborate with team members and communicate with stakeholders
- Anticipated graduation date of December 2026 or later
