Summer Intern, Governance, Risk, and Compliance

About The Position

Requirements

• Internships are open to current students enrolled at a university (those graduating by May 2027 are preferred) and recent graduates who graduated within the 12-month period prior to the start of the internship.
• Foundational knowledge of IT controls, information security, or cybersecurity concepts.
• Strong verbal and written communication skills, with the ability to document clearly and concisely.
• Solid organizational skills and the ability to manage multiple tasks and priorities.
• Must have legal right to work in the U.S.

Responsibilities

• Collaborate with GRC, Information Security, and Engineering teams to support internal and external security assessments, including evidence collection, documentation, and coordination.
• Gain exposure to industry-recognized frameworks (ISO 27001, SOC 2, PCI) while learning how compliance and audit activities are managed in a large, regulated environment.
• Assist in identifying opportunities to automate, streamline, or consolidate security and compliance controls, developing practical skills in control design and process improvement.
• Help identify, assess, and document security risks, learning how risks are evaluated, communicated, and mitigated across the organization.
• Support the development and maintenance of policies, standards, and control documentation, strengthening written communication and organizational skills while working under the guidance of experienced GRC professionals.