GRC Analyst Intern

We are looking for a motivated and detail-oriented GRC Analyst Intern to join our Governance, Risk, and Compliance (GRC) team. This is an excellent opportunity for a student pursuing a degree in information security, computer science, or a related field to gain hands-on experience in the cybersecurity domain. The GRC Analyst Intern will assist in Third-Party Risk Management (TPRM) efforts and support various security certification processes. The ideal candidate is eager to learn, organized, and can work independently while contributing to team goals.

Responsibilities

• Third-Party Risk Management (TPRM) Support: Assist in evaluating third-party vendors by gathering information, reviewing security documentation, and conducting risk assessments to ensure compliance with the organization’s security standards.
• Security Certifications Assistance: Support the GRC team in achieving and maintaining security certifications such as ISO 27001, SOC 2, and PCI DSS by gathering necessary documentation, assisting with audits, and following up on action items.
• Documentation and Reporting: Help in creating and maintaining accurate security records, reports, and documentation for third-party assessments and certification processes.
• Process Improvement: Contribute ideas to streamline TPRM and certification processes and identify areas for improvement.
• Cross-functional collaboration: Collaborate with various departments such as legal, procurement, and IT to ensure successful completion of GRC tasks and projects.

Qualifications

• Education: Current student pursuing a degree in Information Security, Computer Science, or a related field with at least 18 months or more until graduation.
• Interest in Information Security: Demonstrated interest in cybersecurity, risk management, or compliance.
• Technical Skills: Basic understanding of information security concepts, frameworks (e.g., ISO 27001, SOC 2), and risk management processes.
• Organizational Skills: Strong attention to detail, with the ability to handle multiple tasks and prioritize work effectively.
• Communication Skills: Good verbal and written communication skills, with the ability to collaborate with team members and stakeholders.
• Analytical Skills: Strong problem-solving abilities and willingness to learn about security risks and mitigation strategies.
• Availability: Ability to commit to a part-time, flexible schedule, with hourly pay.