Universal Music Group 2026 Summer Internship Program: Global Technology Opportunities: (Multiple Locations: CA & TN)

We are UMG, the Universal Music Group. We are the world’s leading music company. In everything we do, we are committed to artistry, innovation and entrepreneurship. We own and operate a broad array of businesses engaged in recorded music, music publishing, merchandising, and audiovisual content in more than 60 countries. We identify and develop recording artists and songwriters, and we produce, distribute and promote the most critically acclaimed and commercially successful music to delight and entertain fans around the world. Program Eligibility: Currently enrolled at an accredited two or four-year college/university in the United States, pursuing an undergraduate, graduate and/or law degree Graduating between Spring 2026 - Fall 2028 Have access to housing and transportation within the designated city (We do not offer housing or transportation accommodations) Legally authorized to work in the United States and will not require sponsorship for employment visa status, now or in the future (e.g., H1-B, OPT, etc.) Commit to 20 - 40 hours per week (based on individual business area) Note: There are multiple job descriptions listed below. Please read carefully. Applications will be reviewed early Spring 2026. 2026 Summer Internship Program Dates: June 8th, 2026- August 14th, 2026 Business Process Change (Remote): How You’ll CREATE: The Business Process Change (BPC) team serves as a vital liaison between technology development teams and global administrative teams, ensuring seamless alignment across all phases of system development and deployment. BPC actively participates in every stage of development — from planning and design through testing, rollout and adoption — to bridge technical solutions with operational needs. The team leads the communication and change management strategy, ensuring that all stakeholders are informed, prepared, and supported throughout system transitions. Reviewing incoming tickets & reaching out on lagging testing tickets First drafts on communications Training Center & Training Videos for the Royalty & Finance projects launching in 2026 Monitoring Product Adoption Dashboards Product Issue Tracking DevOps (Onsite: CA): How You'll CREATE: We will host 3 interns to work with the Cloud Infrastructure, CICD/DevOps Landscape, and FinOps/Optimization landscapes in AWS, GCP, and Azure. They will work hand-in-hand with the three leaders of DevOps in Woodland Hill and be an extension of them as they work in Cloud Infrastructure, DevOps, FinOps, Optimization, and innovation in the cloud. Global Security: Physical Security (Remote): How You'll CREATE: This department oversees all physical security for UMG, including all labels globally. This includes facility security standards, employee protection, travel security, investigations, management of people of interest (POIs) as well as running a 24/7 global security operations center. This information is used to dictate the security level needed to keep our executives, employees and facilities safe. Case management Online scam investigations and people of interest investigations An overall understanding of the Global Security Operations Center (GSOC) and logistics around protective operations Infrastructure/Access Management (Onsite: TN): How You'll CREATE: The Identity Security organization safeguards how users and systems securely access the company’s digital ecosystem. Our mission is to enable trusted, seamless access while protecting data, privacy, and business operations across a global, hybrid environment. Within this group, the Access Management / Single Sign-On (SSO) team designs, engineers, and maintains the authentication and authorization services that form the backbone of the company’s Zero Trust architecture. We deliver modern identity capabilities that balance security, usability, and performance across cloud, mobile, and on-prem platforms. Our team is responsible for: Access Enablement: Implementing and managing SSO integrations across hundreds of enterprise and SaaS applications using standards such as SAML, OIDC, and OAuth 2.0. Authentication Services: Operating multi-factor authentication (MFA) and risk-based access controls aligned to company policy and NIST guidance. Privileged and Federated Access: Enabling secure access for administrators, service accounts, and third parties through federation, just-in-time access, and adaptive controls. Platform Engineering: Designing scalable, high-availability identity platforms (e.g., Azure AD, Okta, Ping) that underpin the company’s enterprise authentication ecosystem. Interns joining this team will gain real-world experience in modern identity architecture, Zero Trust principles, and secure access design, while collaborating with engineers and architects on initiatives that directly impact how employees, partners, and systems securely connect to the company’s environment. IAM interns will support initiatives across Enterprise Access Management and Single Sign-On (SSO), gaining hands-on exposure to how authentication, authorization, and identity lifecycle management operate at enterprise scale. Technical Learning & Shadowing - Observe IAM engineers and analysts during application onboarding, troubleshooting, and incident response to understand real-world identity operations. Collaboration & Communication - Participate in team meetings, sprint reviews, and onboarding sessions with Security, HR, and product teams; engage with vendors and internal stakeholders. Documentation & Process Support - Create and update materials in Confluence and SharePoint, organize workflows, templates, and run books, and contribute to process improvements. Project Support - Assist with onboarding and testing of SSO and MFA integrations, validate SSO user experiences (e.g., login and password reset flows). This internship provides practical experience in modern identity architecture, Zero Trust concepts, and enterprise-scale security operations—ideal for students pursuing careers in cybersecurity, systems engineering, or IT strategy. Infrastructure/Customer & Partner IAM (Onsite: TN): How You'll CREATE: The Customer & Partner Identity and Access Management (CIAM) team designs and operates the authentication and security platforms that protect our external users - including customers, consumers, and business partners. Our mission is to deliver secure, seamless, and trusted digital experiences that safeguard data while enabling engagement and growth. This team engineers and governs the technologies that handle registration, login, MFA, consent, and account recovery for millions of users globally. We focus on modern identity standards and patterns - OIDC, OAuth 2.0, FIDO2, and SAML - implemented through scalable, cloud-native platforms. Interns on the Customer & Partner Identity (CIAM/PIAM) team will help shape and secure the digital experiences that connect our customers, consumers, and partners to our products and services. This role combines security, technology, and user experience - providing exposure to how modern identity platforms enable trust on a global scale. User Journey Testing & Analysis - Evaluate registration, login, MFA, and recovery experiences to identify friction points and recommend improvements. Support usability testing and quality checks for new or updated identity flows. Integrated Solution Evaluation - Assist with testing and documenting new integrations, such as device and identity fraud signal technologies, identity verification services, and adaptive authentication solutions. Documentation & Insights - Capture test results, create user flow diagrams, and maintain clear documentation of findings and recommendations. Collaboration & Research - Work with engineers, product managers, and security architects to explore innovative approaches to digital identity and customer trust, including emerging technologies and standards (OIDC, OAuth2, FIDO2). Operational & Support Tasks - Help review configuration data, track onboarding progress for new applications, and contribute to improving internal knowledge bases and processes. This internship offers hands-on experience in customer identity security, user experience design, and risk signal integration, ideal for students interested in cybersecurity, product development, or digital trust engineering. Infrastructure/Identity Governance (Onsite: TN): How You'll CREATE: The Identity Security organization safeguards how our employees, contractors, and partners access the company’s systems and data. We design and operate the identity foundations that enable secure, seamless, and compliant access across our global environment. Within this group, the Identity Governance & Administration (IGA) team focuses on the lifecycle management and governance of digital identities. We build and maintain the systems and controls that ensure the right people have the right access at the right time - and that such access is continuously verified and compliant with regulatory and internal standards. Our work blends technology engineering, security governance, and business enablement. We operate at the intersection of security, compliance, and productivity, ensuring access aligns with Zero Trust principles, segregation-of-duties (SoD) policies, and data protection regulations. Areas of focus: Identity lifecycle automation: Joiner, mover, leaver workflows integrated with HR and directory systems. Access governance: Certification campaigns, role-based and attribute-based access models, SoD policy design. Platform engineering: Configuration and integration of IGA platforms (e.g., Saviynt, SailPoint) with directories, SaaS, and on-prem systems. Control monitoring: Implementation of continuous access reviews, privileged account oversight, and regulatory evidence collection. For interns, this team offers exposure to real-world enterprise identity operations, security control frameworks (NIST CSF, ISO 27001, SOX), and practical automation — all while contributing to a core cybersecurity capability that touches every user in the company. As part of the Identity Governance & Administration (IGA) team within Identity Security, the intern will gain hands-on experience improving enterprise identity processes, data quality, and operational efficiency in a global environment. Key areas of contribution include: Process Enhancement: Partner with the Help Desk and TechOps teams to identify and document opportunities to streamline IGA-related workflows. Recommend and implement process improvements that enhance the end-user and support experience while driving operational efficiency. Data Quality & User Experience Improvements: Enhance the accuracy and usability of application and entitlement data within the IGA platform (covering ~500 applications). Develop clearer, user-friendly entitlement descriptions - leveraging AI tools to assist in writing and validation — to improve access request and certification experiences. Operationalization of Identity Functions: Work alongside the IGA L3 (tower lead) and TechOps IAM teams to identify recurring or manual tasks suitable for operational transition to Level 2 support. Contribute to documentation, process design, and service readiness activities that strengthen long-term scalability. Global Template Translation & Localization: Support the rollout of multilingual communications for IGA notifications (e.g., certification reminders, onboarding emails) in alignment with the company’s global hub strategy. Collaborate with Tech Communications and regional teams to translate and validate templates using AI-assisted translation tools. Technical Operations Center (Onsite: TN): How You'll CREATE: Our Technical Operations Center (TechOps) is a centralized command center responsible for monitoring, managing, and maintaining the stability, performance, and security of our organization's critical IT infrastructure. Servers: Monitoring the health, capacity, and performance of physical and virtual servers. This includes ensuring adequate storage, memory, and processing power, and performing routine maintenance, patching, and backups Networks: Overseeing network connectivity, bandwidth utilization, latency, and security. The team manages routers, switches, firewalls, and VPNs, ensuring reliable data transfer and connectivity across the organization and to the internet. Identity Access Management (IAM): Managing user identities, authentication, and authorization to systems and data. This involves provisioning and deprovisioning accounts, managing permissions, enforcing multi-factor authentication (MFA), and monitoring access logs for unusual activity. Incident Response: Detecting, prioritizing, and resolving infrastructure outages or performance degradation. Our staff are often the first responders, following established protocols to minimize downtime and business impact. Proactive Maintenance and Optimization: Implementing preventative measures, conducting capacity planning, and automating routine tasks to improve efficiency and prevent future issues. Coordination and Communication: Acting as a central point of contact for escalating complex problems to specialized engineering teams (e.g., network engineering, security, server engineering) and communicating status updates to management and affected business units. An intern on our TechOps team can expect a variety of tasks and projects designed to provide hands-on experience with real-world infrastructure management. These assignments bridge theoretical knowledge with practical application in areas like servers, networks, and identity management. First-level Support: Responding to and resolving basic hardware and software issues reported via internal ticketing systems, escalating complex issues to senior engineers when necessary. System Maintenance: Assisting with routine server maintenance, including monitoring system performance and capacity, ensuring backups are completed successfully, and performing basic patching and updates. User and Access Management: Creating, modifying, and deprovisioning user accounts in systems like Active Directory and Office 365, managing permissions, and assisting with access reviews. Hardware Management: Assisting with the setup, deployment, and configuration of servers and maintaining an accurate inventory. Documentation: Creating and updating clear, comprehensive technical documentation, user guides, and Standard Operating Procedures (SOPs) for existing and new processes. Network Troubleshooting: Learning to diagnose basic network connectivity problems (LAN/WAN, wireless, VPN) using appropriate software and tools under guidance. In essence, our TechOps team is the "mission control" for IT at UMG, ensuring that the technology backbone of the organization runs smoothly and securely 24/7. TechOps, Vulnerability Management (Onsite: TN): How You'll CREATE: The TechOps Vulnerability Management team is responsible for protecting Universal Music Group’s global infrastructure and digital assets. The team focuses on identifying, managing, and mitigating security vulnerabilities across our IT environment, ensuring systems and data remain secure and compliant. We collaborate with global IT, business, and cloud operations teams to strengthen the company’s security posture through proactive monitoring, analysis, and remediation efforts. The Vulnerability Management Intern will assist the team with projects that strengthen UMG’s security posture, including: Supporting vulnerability assessment activities using enterprise tools such as Tenable Assisting in the review and prioritization of identified vulnerabilities based on risk and system criticality Helping document remediation steps and tracking progress across teams Learning and assisting with automation of basic reporting and workflows related to vulnerability tracking Contributing to knowledge base and process documentation updates Participating in team meetings and cross-functional discussions to understand how vulnerabilities impact operations and business goals Bring Your VIBE (ALL ROLES): Strong attention to detail Strong organizational skills and efficiency Ability to multitask and meet tight deadlines in fast- paced, high-pressure environments High level of integrity Discretion in handling confidential information Professionalism in dealing with senior professionals inside and outside the company A “can-do” attitude Knowledge of Microsoft Office (Word, Excel, PowerPoint) Self-starter Excellent communication skills Eager to learn Disclaimer: This job description only provides an overview of job responsibilities that are subject to change. Universal Music Group is an Equal Opportunity Employer We are an E-Verify employer in Alabama, Arizona, Georgia, Mississippi, North Carolina, South Carolina, Tennessee, and Utah. For more information, please click on the following links. E-Verify Participation Poster: English / Spanish E-Verify Right to Work Poster: English | Spanish Job Category: Internships Salary Range: $15-$20 The actual base salary offered depends on a variety of factors, which may include, as applicable, the qualifications of the individual applicant for the position, years of relevant experience, specific and unique skills, level of education attained, certifications or other professional licenses held, and the location in which the applicant lives and/or from which they will be performing the job. All candidates are encouraged to apply. We are Universal Music Group, the world’s leading music company. We are the home for music’s greatest artists, innovators and entrepreneurs.