GRC Intern

Job Title: GRC Intern
Reports to: Head of Governance, Risk and Compliance
Location: Los Angeles, CA - Hybrid
About SHEIN Technology
SHEIN Technology is a U.S. technology company. Founded in 2012, SHEIN is a leading global online retailer with operations in Guangzhou, Los Angeles and Singapore, along with other key markets. SHEIN reaches consumers across more than 150 countries and regions around the world. We place a premium on choice, delivering more than 6,000 new fashion, beauty and lifestyle products daily with more than 600,000 items available. Our mission is to help people express their individuality through the latest trends that are accessible and affordable. To learn more about SHEIN, follow us at shein.com, instagram.com/sheinofficial and youtube.com/shein.
Position Summary:
SHEIN Global Security & Risk Management is a global security organization that oversees security infrastructure, risk management, data privacy, governance and regulatory compliance across SHEIN's global footprint. It is composed of a team of security professionals, innovators and thought leaders that have had decades of global security experience, led large scale transformations, and served in Fortune 500 executive roles.
Here, innovation isn't simply about protecting and defending our company. We develop solutions that are practical today and scalable tomorrow; and we create collaborative teams dedicated to innovation across each of our businesses to share our common values and vision.
The GRC Intern will help to maintain and mature SHEIN's Information Security Management System (ISMS). This position will be part of a team of governance, risk, and compliance experts and work with technology partners and business units to protect SHEIN data, services, and information assets. The ideal candidate should have a general understanding of security technologies and best practices, knowledge of global data privacy laws and regulations, and a strong desire to learn and contribute.
Core Responsibilities:

• Support security policies by conducting research and control mappings against industry standards.
• Promote security and privacy across the organization by creating awareness materials such as infographics, templates, and newsletters.
• Assist with audit activities such as reconciling audit evidence, aggregating findings, and entering audit records into a GRC Platform
• Support security and privacy risk assessments by documenting assessment scope and assessment results
• Evaluate effectiveness of security measures by gathering and reporting security metrics.
• Gather and document business requirements in support of GRC Platform deployment.
• Support integration and maturation of policy, compliance, and risk frameworks.

Skills and Qualifications:

• Working towards a graduate or undergraduate degree in Information Security or Information Assurance, Information Systems, Computer Science, or related field
• Knowledge of security and data privacy standards, regulations and guidelines such as ISO 27001, GDPR, CCPA, NIST, PCI DSS desirable
• Strong analytical and problem-solving skills
• Strong written and verbal communication skills, with the ability to translate complex and technical issues to all levels of personnel
• Detail oriented and highly organized, with the ability to thrive in a fast-paced environment and prioritize accordingly
• High level of personal integrity, with the ability to professionally handle confidential matters and exudes the appropriate level of judgment and maturity

SHEIN Technology is an equal opportunity employer committed to a diverse workplace environment.
Pay Band: $20.00 min-$25.00 max hourly