Security Management Internship - Summer 2019

CME Group - Chicago, IL4.2

TemporaryEstimated: $40,000 - $54,000 a year
CME Group is the world's leading and most diverse derivatives marketplace. But who we are goes deeper than that. Here, you can impact markets worldwide. Transform industries. And build a career shaping tomorrow. We invest in your success and you own it, all while working alongside a team of leading experts who inspire you in ways big and small. Joining our company gives you the opportunity to make a difference in global financial markets every day, whether you work on our industry-leading technology and risk management services, our benchmark products or in a corporate services area that helps us serve our customers better. We’re small enough for you and your contributions to be known. But big enough for your ideas to make an impact. The pace is dynamic, the work is unlike any other firm in the business, and the possibilities are endless. Problem solvers, difference makers, trailblazers. Those are our people. And we're looking for more.

To learn more about what a career at CME Group can offer you, visit us at

We are looking for motivated and talented students who want to help us solve some of the most complex challenges in financial technology. The Global Information Security (GIS) Department is a critical component of the Technology Division and is focused on delivering a safe and secure environment for the operation of our markets.

The Security Management team, which is part of the GIS Department at CME Group, is made up of security minded professionals dedicated to protecting CME Group’s information and information assets. Through its technical expertise and overall understanding of risks and controls, the team openly collaborates with individuals across the enterprise delivering exceptional service while providing valuable education and awareness.

The team is responsible for performing third-party vendor security risk assessments on products / services being considered by CME Group in an attempt to mitigate the security risks and threats associated with third-party vendors to CME Group. Additionally, the Security Management team educates the CME Group workforce through its security awareness education program on their responsibility to help protect the confidentiality, availability and integrity of CME Group’s information and information assets. This is accomplished through the review, design and customization of all security awareness computer-based training course materials, including simulated internal phishing campaigns, as well as other security awareness training materials.

The Security Management intern will gain an unparalleled experience in understanding the role the Security Management team plays in assessing risk to the organization. The intern will have the opportunity to work on a variety of Security Management related functions and projects.

The intern can expect to participate in several core roles, including:

Assisting in the execution of third-party vendor security risk assessments
Supporting the design and customization of security awareness training course materials as well as internal phishing campaigns
Developing additional security awareness training materials (e.g., deployment of security related screensavers, news articles, employee communication emails, etc.)

Minimum qualifications:
Computer Science, Information Systems or Cybersecurity majors with an interest in Information Security and/or Risk Management
Must be team oriented with a high level of professionalism
Excellent written and verbal communication skills, with a strong attention to detail
Holds self accountable to meet commitments
Ability to collaborate with others to get work done and achieve stated objectives
Understands the need to be flexible and adapt in real time to match different situations
Strong organizational skills
Computer proficiency in MS Office including Word, Excel, and PowerPoint
Familiarity with technology frameworks and standards such as: NIST, COBIT, ISO/IEC, PCI DSS, etc. a plus, but not required
For EU Residents, the Candidate Privacy Policy can be found here.