Cybersecurity Intern

Gprnt (pronounced “Greenprint”) is a green disclosure and data fintech launched by the Monetary of Authority of Singapore (“MAS”), with a focus on helping businesses worldwide unlock their ESG data, transition business models, and maximise their economic gains in the green economy. We recently launched our inaugural platform offerings - an automated Disclosure tool, and a value-added Marketplace offering — at the 2024 Singapore Fintech Festival.

If you’re passionate about building secure, scalable systems, love solving complex infrastructure challenges, and want your work to drive real-world climate and financial impact—we want to meet you. Join us in shaping the backbone of Asia’s sustainability economy.

We’re on the hunt for a Cybersecurity Intern who’s passionate about all things cybersecurity and loves rolling up their sleeves to get things done If you’re excited about implementing certifications like ISO 27001, SOC 2, GDPR, and PDPA, while also building a robust cybersecurity program, we’d love to meet you.

Here’s what’s in it for you: hands-on experience with top-notch cybersecurity frameworks, exposure to program development, and a front-row seat to incident management in action. Plus, you’ll be part of a vibrant startup that’s making waves in ESG data.

This is a full-time gig for 6 months, complete with a monthly stipend.

**Key Responsibilities**
- Leading our Cybersecurity and data protection program
- Finding suitable vendors and support technology team to evaluate and onboard
- Work with technology team and vendor in documenting and mapping internal policies, procedures, and controls required for:

- **ISO 27001 Information Security Management System**:

- **SOC 2**:

- **GDPR and PDPA compliance obligations**:

- Support the preparation and review of risk assessments, data flow diagrams, asset registers, and access control documentation.
- Help coordinate internal audits, evidence collection, and gap analyses against certification frameworks.
- Maintain documentation for security awareness training, incident response, vendor assessments, and backup/recovery procedures.
- Work with engineering teams to align technical configurations with compliance controls (e.g., logging, access reviews, encryption).
- Assist in maintaining the Record of Processing Activities (RoPA) for personal data under PDPA and GDPR.
- Track progress across compliance checklists and contribute to internal readiness reports for leadership

**Required Experience**
- Currently pursuing or recently completed a degree in Information Security, Computer Science, Information security, Cybersecurity, or Business Information Systems.
- Familiarity with one or more frameworks: ISO 27001, SOC 2, NIST, GDPR, PDPA.
- Strong program management, presentation, documentation, research, and analytical skills.
- Knowledge in Python or automation would be an added advantage
- Bonus: understanding of SaaS infrastructure, cloud security (especially Azure), or ESG tech landscape

**Why join Gprnt?**

At Gprnt, we are on a mission to bridge critical gaps in sustainability by delivering granular, comparable, and verified ESG data through an open data platform at scale, paired with a value-added services marketplace.

Joining our team means stepping into a vibrant, collaborative work environment where every voice is heard, and autonomy to lead is encouraged. As part of our close-knit team, you’ll have the unique opportunity to wear many hats, developing a diverse set of skills that will enhance your professional growth while ensuring your contributions have a direct and tangible impact on our company's success.

We empower our team members to take initiative, innovate, and actively shape the future of sustainable business practices, all while fostering an environment that celebrates creativity, inclusivity, and teamwork. At Gprnt, your work is more than just a job—it’s a chance to lead, grow, and make a difference.