Information Security & Governance Compliance Risk Intern
About the Role
We’re looking for an Information Security & Governance Compliance Risk Intern who is eager to learn how cybersecurity, compliance, and risk management work in a fast-growing SaaS scale-up.
As part of our Information Security team, you’ll get hands-on experience supporting customer security requests, maintaining compliance frameworks, and assisting with internal processes. This is a great opportunity to explore the fundamentals of information security governance while contributing to real projects that help keep our company and our customers secure.
This internship is for 4–6 months, based in our Amsterdam office (hybrid, min. 3 days onsite).
You’ll report directly to our Director of Information Security and Compliance and collaborate closely with cross-functional teams such as Legal, IT, Sales, CSM, and Engineering.
Key Responsibilities
Assist in completing and managing customer security questionnaires, due diligence requests, and RFPs.
Support the ongoing maintenance and improvement of the Information Security Management System (ISMS).
Learn to perform risk assessments, document risks, and support mitigation planning.
Help maintain compliance documentation (e.g., policies, procedures, audit logs).
Support internal and external security audits and evidence collection.
Track remediation actions from security findings, incidents, or risks.
Assist with vendor risk management processes and reviews.
Help monitor regulatory and industry compliance requirements (ISO 27001, SOC 2, GDPR).
Collaborate with internal teams to support customer security requests.
What You’ll Learn
Fundamentals of cybersecurity governance, risk management, and compliance.
How to analyze and respond to customer security questionnaires and assessments.
How organizations implement and maintain compliance frameworks (ISO 27001, SOC 2, NIST, etc.).
Real-world applications of risk assessment, security controls, and audit processes.
Requirements
Essential:
Strong interest in cybersecurity, compliance, and risk management.
Excellent written and verbal communication skills.
Attention to detail and ability to work independently with supervision.
Ability to understand and convey technical concepts clearly.
Proficiency with Microsoft Office / Google Workspace.
Nice to Have (not required):
Basic understanding of information security principles or standards.
Familiarity with data privacy regulations like GDPR or frameworks like ISO 27001.
Previous coursework or certification (e.g., CompTIA Security+, ISC2 CC).
Qualifications:
What We Offer
Internship duration: 4–6 months.
Allowance to support travel and lunch costs.
Hybrid working model (3 days onsite at our Amsterdam HQ).
Being part of one of the fastest-growing SaaS scale-ups in the Netherlands.
Hands-on experience in cybersecurity and compliance.
International and collaborative work environment.
Delicious daily lunch prepared fresh by our chef in the Amsterdam office.
-
Fun team events and social activities.
🚀 If this sounds like you, apply now! We can’t wait to welcome our next intern.
