Cyber Security New Associate (KSA COOP Internship)

Cybersecurity GRC (Strategy) Intern

Location

Riyadh, Saudi Arabia

Internship Overview

We are looking for a motivated and detail‑oriented Cybersecurity GRC (Strategy) Intern to join our Governance, Risk, and Compliance team. This internship is designed to provide exposure to cybersecurity strategy, risk management, regulatory compliance, and security governance activities. The intern will work alongside experienced GRC and cybersecurity professionals and gain practical experience supporting strategic and advisory cybersecurity initiatives.

Key Responsibilities

• Support cybersecurity risk assessments, including identifying risks, documenting findings, and tracking remediation actions.
• Assist in reviewing and maintaining cybersecurity policies, standards, and procedures.
• Support compliance and self‑assessment activities against cybersecurity frameworks and regulations (e.g., NCA, NIST, ISO 27001).
• Assist with third‑party risk management activities, including documentation reviews and risk tracking.
• Support preparation for internal and external audits by collecting evidence and maintaining compliance documentation.
• Assist in maintaining risk registers, compliance trackers, and governance dashboards.
• Conduct research on cybersecurity regulations, best practices, and emerging governance trends.
• Support reporting and presentations related to cybersecurity posture, risks, and compliance status.

Required Qualifications

• Currently pursuing or recently completed a Bachelor’s degree in Cybersecurity, Information Technology, Information Systems, or a related field.
• Basic understanding of cybersecurity governance, risk, and compliance concepts.
• Familiarity with cybersecurity frameworks or standards such as NIST, ISO 27001, or NCA.
• Strong analytical, documentation, and organizational skills.
• Good written and verbal communication skills in English (Arabic is a plus).
• Ability to work in a structured, detail‑oriented, and documentation‑focused environment.

Preferred / Nice‑to‑Have

• Exposure to cybersecurity risk assessments, compliance reviews, or audit activities.
• Familiarity with Saudi cybersecurity regulations (e.g., NCA, NDMO).
• Experience with documentation, reporting, or policy writing.
• Participation in cybersecurity projects, internships, or academic research related to GRC.
• Entry‑level certifications or coursework in progress (e.g., ISO 27001, GRCP, Security+).

What You’ll Gain

• Hands‑on experience in cybersecurity governance, risk, and compliance activities.
• Exposure to cybersecurity strategy and advisory‑focused work.
• Practical understanding of regulatory and compliance‑driven cybersecurity environments.
• Experience working with risk registers, policies, and compliance artifacts.
• Strong foundation for future roles such as Cybersecurity GRC Analyst, Cyber Strategy Analyst, or Risk & Compliance Analyst.