You are viewing a preview of this job. Log in or register to view more details about this job.

Enterprise Risk Management Intern

Commonwealth of Massachusetts
Email

Enterprise Risk Management Intern - (240003RL)

Description

 

 

 About Us

The Executive Office of Technology Services and Security (EOTSS) is the state’s lead office for information technology. We provide enterprise level information technology services including network management and security; computer operations; application hosting; desktop provisioning and management; and, modern and responsive digital services for over 125 state agencies and 43,000 internal stakeholders plus the residents, business owners and visitors to the Commonwealth of Massachusetts. 

 

About the Role

The EOTSS Enterprise Risk Management (ERM) Program is seeking an Enterprise Risk Management Intern who is enthusiastic and motivated individual to assist the continuing roll-out and maintenance of a compliance and security program across EOTSS and executive branch offices. The position requires a balance of compliance and security program experience along with exceptional project and task management.

As a member of the ERM team, the Enterprise Risk Management Intern will significantly contribute to the Commonwealth-wide GRC program ensuring compliance with all relevant legislative, regulatory, statutory, and contractual requirements related to Information Security. The incumbent will collaborate with various members and levels of the organization to ensure we are reviewing and updating our applications, systems, user lists, and vendor reviews on a regular periodic and continuing basis.

 

The primary work location for this role will be One Ashburton Place, Boston, Massachusetts 02108. The work schedule for this position is Monday through Friday, 9AM to 5PM EST. This position would be expected to follow a remote model of reporting to work. Attendance in our offices at 8 Ashburton St, Boston, MA, and/or other Boston locations may be required from time to time. The work schedule is subject to change based on operational needs.

 

All offers of employment into this position are conditional and subject to passing: a Massachusetts Criminal Background Check (CORI); a security clearance (fingerprinting) consistent with IRS and/or public safety requirements; and security training.    

 

Duties & Responsibilities

  • Process ERM program requests such as tabletop exercises and third-party application testing.
  • Assist ERM management to document program policy and procedure.
  • Assist tracking of contact and follow up with numerous individuals for various project initiatives.
  • Track and document responses from multiple sources in a timely and succinct manner.
  • Meticulously maintain continually changing program and project documentation; to include progress tracking documentation.
  • Assist creation of multiple and varied reports for numerous recipients with differing requirements.
  • Assist with ongoing initiative to automate currently manual tracking tools.
  • Ability to build and maintain positive working relationships across all levels and functional areas.
  • Plan and schedule program deliverables, goals, milestones.
  • Other responsibilities as assigned.

 

Preferred Knowledge, Skills & Abilities:

  • Demonstrate ability to multitask, prioritize, and meet deliverables for various and fluid responsibilities and initiatives.
  • Strong understanding of enterprise risk required
  • A concentration in IT, Network infrastructure, software application and software vendor disciplines desired
  • Exceptional organizational skills including acute attention to detail especially involving the gathering, updating, tracking, and reporting of data from multiple sources.
  • Excellent communication skills as this job will require interaction with all levels of the Secretariat, including senior management, both verbally and in writing
  • Ability to maintain a consistent and timely follow through of all requests requiring a response from various members and all levels of the organization
  • Ability to draft, review, and update policy and procedure documents.
  • Strong work ethic and sense of humor.
  • Excellent communication skills; both verbal and written communication, some technical knowledge desirable.
  • The ability to work independently as well as part of a team.