Intern IT-Security - GRC (m/f/d)

Job Description

We are currently looking for an intern (m/f/d) who is eager to join our IT-Security Team at ABOUT YOU for the next 6 months.

Our IT-Security unit is passionate about security and hacking. The team ensures that customers of our online shop, and our B2B customers, have a safe shopping experience and their personal data is secure with us. The Governance, Risk, and Compliance (GRC) circle within the IT-Security unit is responsible for ensuring compliance to security policies and controls while maintaining the information security management system (ISMS). Their goal is to create a secure environment without restricting or slowing down business processes.

Challenges the team will be working on in the upcoming months:

• Further development and improvement of our security awareness program  
• Certification of our ISMS (Information Security Management System) with regard to IEC/ISO 27001:2022 and SOC2 Type II 
• Enhancing our IT-security controlling and risk management frameworks
• Oversee third-party risk management process
• Management and engagement of external IT-auditors within the area of IT-security

What you will do

• Lead the security awareness training project with team assistance, including the further development of ongoing  security awareness training courses for our employees
• Educate your colleagues at ABOUT YOU regarding important security topics
• Manage the third-party risk assessment process
• Support the GRC circle in reporting and development of KPIs for the area of IT-security controlling
• Improvement of the ISMS policies, controls, and risk framework

Who you are

• You are currently studying, or have a background, in IT-Security, Computer Science, IT-Administration, Business Informatics, or something similar.
• You are fluent in written and spoken English
• You can clearly communicate using email and other digital tools (e.g., Slack or MS Teams)
• You have strong data analytics and reporting skills.
• You are proficient in MS Office or Google Workspace (particularly in Excel or Google Sheets)
• You are able to deliver security-related educational content in an engaging, simple and fun way
• Ability to program basic code or scripts is a benefit, but not required (e.g., Python, Bash, VBA Macros, etc.)

Benefits

• Grow together with one of the fastest growing eCommerce companies in Europe
• Flexible working times
• 40% discount on our online shop
• Fresh fruits + drinks everywhere
• Language courses (German & English)
• Free sports courses & reduced price for gym membership
• Mobility subsidy
• Free choice of hardware and operating system (Mac, Windows, Linux) also for private usage
• State-of-the-art tech stack running on AWS
• Modern office in the city center of Hamburg
• International working environment and English as company language
• Company flats (subject to availability)

YOU ARE THE CORE OF ABOUT YOU.

We take responsibility for creating an inclusive and exceptional environment where all genders, nationalities and ethnicities feel welcomed and accepted exactly as they are. We believe that a diverse workforce essentially contributes to the ABOUT YOU culture. In order to maintain talent and diversity, we emphasize the care for physical health, mental health and overall well-being. Our values and work ethics essentially contribute to our brand mission: empower acceptance and shape an inclusive, fair and circular fashion culture.

We are looking forward to receiving applications preferably via our online application portal! Thus, we can ensure a faster process and for you it is very easy to upload your application documents. We would be happy if you also attach your favorite infosec meme :)