Security Intern

About The Position

Requirements

• Currently enrolled in a degree program in computer science, information technology, cybersecurity, or a related discipline.
• Completed coursework covering the fundamentals of cybersecurity, network security, and information systems.
• Basic understanding of information security principles and GRC concepts.
• Strong analytical and problem-solving skills.
• Knowledge of risk management principles.
• Excellent written and verbal communication capabilities.
• Proficient in Microsoft Office Suite (Excel, Word, PowerPoint, OneNote).
• Strong Analytical Abilities: Capacity to analyze data and identify patterns, trends, and anomalies related to security and compliance.
• Attention to Detail: A keen eye for detail to ensure accuracy in data analysis, documentation, and reporting.
• Problem-solving skills: Ability to think critically and develop solutions to potential security and compliance challenges.
• Effective Communication Skills: Strong written and verbal communication skills to convey complex information clearly and effectively to team members and stakeholders.
• Team Collaboration: Ability to work collaboratively within a team environment and contribute to group projects and initiatives.
• Adaptability and Eagerness to Learn: A willingness to learn new concepts, technologies, and practices related to governance, risk management, and compliance.
• Time Management: Ability to prioritize tasks effectively and manage time to meet deadlines in a dynamic work environment.

Nice To Haves

• Familiarity with compliance frameworks and standards is a plus.
• Some understanding of security tools

Responsibilities

• Conduct regular risk assessments to identify vulnerabilities and threats to the organization’s information assets.
• Develop and implement risk mitigation strategies to safeguard against identified risks.
• Continuously monitor and evaluate the effectiveness of risk management initiatives.
• Ensure the organization adheres to relevant regulations and industry standards (e.g., GDPR, ISO 27001).
• Conduct compliance audits and assessments to evaluate the effectiveness of compliance controls and practices.
• Assist in the development and maintenance of compliance documentation and policies.
• Collaborate with stakeholders to draft, review, and update security policies and procedures.
• Ensure that security policies align with organizational goals and regulatory requirements.
• Provide recommendations for enhancing policy effectiveness and ensuring employee adherence.
• Participate in the incident response process by assisting in identifying, analyzing, and responding to security incidents.
• Support the documentation of incidents and contribute to post-incident review processes to improve future responses.
• Assist in developing and delivering security awareness training programs for staff to promote a culture of compliance and security.
• Engage employees in understanding their roles and responsibilities related to security policies and practices.
• Prepare reports on risk assessment findings, compliance status, and incident response activities for management and stakeholders.
• Maintain comprehensive records of compliance activities, audits, and risk management efforts.
• Work closely with IT security, legal, and other relevant teams to ensure a cohesive approach to governance, risk, and compliance.
• Collaborate with stakeholders to gather information required for assessments and audits.
• Research emerging risks, security trends, and changes in regulatory requirements to keep the organization informed and prepared.
• Analyze security data to identify trends and provide insights for risk management and compliance strategies.
• Assist in the implementation and management of GRC tools and systems to streamline compliance and risk management processes.
• Ensure proper utilization of tools for monitoring, reporting, and assessment purposes.
• Identify opportunities for enhancing existing GRC processes and practices for increased efficiency and effectiveness.
• Stay updated on best practices in governance, risk, and compliance to apply relevant improvements.

Benefits

• Generous medical, dental, vision and other great benefits
• Paid parental and medical leave programs
• 401(k) with a company match component and profit sharing
• 15 days of paid time off plus company holidays
• Hybrid work model
• Tuition reimbursement and student loan repayment assistance
• Inclusive employee resource groups