​​​This is a Co-op position within BCG´s Information Security Risk Management team. The role of Information Security includes protecting intellectual property that is critical to BCG and our clients, protecting BCG´s brand reputation by securing our environment and data from disclosure as well as protecting people, processes and technology of all systems owned and operated by BCG. The Information Security Co-Op works with security, Risk, IT, and business services teams inside BCG to secure enterprise information by evaluating security requirements; planning, implementing, and testing security systems; participate in Risk and IT projects representing information security; assisting in the preparation of security standards, policies, procedures, and risk assessments; and providing information security guidance.
​Some Co-op responsibilities include, but are not limited to:
​Perform first level analysis of existing and proposed applications and systems to identify threats and risks
​Suggest alternative security mitigations or compensating controls to allow for business to continue while protecting BCG’s assets
​Develop and enhance security checklists and procedures
​Assist in the creation, maintenance, and delivery of the information security technology strategy and roadmap
​Participate in the configuration, implementation, monitoring, and support of security software and systems that will help ensure compliance with regulatory, industry, and corporate guidelines, policies, and procedures​​
​​Logical thinking and analysis to review business and information security requirements, consider potential vulnerabilities and exploits, and help determine risk.
​Researching, analyzing, and understanding new technologies in the field of information technology and information management.
​Documenting and communicating the results of your analysis.
​Methodical troubleshooting
​Working with a team​
- Must be an undergraduate student currently enrolled in Northeastern University and approved by the university to participate in the January to June 2025 co-op cycle
- ​​Broad understanding of information technology including concepts of operating systems, databases, and networks, with detailed knowledge of some specific operating systems, databases, and networks.
- ​Previous experience in writing software and with scripting languages.
- ​Previous experience in information security and use of information security tools is desirable but not required.​