Intern IT-Security - GRC (m/f/d)
Hamburg, Germany
Applications have closed
ABOUT YOU SE & Co. KG
Bestelle Deine Kleidung noch heute auf ABOUT YOU. Kostenloser Versand* & Rückversand 100 Tage Rückgaberecht Kauf auf RechnungJob Description
We are currently looking for an intern (m/f/d) who is eager to join our IT-Security Team at ABOUT YOU for the next 6 months.
Our IT-Security unit is passionate about security and hacking. The team ensures that customers of our online shop, and our B2B customers, have a safe shopping experience and their personal data is secure with us. The Governance, Risk, and Compliance (GRC) circle within the IT-Security unit is responsible for ensuring compliance to security policies and controls while maintaining the information security management system (ISMS). Their goal is to create a secure environment without restricting or slowing down business processes.
Challenges the team will be working on in the upcoming months:
- Further development and improvement of our security awareness program
- Certification of our ISMS (Information Security Management System) with regard to IEC/ISO 27001:2022 and SOC2 Type II
- Enhancing our IT-security controlling and risk management frameworks
- Oversee third-party risk management process
- Management and engagement of external IT-auditors within the area of IT-security
What you will do
- Lead the security awareness training project with team assistance, including the further development of ongoing security awareness training courses for our employees
- Educate your colleagues at ABOUT YOU regarding important security topics
- Manage the third-party risk assessment process
- Support the GRC circle in reporting and development of KPIs for the area of IT-security controlling
- Improvement of the ISMS policies, controls, and risk framework
Who you are
- You are currently studying, or have a background, in IT-Security, Computer Science, IT-Administration, Business Informatics, or something similar.
- You are fluent in written and spoken English
- You can clearly communicate using email and other digital tools (e.g., Slack or MS Teams)
- You have strong data analytics and reporting skills.
- You are proficient in MS Office or Google Workspace (particularly in Excel or Google Sheets)
- You are able to deliver security-related educational content in an engaging, simple and fun way
- Ability to program basic code or scripts is a benefit, but not required (e.g., Python, Bash, VBA Macros, etc.)
Benefits
- Grow together with one of the fastest growing eCommerce companies in Europe
- Flexible working times
- 40% discount on our online shop
- Fresh fruits + drinks everywhere
- Language courses (German & English)
- Free sports courses & reduced price for gym membership
- Mobility subsidy
- Free choice of hardware and operating system (Mac, Windows, Linux) also for private usage
- State-of-the-art tech stack running on AWS
- Modern office in the city center of Hamburg
- International working environment and English as company language
- Company flats (subject to availability)
YOU ARE THE CORE OF ABOUT YOU.
We take responsibility for creating an inclusive and exceptional environment where all genders, nationalities and ethnicities feel welcomed and accepted exactly as they are. We believe that a diverse workforce essentially contributes to the ABOUT YOU culture. In order to maintain talent and diversity, we emphasize the care for physical health, mental health and overall well-being. Our values and work ethics essentially contribute to our brand mission: empower acceptance and shape an inclusive, fair and circular fashion culture.
We are looking forward to receiving applications preferably via our online application portal! Thus, we can ensure a faster process and for you it is very easy to upload your application documents. We would be happy if you also attach your favorite infosec meme :)
Tags: Analytics AWS Bash Compliance Computer Science Data Analytics E-commerce Ecommerce Governance ISMS ISO 27001 KPIs Linux Python Risk assessment Risk management SOC 2 Windows
Perks/benefits: Career development Fitness / gym Flex hours Health care
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open IT Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open Windows-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open DevOps-related jobs
- Open Security assessment-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open DevSecOps-related jobs
- Open CEH-related jobs