Our vision is to transform how the world uses information to enrich life for all.
Micron Technology is a world leader in innovating memory and storage solutions that accelerate the transformation of information into intelligence, inspiring the world to learn, communicate and advance faster than ever.
Job Title
GRC Intern – Information Security & Risk
Location: TW
Duration
Internship (2–6 months) (Flexible based on academic requirements)
About the Role
We are looking for a motivated GRC Intern to support our Information Security Governance, Risk, and Compliance (GRC) team. This role is ideal for students or recent graduates who want hands-on exposure to cybersecurity governance, risk management, compliance frameworks, and emerging areas such as automation and AI in security operations.
The intern will work closely with experienced security and risk professionals and gain practical exposure to real-world security governance and compliance activities.
Key Responsibilities Support day-to-day Governance, Risk, and Compliance (GRC) activities Support compliance initiatives aligned with industry standards and frameworks
Assist in documentation, evidence collection, and control mapping
Support activities related to backup and recovery controls Assist in risk assessments , including risk identification, analysis, and documentation Help track and maintain risk treatment plans and risk exceptions Participate in internal reviews, audits, and process improvement initiatives
Assist with basic automation and tooling tasks related to GRC processes Communicate effectively with internal stakeholders and team members
Learn and apply cybersecurity best practices under guidance
Required Knowledge & Skills Basic understanding of Cyber Security and Information Security concepts Familiarity with: Confidentiality, Integrity, and Availability (CIA Triad)Common security threats and controls Basics of Networking & Operating Systems
Basic understanding of programming concepts Any language (Python, Java, C, Java Script, etc.) is acceptable Basic awareness of AI and automation concepts Interest in how automation can improve security and GRC processes Excellent written and verbal communication skills Ability to clearly document risks, controls, and compliance evidence Strong analytical and problem-solving skills
Willingness to learn and ability to work effectively in a team environment
Good to Have (Preferred) Understanding of Governance, Risk, and Compliance (GRC) concepts Basic familiarity with security frameworks and compliance standards such as:ISO/IEC 27001 NIST Cybersecurity Framework TISAX requirements CMMC (Cybersecurity Maturity Model Certification) SOC 2 Type II SOX (Sarbanes-Oxley Act) Awareness of: Risk assessment methodologies Risk treatment and mitigation strategies Risk acceptance and exception processes
Understanding of backup and recovery concepts Exposure to compliance tools, GRC platforms, audits, or control testing
Academic coursework or certifications related to cybersecurity, risk, or information security
