FedRAMP GRC Intern

Genesys•Durham, NC

About The Position

Genesys empowers organizations of all sizes to improve loyalty and business outcomes by creating the best experiences for their customers and employees. Through Genesys Cloud, the AI-powered Experience Orchestration platform, organizations can accelerate growth by delivering empathetic, personalized experiences at scale to drive customer loyalty, workforce engagement, efficiency and operational improvements. We employ more than 6,000 people across the globe who embrace empathy and cultivate collaboration to succeed. And, while we offer great benefits and perks like larger tech companies, our employees have the independence to make a larger impact on the company and take ownership of their work. Join the team and create the future of customer experience together. Why this role Genesys powers world-class customer experiences in the cloud. Our Public Sector team maintains FedRAMP Moderate authorization for Genesys Cloud that support U.S. government customers. As a FedRAMP GRC Intern, you’ll help operate and strengthen the security and compliance programs that keep our environments audit-ready and secure. This internship is ideal for students — including veterans and career changers — looking to build practical experience in cybersecurity, governance, risk, and compliance (GRC). You’ll gain hands-on exposure to how large-scale SaaS platforms meet federal security standards like NIST 800-53 and FedRAMP.

Requirements

Currently pursuing a bachelor’s or master’s degree in Cybersecurity, Information Assurance, Computer Science, MIS, or a related discipline.
Strong written communication and attention to detail.
Ability to turn technical details into clear, structured documentation.
Familiarity with one or more of the following:
Security and compliance frameworks such as NIST SP 800-53, FedRAMP, or NIST SP 800-171.
Security concepts like vulnerability management, configuration baselines, or log analysis.
Cloud technologies (AWS, Azure, GCP).
Experience with productivity or workflow tools (Jira, Confluence, N8N etc.).
Comfortable working with datasets; basic scripting knowledge (Python, Go, or similar) is helpful but not required.
Must be based in the United States for the duration of the internship.
U.S. citizenship required due to FedRAMP and public sector requirements.
Must be able to pass a background screen appropriate for public sector work.

Nice To Haves

Coursework or certifications in cybersecurity or compliance (Security+, CAP, or similar).
Experience (personal experience is acceptable) with vulnerability scanning tools (Tenable/Nessus) or security benchmarks (CIS, STIG).
Prior internship, lab, or research experience in security, compliance, or IT operations.
Military or public sector experience — especially if you’re transitioning from service — is highly valued.

Responsibilities

Help maintain the FedRAMP System Security Plan (SSP), policies, procedures, and system diagrams and adopt 20x lessons.
Collect and organize audit evidence for monthly and quarterly continuous monitoring activities.
Support updates to Plans of Action and Milestones (POA&Ms) by verifying remediation progress and documenting results.
Review vulnerability, patching, and configuration reports; summarize findings in dashboards or status updates.
Assist in preparing artifacts for 3PAO and agency reviews, and help coordinate walkthroughs or sampling sessions.
Contribute to playbooks, checklists, and documentation improvements.
Identify automation & improvement opportunities (data cleanup, report generation, or evidence tracking).
Collaborate with teams across Security, Cloud Engineering, Product, and Legal on changes or processes that affect FedRAMP.