- ISO 27001
- Information Security
- Microsoft Office
Sony Corporation of America
, located in
New York, NY
, is the U.S. headquarters of Sony Corporation, based in Tokyo, Japan. Sony's principal U.S. businesses include Sony Electronics Inc., Sony Mobile Communications (USA) Inc., Sony Interactive Entertainment LLC., Sony Pictures Entertainment Inc., Sony Music Entertainment, and Sony/ATV Music Publishing LLC. With some 900 million Sony devices in hands and homes worldwide today, a vast array of Sony movies, television shows and music, and the PlayStation Network, Sony creates and delivers more entertainment experiences to more people than anyone else on earth.
Sony Corporation of America (SCA)
is seeking an
to join the
Global Information Security Department (GISD)
for the 2019 summer internship program. This position will assist the Governance, Risk, and Compliance (GRC) team responsible for developing, implementing and maintaining a global Information Security Management System (ISMS) as part of an enterprise-wide risk management program to secure Sony’s information assets, services, and the products that depend on them, building trust with customers and stakeholders, and protecting the privacy of Sony’s customers and employees. This is a position for those interested in pursuing a career in cyber security, governance, risk management, and compliance on a global scale.
The GISD summer internship program runs for twelve weeks beginning in May and ending in August. Our program is designed to provide skills, knowledge, and hands-on work experience in the information security and privacy industry, supporting the personal growth of our interns as well as Sony business results. This role is a fulltime, paid internship.
Coordinate and support GRC stakeholder engagement activities, including GRC calls and workshops
Assist with creating GRC project and program templates, documents, and visual representations
Maintain an intranet webpage of GRC project and program documents
Prepare summary metrics and briefings on resolution status.
Provide ad hoc GRC project / program support
Help translate business challenges into defined and documented GRC business and functional requirements
Track meeting minutes, business requirements, and feedback gathered from stakeholder engagement activities
Meets one or more of the following requirements:
Currently enrolled in a degree-seeking program
Currently enrolled in a technical or certificate program
Recent graduate of a degree-seeking or technical program, within one year of completion
Preferred education in a technical field such as Information Security, Computer Science, Information Systems, Engineering, or related field
Must be highly self-motivated and able to work independently and as part of a team
Proficient in Microsoft Office
Good analytical, research, and problem-solving skills with a keen attention to detail
Ability to work on multiple projects, with strong ability to adapt to dynamic work environment and to prioritize tasks accordingly
Good oral and written communication skills
Knowledge of information security management frameworks (e.g. ISO 27001 and 27002) desirable and their application in an ISMS to support business objectives and priorities preferred
Experience with GRC tools (e.g. RSA Archer) desirable
Knowledge of operational security areas desirable
All candidates must be authorized to work in the USA
Sony is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, pregnancy, national origin, ancestry, citizenship, age, legally protected physical or mental disability, protected veteran status, status in the U.S. uniformed services, sexual orientation, gender identity or expression, marital status, genetic information or membership in any other legally protected category.