About the Team

The Workforce Engagement and Development (WED) team supports SR’s mission to build a more agile, skilled, and engaged workforce by designing, executing, and facilitating strategies and programs that enhance employee engagement, career development, diversity equity and inclusion (DEI), and related internal communications.

About the Role

The intern will assist senior members of the Workforce Engagement and Development (WED) team with a variety of projects aimed at deepening staff engagement and enhancing the division culture to ensure an inclusive workplace experience for all. The intern will have the opportunity to learn and work across all functional areas of the team, performing a variety of assignments. Agility, curiosity, and the ability to toggle between multiple projects simultaneously are key.

Specific projects/assignments may include:

Conducting research to identify best practices, tips and resources to inform the development of various team initiativesDeveloping and curating content for the division's Inclusive Workplace websitesWriting and editing content for publication in division newsletters and other communication vehiclesCompiling and/or analyzing data to prepare dashboards, briefings, and reports for organization leadersProviding planning and logistics support for training or other events aimed at fostering staff connection - Creating pre- and post-surveys based on team needs and reporting findings using the collected data.

Education Requirements:

Currently pursuing a graduate level degree in an Industrial Organizational Psychology, Human Resources, Business Administration, Management, Data Analytics, or another related field of study.Interested in Human Capital Management, HR development, Human Capital Analytics/Technology

Skills/Knowledge Required:

Experience with website design (SharePoint Online, HTML)Demonstrated knowledge of survey designStrong research and analytical skillsStrong oral presentation skillsDemonstrated interest in talent development and employee engagementDemonstrated project management and organizational skillsMust be a team player with ease working in different projects with shifting priorities

Notes:

Anticipated Work Hours: 40 hours per week during summer; 10-20 hours during school semestersAnticipated Start Date: Summer 2025Location: This internship may be completed remotely or in a hybrid capacity in Washington, DC.Candidates must be a US Citizen, and must be enrolled in a graduate level degree seeking program,graduating May 2026 or later.

Duties and Responsibilities

· With extensive guidance, performs data analysis to ensure the quality (conformity, consistency, completeness, accuracy, and timeliness) of financial data, banking structure data, survey data, contextual information data, and business data used for monetary, supervisory, research, and organizational decision-making purposes.

· Participates in providing data support services to end users, which includes data quality assurance activities (conformity, consistency, completeness, accuracy, and timeliness) and troubleshooting and researching datarelated questions. Participates in relevant internal task forces and committees that impact data management support.

· Shadows more senior staff to learn how to develop business requirements and report requirements for programmers to use in developing applications or automated programs to support analytical work, collect and make data accessible, and allow for the release of public information. With extensive guidance, ensures key security, regulatory, and policy requirements are adhered to with own work.

· Applies foundational level knowledge of the Board’s statistics requirements to ensure Reserve Banks’ adherence to policies, procedures, and best practices of data management services and status reporting. Participates in projects to establish or strengthen the data management program, data governance framework, methodologies, and data quality program.

· Shadows more senior staff to learn how to conduct product owner tasks such as monitoring product schedules and keeping stakeholders informed on the development and maintenance of systems, tools and platforms supporting operational capabilities.

· Shadows more senior staff to learn how to document test cases and identify issues in systems used to facilitate data management work.

· Supports gathering and analyzing data on the current business architecture and processes to identify root causes of issues, trends, patterns, and opportunities that impact the business line and stakeholders; reviews existing business processes and establishes metrics to improve processes.

· Conducts research on reporting requirements and guidance based on foundational knowledge of financial markets and institutions, and regulatory/monetary/structure data reporting for use by Board, Reserve Bank staff, and reporting institutions.

· Participates in developing metrics (e.g., on services, staff utilization, and performance) and creating documentation (e.g., strategic plan, policies, procedures, reports, charters, evaluations) for the national Statistics business line.

FR – 23 Minimum Qualifications:

Requires a bachelor’s degree in business, economics, finance, mathematics, computer science, information technology, or related field and one year of experience. Must have novice to foundational knowledge in the following areas: systems automation, project coordination, financial analysis, data flow management, data collection, consulting, business process improvement, risk management, technical writing, technical communication, presentation skills, and administration. Must be able to work effectively with more senior staff. Must be able to support more senior staff with one or more of the following: data analysis; conducting research in areas relevant to division or Board needs; and/or developing and implementing data collection and analysis tools.

FR – 24 Minimum Qualifications:

Requires a bachelor’s degree in business, economics, finance, mathematics, computer science, information technology, or related field and three years of experience. Must have foundational to intermediate knowledge in the following areas: systems automation, project coordination, financial analysis, data flow management, data collection, consulting, business process improvement, risk management, technical writing, technical communication, presentation skills, and administration. Must be able to work effectively with more senior staff. Must be able to support more senior staff with one or more of the following: data analysis; conducting research in areas relevant to division or Board needs; and/or developing and implementing data collection and analysis tools.

FR – 25 Minimum Qualifications:

Requires a bachelor’s degree in business, economics, finance, mathematics, computer science, information technology, or related field and four years of experience. Must have intermediate knowledge in the following areas: systems automation, project coordination, financial analysis, data flow management, data collection, consulting, business process improvement, risk management, technical writing, technical communication, presentation skills, and administration. Must be able to work effectively with more senior staff. Must be able to assist more senior staff with one or more of the following: data analysis; conducting research in areas relevant to division or Board needs; and/or developing and implementing data collection and analysis tools.

This position is for the Statistics Function Management Office within Board IT Statistics whose main responsibility is supporting the national Statistics Function- a business line that collects financial, banking structure, survey, and business data and provides data management services to ensure information is fit for use. New employees may participate in a local Board IT Statistics rotation program that would provide the employee an in-depth engagement with all Board IT Statistics units to develop their knowledge and expertise of the Statistics business line. A new employee’s exposure and engagement within Board IT Statistics would ensure a thorough knowledge and understanding of Board Statistics’ processes and procedures for providing services to stakeholders, performing program management support, and directing the national business line.

The Statistics Function Management Office (FMO) provides oversight and support for the function’s communications, governance, strategic initiatives, engagement models, and resource and demand management frameworks. The Statistics Data Management Analyst will be responsible for a wide range of business analysis activities, and must have exceptional critical thinking and problem-solving skills, and a strong ability to develop actionable plans and processes to address complex problems. Strong oral and written communication skills, interpersonal skills, and the ability to prepare professional and effective deliverables tailored for staff at all levels is required. The ability to make sound decisions, communicate effectively and exhibit good judgment even under high pressure or difficult situations is also required.

Demonstrated experience in strategic planning or strategy execution, project management, program management, risk management, data management and/or communications is strongly preferred. Experience creating data visualizations and developing tools and processes to manage data sets is preferred.

This position is hybrid, requiring a combination of telework and in-office presence in Washington, DC.

Duties and Responsibilities

· Leads and/or participates in implementing cybersecurity tools such as firewalls, proxies, intrusion detection, intrusion prevention, endpoint protection, and data analysis platforms as part of an integrated defense in depth solution with a central security information and event management (SIEM) system and security orchestration tools. Leads technical and analytical assessments to support information security engineering decisions to ensure Board information and systems are adequately protected. Ability to characterize and manage moderately complex risks to mitigate cyber threats.

· With some guidance, proactively supports analysis of threat intelligence from a variety of sources to understand the nature of the threat, extract the information that informs threat hunt operations, and uses that information to investigate Board IT assets for evidence of an intrusion or compromise.

· With some guidance, emulates threat actor tactics, techniques, and procedures in a controlled and/or production environment to demonstrate and observe the technical aspects of the emulated activity. Leads and/or develops adequate detection strategies and develops mitigations as needed to address the specific details of the threat.

· Leads the development of programs that apply statistical models, mathematical principles, and other analytic tradecraft to a variety of IT network-generated data for the purposes of identifying anomalous activity, suspicious network activity, and ultimately leads to the discovery of intrusions and/or compromises.

· With some guidance, identifies and analyzes system-generated logs and capture forensic images of a variety of systems for the purposes of fully analyzing a cybersecurity intrusion and/or compromise. Includes use of advanced knowledge to perform root cause analysis and develop timelines to show the actions taken by a cyber threat actor in an environment. Leads the completion of all phases of the incident response process including identification, containment, eradication, and remediation.

· Leads implementation of vulnerability scans and ensures operational systems are adequately patched to protect the Board from potential cyber threat actors. Leads the analysis of vulnerabilities and proof of concept code as it becomes available to assess the technical implications of a given threat and ensure that the Board’s defenses are sufficient. Maintains advanced knowledge of ethical hacking principles to apply the skills to the management of vulnerabilities and mitigation of technical risk. Ensures that vulnerabilities are managed and patched according to Board policies and procedures.

· Leads the development of and/or develops data analytic software and cybersecurity scripts using a variety of programming and scripting languages to enable cybersecurity activities designed to defend the Board’s IT assets. With limited guidance, develops programs, software, and scripts that automate the cybersecurity process. With limited guidance, develops data queries and scheduled jobs designed to correlate data for further analysis. With limited guidance, integrates tools and systems for advanced analysis of relevant data.

· With moderate guidance, manages cybersecurity projects focused on developing and instrumenting moderately complex approaches to detect, prevent, and respond to cybersecurity intrusions and/or compromises. Authors documents and oversees the execution of project plans, schedules, requirements, risks, assumptions, cost, performance, and resource utilization with minimal supervision.

Position Requirements

FR-26 Minimal Qualifications

Requires a bachelor’s degree in computer science, information technology, cybersecurity or a related business technology field and five years of experience. Must have advanced knowledge in in at least one of the following areas: general cybersecurity fundamentals, cyber threat analysis, data science principles, digital forensics, incident handling, incident management, incident response, vulnerability management, security engineering, automation and programming, project management, and relevant technologies and programming languages. Must be able to work effectively with staff. Must be familiar with relevant policies, procedures, and be able to work with TOP SECRET / SENSITIVE COMPARTMENTED INFORMATION. Must be able to support one or more of the following: providing threat assessments, recommending cybersecurity technologies for intrusion detection and prevention, assessing technical vulnerabilities, identifying automation opportunities, investigating, and resolving security breaches, technical writing, and communication.

FR-27 Minimal Qualifications

Requires a bachelor’s degree in computer science, information technology, cybersecurity or a related business technology field and six years of experience. Must have expert knowledge in the in at least one of the following areas: general cybersecurity fundamentals, cyber threat analysis, data science principles, digital forensics, incident handling, incident management, incident response, vulnerability management, security engineering, automation and programming, project management, and relevant technologies and programming languages. Must be able to work effectively with staff. Must be familiar with relevant policies, procedures, and be able to work with TOP SECRET / SENSITIVE COMPARTMENTED INFORMATION. Must be able to lead one or more of the following: providing threat assessments, recommending cybersecurity technologies for intrusion detection and prevention, assessing technical vulnerabilities, identifying automation opportunities, investigating, and resolving security breaches, technical writing, and communication.

FR-28 Minimal Qualifications

Requires a bachelor’s degree in computer science, information technology, cybersecurity or a related business technology field and eight years of experience. Must have expert knowledge in the in at least one of the following areas: general cybersecurity fundamentals, cyber threat analysis, data science principles, digital forensics, incident handling, incident management, incident response, vulnerability management, security engineering, automation and programming, project management, and relevant technologies and programming languages. Must be able to work effectively with staff. Must be familiar with relevant policies, procedures, and be able to work with TOP SECRET / SENSITIVE COMPARTMENTED INFORMATION. Must be able to direct one or more of the following: providing threat assessments, recommending cybersecurity technologies for intrusion detection and prevention, assessing technical vulnerabilities, identifying automation opportunities, investigating, and resolving security breaches, technical writing, and communication.

Remarks: The Sr. Vulnerability Analyst (Sr. Cybersecurity Analyst) is an individual contributor position responsible for leading the enterprise vulnerability management program for the Board. The Sr. Vulnerability Analyst (Sr. Cybersecurity Analyst) possesses knowledge of policies and best practices pertinent to vulnerability management and has the ability to operationalize that information in the form of organizational governance and technical process (NIST, DHS/CISA, OWASP, NVD, SEI, etc.). The Sr. Vulnerability Analyst (Sr. Cybersecurity Analyst) consumes cyber threat intelligence that describes new and emerging vulnerabilities and translates that information into active defense and preventive measures. The Sr. Vulnerability Analyst (Sr. Cybersecurity Analyst) analyzes systems for potential weaknesses and/or vulnerabilities and proposes solutions to mitigate those risks. The Sr. Vulnerability Analyst (Sr. Cybersecurity Analyst) establishes and oversees patch management operations for all kinds of assets in the environment and designs mitigations where patching is impractical or impossible. The Sr. Vulnerability Analyst (Sr. Cybersecurity Analyst) establishes and implements a risk management approach for vulnerabilities including thresholds, mitigations, and risk tolerances that drives other vulnerability response actions. The Sr. Vulnerability Analyst (Sr. Cybersecurity Analyst) provides services including static and dynamic application security testing, web application vulnerability scanning, vulnerability analysis, enterprise patch management, and proposing mitigations for specific threats. The Sr. Vulnerability Analyst (Sr. Cybersecurity Analyst) develops technical products and presents highly technical subjects to a variety of audiences ranging from non-technical senior leaders to highly technical subject matter experts. The Sr. Vulnerability Analyst (Sr. Cybersecurity Analyst) collaborates with other vulnerability management professionals in the Federal space and throughout the Federal Reserve System to develop and implement cybersecurity solutions that enable vulnerability management activities. The Sr. Vulnerability Analyst (Sr. Cybersecurity Analyst) provides technical and analytical vulnerability assessments to support information security engineering decisions to ensure Board information and systems are adequately protected.

Highly Desirable:

· At least 5-7 years of full-time experience supporting a vulnerability management program.

· Experience applying industry standards and best practices in an operational environment to adequately manage risk and mitigate vulnerabilities as part of an enterprise service.

· Experience with a variety of vulnerability and patch management technologies including, but not limited to, Qualys, Tenable, Nessus, Invicti, Fortify, CrowdStrike Falcon Spotlight, Microsoft Defender Vulnerability Management, etc.

· Experience applying expert knowledge of adversary tactics, techniques, and procedures to identify, prioritize, and ultimately respond to vulnerabilities identified within the Board’s enterprise network.

· Experience mentoring less experienced team members in vulnerability management and response activities.

· Experience in vulnerability analysis, threat modeling, and designing mitigation and remediation strategies.

· Experience managing vulnerabilities in on-premises systems, mobile devices, and in cloud environments, (e.g. Amazon Web Services, Microsoft Azure, Google Cloud, and Data Centers).

· Experience developing programs and/or automated tools using a programming / scripting languages (e.g. Python, PowerShell, etc.).

· Familiarity with relevant policies, procedures, and be able to work with TOP SECRET / SENSITIVE COMPARTMENTED INFORMATION.

· Demonstrated resourcefulness and advanced critical thinking skills to independently direct, analyze, and implement solutions for all the various complex problems that arise in the administrative and operations area.

· Expert technical writing and communications skills. Contacts are often with division leadership, but also with staff at all levels; a significant degree of coordination and contact with other units/sections/divisions may also be required.

· Ability to construct clear and concise written work and applies an increasingly advanced understanding of grammar, sentence structure, and intended audience(s) to the process of writing and editing such work.

· Ability to explain to cross-team or cross-divisional partners items of high levels of complexity.

· Possess skills in negotiation and persuasion in performing duties and influencing support for change.

This position is hybrid, requiring a combination of telework and in-office presence in Washington, DC

Requires technical and analytical skills typically acquired through the completion of a bachelor's degree in computer science, information technology or related discipline, or equivalent experience. A thorough knowledge of and extensive experience in system life cycle development, experience with cloud SaaS, PaaS or IaaS applications desirable. Must have at least five years of progressively responsible experience in the information security technology arena as a security analyst, Information System Security Officer (ISSO), Information system Security Manager (ISSM) or a combination of these. Experience with successfully implementing projects and working with enterprise financial systems, and FedRamp systems, strongly desired. Knowledge of audit log reviews, developing ad hoc security related reporting based on results of continuous monitoring required. Strong team-oriented interpersonal and communication skills required, as is a demonstrated commitment to a strong customer service philosophy. Ability to effectively communicate with technical personnel, customers, and management mandatory. Possess clear, concise and effective verbal and written communication and project management skills needed for functioning in an unstructured matrix management environment. CISSP or CISA is strongly desired.

In addition to the above requirements, the FR-27, the Senior Technology Compliance Analyst II, must have at least six years of progressively responsible experience in the information technology arena as a developer/programmer, security analyst, IT manager, business analyst, system administrator or a combination of these. Experience with leading and successfully implementing high visibility projects desired.

The following specific experience is strongly desired
• Experience with implementing IT Security or internal/external auditing of financial applications
• Experience with evaluating cloud internal controls reports, SOC-1 and SOC-2
• Simultaneously works on several complex assignments requiring analysis of control applicability and evaluation of control gaps for financial systems.
• Experience with leading financial IT audits and successfully developing audit and security related system documentation to reduce risk and meet control requirements desired.
• Experience in developing a Risk Control Matrix, Test of Design and Test of Effectiveness (TOD/TOE)
• Work independently and meet deadlines for assigned tasks
• Experience with assessing IT systems leveraging NIST, SOX, FISCAM, FedRamp, and FISMA Compliance strongly desired.
• Experience with developing and managing SOPs and system related documentation
• Experience with reporting IT risks to management
• Experience with participating and reviewing governance process and policy documents respectively, i.e. CCB (Change control board), ARB (architectural review board), etc.

This position is hybrid, requiring a combination of telework and an in-office presence in Washington, DC.

Position requirements:

For the FR27: A bachelor’s degree in human resources, business administration, or another related field and a minimum of 6 years of related experience, or a master’s degree in a related field and 4 years of related experience. Requires excellent interpersonal, oral, and written communication skills as well as high level analytical ability. Also requires a broad working knowledge of all areas of HR normally acquired through at least one year of HR generalist experience. Additionally, an understanding of benefits and compensation strategies, policies, rules, and methodologies are preferred. Familiarity with Reserve Bank operations and Reserve Bank policies, procedures, rules, and methodologies are also desirable.

For the FR28: A bachelor’s degree in human resources, business administration, or another related field and a minimum of 8 years of related experience, or a master’s degree in a related field and 6 years of related experience. Requires excellent interpersonal, oral, and written communication skills as well as high level analytical ability. Also requires a broad working knowledge of all areas of HR normally acquired through at least one year of HR generalist experience. Additionally, an understanding of benefits and compensation strategies, policies, rules, and methodologies are preferred. Familiarity with Reserve Bank operations and Reserve Bank policies, procedures, rules, and methodologies are also desirable.

Remarks:

This position's work is broad in scope covering one or more complex areas. Policy, procedure, or precedent are typically created by this position. Senior HR analysts will perform qualitative and quantitative analysis in support of the Board’s responsibilities and policy objectives. The successful candidate will demonstrate critical thinking skills, excellent written and oral communication skills, the ability to use sound judgement, assimilate new information quickly, analyze complex problems, and take initiative. Senior HR analysts will contribute to oversight of Reserve Banks, including participating on review and examinations, assessing new initiatives, and conducting ongoing monitoring. Senior HR analysts will contribute to policy and regulatory processes by assessing Reserve Bank consistency with current policy and regulation, identifying novel issues and emerging risks, and providing expertise to support changes to policy and regulation. Senior HR analysts have general oversight responsibility for the Reserve Banks’ compensation, workforce strategy, and benefits programs and may help develop or lead the development of strategies for Reserve Bank human resources including compensation, benefits, and workforce strategy. Previous knowledge of one or more of these topics, or experience in HR operations is preferred.

This position will require extensive interaction with Reserve Bank and Board staff and officials. Senior HR analysts produce written materials for a variety of audiences.

This position requires some travel. A writing sample may be required.

This role is located in Washington DC and will require relocation and on-site presence via a hybrid schedule. Employees are expected to spend a minimum of 6 days per month onsite.Relocation assistance is available.

A bachelor’s degree in finance, accounting, business administration, public policy, economics, or another related field and a minimum of 6 years of related experience, or a master’s degree in a related field and 4 years of related experience (FR-27) or A bachelor’s degree in finance, accounting, business administration, public policy, economics, or another related field and a minimum of 8 years of related experience, or a master’s degree in a related field and 6 years of related experience (FR-28).

REMARKS

The Coordinated Portfolio Activities section oversees, leads and coordinates horizontal examination activities (horizontal reviews) relating to the supervision of large and foreign banking organizations (LFBOs). These examinations may include thirty or more large financial institutions and involve hundreds of supervision staff. Annual LFBO horizontal reviews include the Horizontal Cybersecurity Review, Horizontal Liquidity Review, and Horizontal Capital Review.

The selected candidate will be responsible for collaborating with Federal Reserve Board and Federal Reserve System supervision staff to participate in and lead coordinated and horizontal reviews for the LFBO portfolio (including design, execution, analysis and presentation of examination results for the LFBOs that the Federal Reserve supervises). The successful candidate will also contribute to relevant policy development. This position may focus primarily on horizontal examinations related to financial risks (credit, market, liquidity, etc.) and capital planning, or operational risks (cybersecurity, operational resilience, etc.). Candidates with strong qualifications related to either financial or non-financial risks are encouraged to apply.

The ideal candidate will have:
• Significant bank examination experience, commissioned examiner preferred
• Relevant industry credentials (CPA, CISSP, CISA, CFA, or FRM, for example)
• Governance, internal controls, financial analysis and risk management assessment skills
• Excellent organizational skills
• Outstanding verbal and written communication skills
• A proven ability to collaborate well with key stakeholders at all levels of the organization

A writing sample or assessment may be requested.

Travel: 10-20%

Hybrid language: This position is located in Washington DC and will require on-site presence 4 times per month and as business needs require

Requirements FR-27

Successful candidate will have at least four years of work experience as a practicing attorney in private practice or government agency and general knowledge in the regulation of financial institutions or in the regulation of securities, derivatives, insurance or commodities. Prior experience in developing and drafting regulations applicable to banking organizations or other financial institutions also is valuable. Corporate transactional experience is helpful. Successful candidate will demonstrate excellent oral and written communication skills, strong analytic and interpersonal skills (including the ability to interact effectively with management and staff at all levels of the organization), personal initiative, and adaptability in working across legal disciplines. Must also possess excellent attention to detail and strong organizational skills (including ability to handle multiple assignments and organize projects and see through their successful completion with minimal supervision). Bar membership and U.S. citizenship required.

Requirements FR-28

Successful candidate will have at least six years of work experience as a practicing attorney in private practice or government agency and general knowledge in the regulation of financial institutions or in the regulation of securities, derivatives, insurance or commodities. Prior experience in developing and drafting regulations applicable to banking organizations or other financial institutions also is valuable. Corporate transactional experience is helpful. Successful candidate will demonstrate excellent oral and written communication skills, strong analytic and interpersonal skills (including the ability to interact effectively with management and staff at all levels of the organization), personal initiative, and adaptability in working across legal disciplines. Must also possess excellent attention to detail and strong organizational skills (including ability to handle multiple assignments and organize projects and see through their successful completion with minimal supervision). Bar membership and U.S. citizenship required.

In addition, for both FR-27 and FR-28:

· A writing sample may be required at the time of application submission.

· Successful completion of background check required.

About the Job:

Handles assignments in the Banking Regulation and Policy Group of the Board’s Legal Division. The Banking Regulation and Policy Group is responsible for legal and policy issues regarding the regulation and supervision of Federal Reserve-supervised firms and also issues regarding financial stability more generally.

Drafts memoranda to the Board, staff opinion letters, legislative and regulatory proposals, and similar documents. Furnishes legal opinions and advice and responds to System and public inquiries concerning Federal statutes, interpretations, and opinions concerning the supervision and regulation of financial institutions, regulatory responsibilities of the Board, Reserve Bank matters, and related issues. Makes oral presentations at meetings with Board members. Performs more difficult assignments at this level, receives general supervision and direction from more experienced attorneys, and works with senior staff to prepare Board presentations and draft regulatory proposals.

In addition, attorneys review and analyze complex bank merger and consolidation transactions, proposals by bank holding companies to engage in novel nonbanking activities, requests for interpretation of various Federal banking laws, proposed amendments to the Federal banking laws and regulations, and other matters within the scope of the Federal Reserve's authority.

This is a hybrid position located in Washington, D.C. with a weekly Wednesday on-site requirement and as business needs require.