Information Security Intern/Co op

Date: Nov 16, 2023

Location: Rochester, NY, US

Company: Carestream Health

Carestream Health Inc. 

Innovation that sparks imagination. Continue on to your next challenge with us. 

Carestream is a worldwide provider of medical imaging systems and solutions; x-ray imaging systems for non-destructive testing; manufacturing of film and precision contract coating services for a wide range of industrial, medical, electronic and other applications—all backed by a global service and support network. Carestream’s diagnostic imaging technology systems are at work in 90 percent of hospitals worldwide.  

At Carestream, we offer a global perspective and a world of opportunities for people who have the desire to make a positive impact. Join our global team of 3,000+ professionals!



$25/hr This range reflects Carestream’s good faith estimate to pay fairly as starting wage. Offers will be tailored within the range based on the selected candidate’s experience, industry knowledge, technical and communication skills, and other factors that may prove relevant during the interview process, as well as geographic market differentials for the position.

Position Summary:

Carestream is looking for double block Co ops to join the Information Security team. Opportunities are available in the following areas:

  • Governance, Risk, and Compliance (GRC)
  • Vulnerability Management (VM)
  • Security Operations Center (SOC)Medical Device / Product Security

Position Responsibilities:

Activities may include:

  • Conduct internal and third-party security risk assessments
  • Conduct security and privacy audits
  • Discover vulnerabilities through scans, penetration testing, and analysis
  • Evaluate vulnerability reports / CVEs, determine risk, and recommend mitigations
  • Respond to security alerts, make recommendations, and triage
  • Implementing security controls and hardening System configurations and scripting

Required Skills & Education:

Education and Field of Study: Baccalaureate student in IT, Engineering, Computer Science, Cybersecurity, Information Security, Management, or a related field with a minimum GPA of 3.0


Minimum Skills:

  • Ability to collect and analyze facts from multiple sources and quickly develop and communicate hypotheses and recommendations to peers and managers
  • Ability to determine and evaluate risks
  • Demonstrate excellent written, oral, and interpersonal skills with personnel at all levels.
  • Excellent technical writing skills
  • Exhibits a high degree of integrity, initiative, and motivation


Desired Skills:

  • Knowledge of cybersecurity frameworks, such as NIST and ISO
  • Ability to perform risk assessments
  • Familiar with vulnerability and other security scan tools
  • Ability to recommend mitigations and remediations for vulnerabilities
  • Ability to respond to cybersecurity incidents
  • Understanding of application security concerns, such as OWASP application security risks

Work Environment:

Hybrid in office 3 days per week, remote possibility 2 days per week.

Carestream is an Equal Opportunity Employer

Carestream is an equal opportunity organization. We recruit, employ, train, compensate, and promote without regard to race, religion, creed, color, national origin, age, gender, sexual orientation, gender identity, marital status, disability, veteran status, or any other basis protected by applicable federal, state or local law.

Applying for a job with Carestream

All Carestream employees must complete the on-line application process. Carestream is committed to working with and providing reasonable accommodations to individuals with disabilities. If you require assistance or an accommodation because of a disability to participate in the application process, please click accommodations

Requisition ID: 3560 

Nearest Major Market: Rochester