Cyber Compliance Associate - Summer 2025

Posted:
11/6/2024, 4:00:00 PM

Location(s):
Des Moines, Iowa, United States ⋅ Iowa, United States

Experience Level(s):
Junior

Field(s):
Legal & Compliance ⋅ Software Engineering

We are the leading provider of professional services to the middle market globally, our purpose is to instill confidence in a world of change, empowering our clients and people to realize their full potential. Our exceptional people are the key to our unrivaled, inclusive culture and talent experience and our ability to be compelling to our clients. You’ll find an environment that inspires and empowers you to thrive both personally and professionally. There’s no one like you and that’s why there’s nowhere like RSM.

Responsibilities:

  • Conduct assessments identify risks within an organizations cyber security governance compliance programs   

  • Measure and report clients’ compliance with established industry or National/International government requirements such as PCI DSS, CMMC, FEDRAMP, GDPR, CCPA, etc. 

  • Perform analysis and testing to verify the strengths and weaknesses of mobile and web applications and web services (SOAP, WSDL, UDDI)  

  • Perform Internet penetration testing using blackbox and whitebox methodologies  

  • Review application code, system configurations and device configurations using manual and automated techniques  

  • Communicate technical findings to a non-technical audience effectively  

  • Create and review threat intelligence programs for clients using established intelligence models  

  • Work with a variety of cyber security and privacy frameworks such as ISO, NIST, CIS.     

  • Support the development and implementation of tools such as eGRC, used to help manage security programs across a variety of organizations   

  • Develop target operating models for cyber security programs including budgets, resource levels, reporting structure, etc.    

 

 

Required Qualifications:

  • Minimum B.A. or B.S. degree or equivalent from an accredited university by the time employment commences with a major in Computer Science, Information Technology, Information Systems Management, Information Security, intelligence, digital forensics, cybersecurity or other similar degrees  

  • Strong knowledge of computer network technologies, protocols/topologies, digital forensics and endpoint protection, or threat intelligence  

  • Software development, programming and/or scripting experience (Perl, Python, C, Java, PHP, ASP, etc.)  

  • Ability to track threat actors across Dark Web criminal forums and marketplaces and ability to communicate findings  

  • Ability to track malware campaigns and understand adversarial activity from an intelligence perspective  

  • Basic understanding of intelligence, including intelligence lifecycle, Kill Chain, Diamond model, and Priority Intelligence Requirements  

  • High degree of integrity and confidentiality, as well as ability to adhere to company policies and best practices  

  • 0 – 2 years of relevant experience 

  • A minimum 3.0 GPA is preferred   

 

 

Preferred Qualifications:

  • Practical hands-on or lab experience with IT infrastructure components such as servers, firewalls, IDS systems and other network infrastructure components  

  • Practical hands-on or lab experience with security applications, such as a AppScan, Metasploit, BurbSuite, Nessus, Social Engineering Toolkit, Kali Linux, etc., or other commercial and public domain security tools  

  • Operating system configuration and security experience (HP-UX, Linux, Solaris, AIX, etc.) Configuration and security experience with web servers and web applications (Apache HTTP/Tomcat, Microsoft IIS, Sun One, Oracle iPlanet, IBM WebSphere, etc.)  

  • Database Configuration and Security experience (MySQL, Microsoft SQL, IBM DB2, Sybase, Oracle, etc.)  

  • Familiar with security testing techniques such as network discovery, port and service identification, vulnerability scanning, network sniffing, fuzzing, penetration testing, configuration reviews, firewall rule reviews, social engineering, wireless penetration testing and password cracking Internship or overall experience with threat intelligence vendor or familiarity with various threat intelligence tools and platforms  

At RSM, we offer a competitive benefits and compensation package for all our people. We offer flexibility in your schedule, empowering you to balance life’s demands, while also maintaining your ability to serve clients. Learn more about our total rewards at https://rsmus.com/careers/working-at-rsm/benefits.

As an Affirmative Action and Equal Opportunity Employer all applicants will receive consideration for employment as RSM does not tolerate discrimination and/or harassment based on race; color; creed; sincerely held religious beliefs, practices or observances; sex (including pregnancy or disabilities related to nursing); gender (including gender identity and/or gender expression); sexual orientation; HIV Status; national origin; ancestry; familial or marital status; age; physical or mental disability; citizenship; political affiliation; medical condition (including family and medical leave); domestic violence victim status; past, current or prospective service in the US uniformed service; US Military/Veteran status; pre-disposing genetic characteristics or any other characteristic protected under applicable federal, state or local law. 

Accommodation for applicants with disabilities is available upon request in connection with the recruitment process and/or employment/partnership. RSM is committed to providing equal opportunity and reasonable accommodation for people with disabilities. If you require a reasonable accommodation to complete an application, interview, or otherwise participate in the recruiting process, please call us at 800-274-3978 or send us an email at [email protected].

RSM does not intend to hire entry level candidates who will require sponsorship now OR in the future (i.e. F-1 visa holders). If you are a recent U.S. college / university graduate possessing 1-2 years of progressive and relevant work experience in a same or similar role to the one for which you are applying, excluding internships, you may be eligible for hire as an experienced associate.

RSM will consider for employment qualified applicants with arrest or conviction records in accordance with the requirements of applicable law, including but not limited to, the California Fair Chance Act, the Los Angeles Fair Chance Initiative for Hiring Ordinance, the Los Angeles County Fair Chance Ordinance for Employers, and the San Francisco Fair Chance Ordinance. For additional information regarding RSM’s background check process, including information about job duties that necessitate the use of one or more types of background checks, click here.

At RSM, an employee’s pay at any point in their career is intended to reflect their experiences, performance, and skills for their current role. The salary range (or starting rate for interns and associates) for this role represents numerous factors considered in the hiring decisions including, but not limited to, education, skills, work experience, certifications, location, etc. As such, pay for the successful candidate(s) could fall anywhere within the stated range.

Compensation Range: $59,840 - $71,400

Individuals selected for this role will be eligible for a discretionary bonus based on firm and individual performance.