SAP Security and GRC (Intern) Consultant

At VeraLogics, you’ll support initiatives, programs, and projects aimed at strengthening our Information Security and Risk Management capabilities. As an intern, you’ll gain hands‑on experience working with security professionals while learning how modern organizations protect their systems, data, and people.

You bring curiosity, a willingness to learn, and a collaborative mindset. You’re excited about technology such as Cloud services, APIs, microservices, and modern development practice, and eager to understand how security fits into all of it. Security is core to everything we do, from safeguarding our customers to supporting our associates.

Responsibilities

- Assist as a supporting point of contact between your assigned business line and the Information Security & Risk Management team.

- Help coordinate basic Information Security activities such as reviewing documentation, tracking tasks, and gathering data across areas like Infrastructure Security, Data Security, and User Access Management.

- Learn and advocate for VeraLogics security policies, procedures, and best practices.

- Support efforts to integrate security early in development processes (“shift‑left”) by helping gather requirements and documenting recommendations.

- Assist with identifying and escalating potential security risks to senior team members.

- Participate in research and provide support on emerging Information Security topics.

- Prepare draft reports, summaries, or slide decks to support updates to leadership on security initiatives.

- Collaborate with business and technology teams to understand their goals and learn how security aligns with their needs.

Desired Education

- Currently pursuing a degree in Information Security, Computer Science, Information Systems, Cybersecurity, or a related field.

- Foundational understanding or coursework in areas such as IT security, networking, cloud concepts, or software development.

- Interest in SAP Security, Governance/Risk/Compliance (GRC), or enterprise systems—no prior experience required.

- Strong willingness to learn about topics like access control, risk mitigation, workflows, and security frameworks.

- Basic familiarity with concepts in cloud computing, APIs, or enterprise applications is a plus.

- Excellent written and verbal communication skills.

- Self-motivated, detail‑oriented, and able to follow through on assigned tasks.

- Project or team‑based school experience is a plus (e.g., capstone projects, group assignments).