You are viewing a preview of this job. Log in or register to view more details about this job.

Information Security Internship

Arkose Labs
Email

Position Summary

This is a paid, full-time summer internship on the Information Security, Privacy & AI Governance team at Arkose Labs, a cybersecurity SaaS company that protects some of the largest companies in the world from online fraud and abuse. Many of our customers publicly list us as a vendor on their sub processor pages, and you can find several featured on our marketing website.

You will report to the VP of Information Security, Privacy & AI Governance and work alongside team members across GRC, security operations, IT, and security engineering. A significant portion of your time will go to third-party vendor risk assessments, but you will also get hands-on exposure across vulnerability management, risk management, incident response, privacy compliance, AI governance, security awareness, and more.

You will work at the intersection of cybersecurity, privacy, and AI governance at a startup that uses frontier technologies in a practical context. You will have access to enterprise AI tools (Claude, Gemini), structured training through our company LMS, Proofpoint ZenGuide (security training platform), and LinkedIn Learning. No prior professional experience is required. We will teach you.

What You’ll Do

Vendor Risk Management (Core)

  • Shadow team members on vendor risk assessments, then conduct assessments independently using established procedures and data classification requirements. You start with lower-risk vendors and expand scope as you build proficiency.
  • Review vendor security documentation: audit reports (e.g., SOC 2), certifications (e.g., ISO 27001), penetration test documentation, and security questionnaire responses
  • Classify vendors by data sensitivity, document findings and risk ratings, communicate results to stakeholders, and track assessments from intake to closure

Broader Security, Privacy & Governance

  • Learn how Arkose operationalizes its security program and help respond to customer due diligence requests and security assessments
  • Help plan, organize, and coordinate penetration testing engagements and support remediation tracking. Work with our vulnerability scanning solution and assist with scan result analysis and remediation. Support bug bounty program operations.
  • Contribute to risk management: learn how to identify, assess, and mitigate risks, and when to accept a risk or pursue an exception
  • Participate in incident response tabletop exercises and support documentation for live incidents
  • Assist with privacy impact assessments and data subject request processing
  • Support AI governance initiatives as we align with the EU AI Act, ISO 42001, and NIST AI RMF
  • Help with compliance activities: remediation and follow-up from SOC 2 audits, and prep work for upcoming ISO certification cycles
  • Contribute to Cybersecurity Awareness Month (October) planning and create security training content within Proofpoint ZenGuide or our company LMS

What You’ll Learn

  • How to conduct vendor risk assessments end-to-end, and how to critically evaluate SOC 2 reports, penetration test documentation, and ISO certificates
  • How to apply a data classification framework and determine the level of scrutiny a vendor requires
  • How to identify, assess, and mitigate security and privacy risks, and when risk acceptance or an exception is appropriate
  • How compliance frameworks (ISO 27001, SOC 2) translate into operational controls, and how a GRC team supports sales, product, engineering, and legal
  • How vulnerability management works across penetration testing, scanning, and bug bounty
  • Privacy compliance basics under GDPR and CPRA, including data subject rights and privacy impact assessments
  • Emerging AI governance frameworks (EU AI Act, ISO 42001, NIST AI RMF) and how companies are aligning with them

What You Bring

Required

  • Currently enrolled in or recently completed a degree in cybersecurity, information security, information technology, information systems, computer science, software engineering, or a closely related field
  • Strong written communication skills. Most of this work involves reading technical documentation and writing clear, accurate assessments.
  • Ability to work independently in a remote environment, manage your own time, and ask questions when you need direction
  • Attention to detail and comfort with process-driven work
  • Available to work full-time (40 hours/week) for 12 weeks during summer 2026

Nice to Have

  • Coursework covering information security frameworks (ISO 27001, SOC 2, NIST CSF) or risk management concepts
  • Familiarity with cloud platforms (AWS, Azure) or security tooling from coursework or personal projects
  • Experience with Jira, Confluence, or similar project management and documentation tools
  • Interest in information security, privacy, AI governance, GRC, or startups

Why Arkose Labs?

At Arkose Labs, our technology-driven approach enables us to make a substantial impact in the industry, supported by a robust customer base consisting of global enterprise giants such as Microsoft, Roblox, and more. We’re not just a company; we’re a collaborative ecosystem where you will actively partner with these influential brands, tackling the most demanding technical challenges to safeguard hundreds of millions of users across the globe.

Why do top tech professionals choose Arkose Labs?

  • Cutting-Edge Technology: Our high-efficacy solutions, backed by solid warranties, attract leading, global enterprise clients.
  • Innovation and Excellence: We foster a culture that emphasizes technological innovation and the pursuit of excellence, ensuring a balanced and thriving work environment.
  • Experienced Leadership: Guided by seasoned executives with deep tech expertise and a history of successful growth and equity events.
  • Ideal Size: We’re structured to be agile and adaptable, large enough to provide stability, yet small enough to value your voice and ideas.

Join us in shaping the future of technology. At Arkose Labs, you’re not just an employee; you’re part of a visionary team driving global change

The most recognizable brands in the world select Arkose Labs, including Roblox, Microsoft, Adobe, Expedia, Snap and Meta.

We value your unique contributions, perspectives, and experiences. Be part of a diverse and high-performing environment that prioritizes collaboration, excellence, and inclusion. We hire the best, focus on their professional development, and offer support for continuing education.

We value:

  • People: first and foremost they are our most valuable resource. Our people are independent thinkers who make data driven decisions and take ownership and accountability in all the things they do.
  • Team Work. We demonstrate respect, trust, integrity, and communicate openly with a positive can do attitude and constructively challenge one another
  • Customer Focus. We empathize with our customers and obsess about solving their problems
  • Execution with precision, professionalism and urgency
  • Security. It’s the lens through which we implement our processes, procedures, and programs

Arkose Labs is an Equal Opportunity Employer that makes employment decisions without regard to race, color, religious creed, national origin, ancestry, sex, pregnancy, sexual orientation, gender, gender identity, gender expression, age, mental or physical disability, medical condition, military or veteran status, citizenship, marital status, genetic information, or any other characteristic protected by applicable law. In addition, Arkose Labs will provide reasonable accommodations for qualified individuals with disabilities.

The anticipated hourly rate for this internship is $25.00/hr. Not all candidates will be eligible for the upper end of the range. The exact hourly rate will depend on multiple factors, including the candidate's skills, relevant experience, and other qualifications, as well as their location of residence.