Share this opportunity
Related Job
- Senior Data Privacy Executive, Zalopaythành phố hồ chí minh
- Front-End Engineer - VNGGamesthành phố hồ chí minh
- Associate Product Manager, Digital Businessthành phố hồ chí minh
Job Search
Security Intern (GRC), Zalopay
CollaboratorTechSecurity25-PSE-2912
Thành phố Hồ Chí Min...thành phố hồ chí minh
View this job in
English
Job description
We are a dynamic and innovative organization committed to maintaining the highest standards of security and compliance. Our Security Team plays a critical role in safeguarding our systems, data, and reputation. We are looking for a GRC Intern to help us strengthen our governance, risk management, and compliance frameworks.
Key Responsibilities:
Key Responsibilities:
- Assist in preparing for external compliance audits including ISO 27001, PCI DSS, SOX 404.
- Review and understand auditor requests and inquiries, and coordinate with relevant teams to gather required information.
- Prepare and organize evidence and documentation to satisfy audit requirements.
- Monitor compliance obligations and recurring tasks throughout the audit period, ensuring timely completion.
- Assist in maintaining GRC documentation and reporting, including security policies, procedures, risk registers, and compliance reports.
- Support periodic governance and security activities such as user access reviews, internal audits, security awareness training.
- Assist in other ad-hoc tasks as required
Requirement
- Pursuing a degree in Information Security, Computer Science, or related field; also open to non-technical backgrounds.
- Interest in information security, governance, risk, and compliance frameworks.
- Strong organizational skills with attention to detail.
- Good communication and teamwork skills.
- Ability to learn quickly and work effectively in a collaborative environment.
Nice to have:
- Strong English proficiency is considered an advantage.
- Prior involvement in projects such as: ISO/IEC 27001, PCI DSS, or SOX 404 is a plus.
- Experience in designing and drafting procedures, standards, and policies for information security operations is an added advantage.
Registration was successful!
We've received your profile and we do appreciate your interest in our job opportunities. We will screen your application and contact you for further steps if you are short-listed. Otherwise, the application with no response received within 2 weeks is considered unsuitable application, and we will keep your resume in our database and may consider for appropriate future openings. Again, thank you for considering VNG as a potential employer.