Security Intern

Reporting Location: Chicago - 345 North Morgan

Workplace Type: Hybrid

Job Summary

We are looking for a proactive GRC Intern to join our Governance, Risk, and Compliance team. This internship offers hands-on experience in how organizations manage risk and adhere to regulatory requirements. As a GRC Security Intern, you will play an essential role in supporting our team's efforts. You will engage in assessing security risks, ensuring compliance with applicable regulations, and improving our overall security framework. Your responsibilities will include assisting with security audits, documenting policies and procedures, and participating in risk assessments. By collaborating with experienced professionals, you will gain valuable insights into the relationship between governance and cybersecurity and develop key skills in risk management and compliance best practices.

Key Responsiblities

Risk Assessment and Management:

Conduct regular risk assessments to identify vulnerabilities and threats to the organization’s information assets.

Develop and implement risk mitigation strategies to safeguard against identified risks.

Continuously monitor and evaluate the effectiveness of risk management initiatives.

Compliance Monitoring:

Ensure the organization adheres to relevant regulations and industry standards (e.g., GDPR, ISO 27001).

Conduct compliance audits and assessments to evaluate the effectiveness of compliance controls and practices.

Assist in the development and maintenance of compliance documentation and policies.

Security Policy Development:

Collaborate with stakeholders to draft, review, and update security policies and procedures.

Ensure that security policies align with organizational goals and regulatory requirements.

Provide recommendations for enhancing policy effectiveness and ensuring employee adherence.

Incident Response Support:

Participate in the incident response process by assisting in identifying, analyzing, and responding to security incidents.

Support the documentation of incidents and contribute to post-incident review processes to improve future responses.

Security Awareness and Training:

Assist in developing and delivering security awareness training programs for staff to promote a culture of compliance and security.

Engage employees in understanding their roles and responsibilities related to security policies and practices.

Reporting and Documentation:

Prepare reports on risk assessment findings, compliance status, and incident response activities for management and stakeholders.

Maintain comprehensive records of compliance activities, audits, and risk management efforts.

Collaboration with Cross-Functional Teams:

Work closely with IT security, legal, and other relevant teams to ensure a cohesive approach to governance, risk, and compliance.

Collaborate with stakeholders to gather information required for assessments and audits.

Research and Analysis:

Research emerging risks, security trends, and changes in regulatory requirements to keep the organization informed and prepared.

Analyze security data to identify trends and provide insights for risk management and compliance strategies.

Tool and System Management:

Assist in the implementation and management of GRC tools and systems to streamline compliance and risk management processes.

Ensure proper utilization of tools for monitoring, reporting, and assessment purposes.

Continuous Improvement:

Identify opportunities for enhancing existing GRC processes and practices for increased efficiency and effectiveness.

Stay updated on best practices in governance, risk, and compliance to apply relevant improvements.

Qualifications

Educational Background

Currently enrolled in a degree program in computer science, information technology, cybersecurity, or a related discipline.

Completed coursework covering the fundamentals of cybersecurity, network security, and information systems.

Technical Skills

Basic understanding of information security principles and GRC concepts.

Familiarity with compliance frameworks and standards is a plus.

Strong analytical and problem-solving skills.

Knowledge of risk management principles.

Some understanding of security tools

Excellent written and verbal communication capabilities.

Proficient in Microsoft Office Suite (Excel, Word, PowerPoint, OneNote).

Analytical Skills

Strong Analytical Abilities: Capacity to analyze data and identify patterns, trends, and anomalies related to security and compliance.

Attention to Detail: A keen eye for detail to ensure accuracy in data analysis, documentation, and reporting.

Problem-solving skills: Ability to think critically and develop solutions to potential security and compliance challenges.

Soft Skills

Effective Communication Skills: Strong written and verbal communication skills to convey complex information clearly and effectively to team members and stakeholders.

Team Collaboration: Ability to work collaboratively within a team environment and contribute to group projects and initiatives.

Adaptability and Eagerness to Learn: A willingness to learn new concepts, technologies, and practices related to governance, risk management, and compliance.

Time Management: Ability to prioritize tasks effectively and manage time to meet deadlines in a dynamic work environment.

TOTAL REWARDS

Our total rewards philosophy integrates programs for compensation, benefits, recognition, learning and development, corporate culture, corporate citizenship and work-life balance. While individual program components may differ by country, some things remain constant:

Our commitment to rewarding results
Opportunities to work with talented and driven individuals at every level of our company who respect each other, treat each other fairly and hold one another accountable for our customers’—and our company’s—success

There's more ...

Generous medical, dental, vision and other great benefits

Paid parental and medical leave programs

401(k) with a company match component and profit sharing

15 days of paid time off plus company holidays

Hybrid work model

Tuition reimbursement and student loan repayment assistance

Inclusive employee resource groups

EQUAL OPPORTUNITY EMPLOYER

We are an equal opportunity employer, and we value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

RECRUITING AGENCIES

tms does not accept agency resumes submitted by third-party vendors unless a valid agreement has been signed and the tms Talent Acquisition Team has granted authorization for submissions for a specified position. Please do not submit or forward resumes to our site, tms employees, or any other company location. tms is not responsible for any fees related to unsolicited resumes.