Paid Governance, Risk & Compliance Summer Intern

Job Description

The GRC Intern will work and report to the SRA program manager to assist with the Third-party Security Risk Assessment program. The goal of the program is to protect EA's commercial interests by reducing known and identified risks associated with entrusting our external partners with intellectual property and other sensitive assets. The program works on a risk management model, with a foundation in formal frameworks that have been customized for specific application to the Entertainment Industry Technology segment. The GRC intern will manage incoming Security Risk Assessment requests and process them through the SRA lifecycle, partnering with internal stakeholders and key third-party providers to assess security risks and track them until resolution.

Responsibilities:

• Help conduct security risk assessments for third-party vendors based on an internal customized methodology mapped to ISO 27001 using our internal GRC Tool.
• Identify vendor's security gaps and discuss solutions for mitigation
• Review vendor's security controls and procedures, calculate risk scoring, assign corrective actions and create assessment reports.
• Cooperate and coordinate with EA Security team members and with other EA internal departments, such as game teams, IT and Legal departments to conduct security risk assessments.
• Meet service level agreements regarding response time and completion of security risk assessments.
• Follow up on risk monitoring findings and work with assessment leads to
• Provide periodical reports related to security risk assessment activities to management.

Required Skills:

• Knowledge in IT related domains: Physical/Logical Security, Access Controls, Asset Controls, System & Network Security, Operational Controls
• Detail-oriented person.
• Initiative and problem-solving skills.
• Coordinate resources to resolve problems.
• Very good experience with Microsoft Office programs.

We thought that you might want to know about the following:

• Job Location and Work Model: Hybrid from our office in Bucharest
• Work schedule: Full-time, starting in July and ending in October
• Current engagement in a form of formal education: You need to be enrolled in a Bachelor's or Master's degree program at any University at the moment of your application.