IT Risk Management & Security Intern
Job Function:
My overall job function was to assist the Application Security team to investigate and analyze security vulnerabilities in Merck applications and communicate these risks to DevOps teams. I was assigned with many tasks including conducting security risk assessments, creating security vulnerability metrics, and assisting in developing a Web API application.
Projects:
• Assisted Application Security team in developing utility application using Spring Framework and Java by leveraging service request management API that will read a service request queue and create JIRA tickets
• Performed application security assessment of up to 90 APIs leveraged by Merck applications to help capture and increase awareness of open source software risk used by these APIs
• Developed metrics based on security assessment findings and articulated associated risks to organization
What I learned:
I gained more knowledge about cybersecurity, especially in the pharmaceutical industry. Since pharma companies have information that is data-rich hackers are more prone to attack them. This internship aligns with my major as it taught me how data analytics can be used to help organizations understand different security risks within their applications and decrease the impact of a cyber-attack.