Intern, GRC

Sony Corporation Of America - Herndon, VA4.1

Sony Corporation of America

, located in

New York, NY

, is the U.S. headquarters of Sony Corporation, based in Tokyo, Japan. Sony's principal U.S. businesses include Sony Electronics Inc., Sony Mobile Communications (USA) Inc., Sony Interactive Entertainment LLC., Sony Pictures Entertainment Inc., Sony Music Entertainment, and Sony/ATV Music Publishing LLC. With some 900 million Sony devices in hands and homes worldwide today, a vast array of Sony movies, television shows and music, and the PlayStation Network, Sony creates and delivers more entertainment experiences to more people than anyone else on earth.

Position Summary:
Sony Corporation of America (SCA)

is seeking an

Intern, GRC

to join the

Global Information Security Department (GISD)

located in

Herndon, VA

for the 2019 summer internship program. This position will assist the Governance, Risk, and Compliance (GRC) team responsible for developing, implementing and maintaining a global Information Security Management System (ISMS) as part of an enterprise-wide risk management program to secure Sony’s information assets, services, and the products that depend on them, building trust with customers and stakeholders, and protecting the privacy of Sony’s customers and employees. This is a position for those interested in pursuing a career in cyber security, governance, risk management, and compliance on a global scale.

The GISD summer internship program runs for twelve weeks beginning in May and ending in August. Our program is designed to provide skills, knowledge, and hands-on work experience in the information security and privacy industry, supporting the personal growth of our interns as well as Sony business results. This role is a fulltime, paid internship.

Coordinate and support GRC stakeholder engagement activities, including GRC calls and workshops

Assist with creating GRC project and program templates, documents, and visual representations

Maintain an intranet webpage of GRC project and program documents

Prepare summary metrics and briefings on resolution status.

Provide ad hoc GRC project / program support

Help translate business challenges into defined and documented GRC business and functional requirements

Track meeting minutes, business requirements, and feedback gathered from stakeholder engagement activities

Meets one or more of the following requirements:
Currently enrolled in a degree-seeking program

Currently enrolled in a technical or certificate program

Recent graduate of a degree-seeking or technical program, within one year of completion

Preferred education in a technical field such as Information Security, Computer Science, Information Systems, Engineering, or related field

Must be highly self-motivated and able to work independently and as part of a team

Proficient in Microsoft Office

Good analytical, research, and problem-solving skills with a keen attention to detail

Ability to work on multiple projects, with strong ability to adapt to dynamic work environment and to prioritize tasks accordingly

Good oral and written communication skills

Knowledge of information security management frameworks (e.g. ISO 27001 and 27002) desirable and their application in an ISMS to support business objectives and priorities preferred

Experience with GRC tools (e.g. RSA Archer) desirable

Knowledge of operational security areas desirable

All candidates must be authorized to work in the USA

Sony is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, pregnancy, national origin, ancestry, citizenship, age, legally protected physical or mental disability, protected veteran status, status in the U.S. uniformed services, sexual orientation, gender identity or expression, marital status, genetic information or membership in any other legally protected category.