Lead functional safety for product development in PEM electrolyzers at Quest One. Collaborate with teams and support certification processes in the field of green hydrogen technology.
About the role
- Information Security Intern focusing on Governance, Risk, and Compliance at papernest. Involves compliance projects and security documentation in a tech environment.
Responsibilities
- You will be the "guardian of the framework."
- Help turn our security activities into a structured, audit-ready program, focusing heavily on Governance, Risk, and Compliance (GRC).
- Assist in the NIS2 compliance project by helping map our current measures against essential entity obligations.
- Support PCI-DSS oversight by collecting evidence (screenshots, logs, configs) and organizing them for external auditors.
- Help manage our continuous compliance platforms to ensure we are always audit-ready.
- Act as the librarian for our security knowledge.
- Help centralize, format, and update our Security Policy Framework to ensure it is accessible to all employees.
- Work on Internal audit preparation by ensuring all procedures are written down and up to date.
- Assist in documenting security KPIs and preparing reports for leadership.
- Take ownership of the Vendor security due diligence process.
- Send out security questionnaires to new tools/partners and review their answers.
- Maintain our register of third-party risk assessments and ensure contractual security clauses are tracked.
- Assist the Senior Engineer in tracking vulnerability remediation by following up with developers to ensure tickets are closed on time.
- Help organize security awareness campaigns (phishing simulations, training sessions) to boost our internal culture.
Requirements
- Student in Business (IT Management), Computer Science, or Cybersecurity with a focus on GRC.
- Detail-Oriented: You love checklists, organized folders, and clear documentation.
- Strong Writing Skills: You can explain complex rules in simple, clear English.
- Interest in Regulations: You are curious about GDPR, NIS2, and PCI-DSS and want to learn how they apply to a real tech scale-up.
- Tech-Savvy: You don’t need to be a coder, but you are comfortable with tech tools (Jira, Notion, Excel) and understand the basics of how a SaaS company works.
Benefits
- Evolve in an international and inclusive environment: everyone has a place at papernest, and with more than 46 different nationalities, it's not uncommon here to start a sentence in English and finish it en français o en español
- Enjoy a competitive compensation for your internship. We value every contribution and are committed to offering attractive remuneration for your efforts and dedication.
- A healthy and balanced breakfast is offered every Tuesday!
- Interns are not just “photocopy-coffee” assistants! As a full-fledged team member, you're here to learn, but also to share your ideas and implement projects. You'll be supported throughout your journey to maximize your skills and prepare for your future.
- Enjoy 1 day of remote work per week to optimize your focus and efficiency.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
(Senior) Consultant in Automotive - & Product Security at Wavestone, focusing on cyber security solutions for clients in innovative projects. Collaborative work in a vibrant team environment across multiple German cities.
Consultant specializing in Cyber & Product Security for clients in a hybrid role. Focused on implementing security strategies and conducting assessments with a collaborative approach.
Information Security Manager focusing on risk management for Xecuro GmbH. Implementing and optimizing risk management processes within a technological environment in Bonn.
Teamlead position for Security Governance & Assurance at Xecuro GmbH in Bonn. Leading team and implementing information security management systems (ISMS).
Information Security Expert working on safe digital solutions, ensuring compliance and conducting risk assessments. Join Xecuro GmbH in shaping Germany's digital future with innovative security measures.
Lead ISSO ensuring security compliance for multi - tenant cloud and hybrid environments at Agile Defense. Responsible for vulnerability analyses and risk management decision - making expertise.
Network Security Engineer focusing on Fortigate Firewalls for Vodafone's global network operations. Troubleshooting, incident management, and collaborative environments driving network security initiatives.
Security Engineer designing and deploying agentic AI systems that operate within enterprise environments for Capgemini. Collaborating on security engineering and applied AI system development.
Security Officer tasked with ensuring safety and access control at Sutter Health facilities. Providing assistance and investigating incidents, while ensuring a safe environment.