IT&DATA Internship in Cybersecurity Risk Team

Descripción del puesto:

About the job

The Cybersecurity Risk Intern is responsible for supporting the Enterprise Cybersecurity Risk team in delivering core risk management processes. The role provides hands-on experience across application, third-party, and enterprise risk assessments, contributes to the review of technical and organizational measures for data processing contracts, and assists in the development of cybersecurity risk standards.
About the Role
As a Cybersecurity Risk Intern, you will:
* Support application risk assessments by gathering information from application owners, documenting risks, and assisting with control validation.
* Assist in third-party risk assessments, including reviewing supplier responses, validating evidence, and helping identify potential cybersecurity and data protection risks.
* Contribute to enterprise-level risk assessments by collecting inputs, updating risk registers, and supporting risk analysis activities.
* Participate in the review of Technical and Organizational Measures (TOMs) for data processing agreements to help ensure that Danone's cybersecurity and data protection requirements are met.
* Support the formulation and maintenance of cybersecurity risk standards, guidelines, and methodologies used across the organization.
* Help maintain documentation, dashboards, and reports used by the Risk team.
* Collaborate with team members across Cybersecurity, Legal, Procurement, and IT to gather information and drive follow-ups.
* Provide general support to ongoing cybersecurity risk projects and continuous improvement initiatives.

* Want to gain a practical, hands-on understanding of cybersecurity risk management.
* Have strong analytical skills and the ability to think systematically when evaluating risks.
* Communicate clearly and professionally, both verbally and in writing.
* Are proactive, collaborative, and comfortable working in a fast-paced, international environment.
* Are eager to learn how cybersecurity risks are assessed across applications, suppliers, and enterprise processes.
* Are familiar with foundational cybersecurity concepts and frameworks such as NIST CSF, ISO 27001, NIS2, or similar.
* Have strong organizational skills and attention to detail.
* Are motivated to contribute to building a secure, resilient technology environment." descriptionHeader="
The Cybersecurity Risk Intern is responsible for supporting the Enterprise Cybersecurity Risk team in delivering core risk management processes. The role provides hands-on experience across application, third-party, and enterprise risk assessments, contributes to the review of technical and organizational measures for data processing contracts, and assists in the development of cybersecurity risk standards.
About the Role
As a Cybersecurity Risk Intern, you will:
* Support application risk assessments by gathering information from application owners, documenting risks, and assisting with control validation.
* Assist in third-party risk assessments, including reviewing supplier responses, validating evidence, and helping identify potential cybersecurity and data protection risks.
* Contribute to enterprise-level risk assessments by collecting inputs, updating risk registers, and supporting risk analysis activities.
* Participate in the review of Technical and Organizational Measures (TOMs) for data processing agreements to help ensure that Danone's cybersecurity and data protection requirements are met.
* Support the formulation and maintenance of cybersecurity risk standards, guidelines, and methodologies used across the organization.
* Help maintain documentation, dashboards, and reports used by the Risk team.
* Collaborate with team members across Cybersecurity, Legal, Procurement, and IT to gather information and drive follow-ups.
* Provide general support to ongoing cybersecurity risk projects and continuous improvement initiatives." workFromHome="Hybrid