Information Security Intern

Company Description

ESGpedia is Asia’s leading in ESG data and technology company, headquartered in Singapore. We offer a comprehensive suite of digital solutions on our one-stop platform to empower businesses of all sizes — from corporates and SMEs to the financial sector — to comply with ESG regulations and achieve ESG excellence.

The ESGpedia platform powers key initiatives across the Asia Pacific region, including the ESCAP Sustainable Business Network (ESBN) Asia-Pacific Green Deal digital platform and the Asia-Pacific Single Accesspoint for ESG Data (SAFE) initiative. ESGpedia is GRI-licensed.

At ESGpedia, we believe people are our greatest asset. Unified by a common purpose of accelerating the world’s transition towards a net zero economy, our team is built on mutual trust, respect, and support. We believe in hands-on learning and taking ownership of one's work – which means creating a spirited environment for all team members to take on exciting challenges, create meaningful impact for our planet, and grow both personally and professionally.

For more information about ESGpedia, please visit: www.esgpedia.io

Job Summary

ESGpedia is a fast-growing fintech company and we are looking for an Operations Intern to join our rapidly expanding company and change the world together with us.

The intern will gain hands-on experience in governance, risk management, and compliance (GRC), and will work closely with the Information Security Officer on the following:

• Governance and controls under the Information Security Management System (ISMS).
• Preparation for audits, certification, and compliance initiatives (ISO 27001, SOC 2, DPTM).
• Policy documentation, access control reviews, and data protection processes.
• Liaising with external auditors, consultants, and internal stakeholders.
• IT Security operational support and evidence collection.

Job Responsibilities

You will be responsible for supporting information security and risk operations including, but not limited to:

• Assisting with documentation, evidence gathering, and maintenance of ISMS and compliance frameworks.
• Supporting the implementation of security controls, risk assessments, and vendor evaluations.
• Participating in internal checks for access control, incident management, and audit readiness.
• Contributing to the development and maintenance of security policies, procedures, and awareness materials.
• Coordinating audit preparation activities and helping track remediation progress.
• Assisting with IT helpdesk or administrative tasks related to compliance systems.

Requirements

• Undergraduate of a recognized Polytechnic or University, preferably in Information Security, Computer Science, or related discipline.
• Strong documentation, analytical, and organizational skills with attention to detail.
• Interest in cybersecurity, governance, and compliance (ISO 27001, SOC 2, DPTM).
• Proficient in Microsoft Office (Word, Excel, PowerPoint, SharePoint).
• Good communication and interpersonal skills to work with stakeholders across functions.
• Self-motivated, proactive, and capable of working independently with minimal supervision.
• Professional, credible, and enthusiastic team player with a growth mindset.

What You Will Gain

• First-hand experience in ISO 27001, SOC 2, and DPTM implementation and audit processes.
• Understanding of governance and risk frameworks within a fast-growing fintech environment.
• Exposure to data protection, compliance operations, and information security best practices.
• Opportunities to develop practical audit, documentation, and project management skills.

Why Join Us?

Be a Force for Good: Your work here doesn't just tick boxes—it drives meaningful, measurable change for businesses, industries, and communities striving to build a more sustainable future.

Freedom to Own It: We hire capable, driven people and we trust them. You'll have the autonomy to take charge of your work, backed by a culture that values results over red tape.

Think Big, Act Together: Collaboration fuels us. You’ll work with sharp, mission-driven teammates across disciplines—no silos, just shared goals and smart execution.

Grow Fast, Learn Always: We move quickly and expect a lot—but we invest even more in your growth. If you're hungry to learn and ready to stretch, you'll thrive here.

Work-Life, Reimagined: Whether you’re remote, hybrid, or somewhere in between, flexibility is real. We care about outcomes, not hours—and we build trust through accountability.

Resilience Pays Off: If you’re wired for growth, this is where the grind turns into pride.

What We Look For

Self-Starters: You don’t wait for instruction—you spot what needs doing and take initiative. We love that.

Curious Builders: You ask the right questions, dig deep, and thrive in ambiguity. You turn complex problems into elegant, real-world solutions.

Communicators Who Connect: Whether you're writing a report or leading a meeting, you convey your ideas with clarity, empathy, and purpose.

Accountable High Performers: You take ownership, deliver under pressure, and hold yourself to a high standard—even when no one’s watching.

Passion for Impact: You're not just looking for a job—you want to do work that matters. Whether it’s advancing sustainability, transforming client outcomes, or innovating with tech, you're fueled by purpose and driven to make a difference!

ESGpedia is proud to be an equal opportunity workplace for all. We do not discriminate in recruitment, hiring, training, advancement, or other employment practices. We celebrate diversity and are committed to creating and fostering an inclusive environment for all employees.

Notice

We regret to inform that only shortlisted candidates will be notified. All applications will be treated with strictest confidence.

By submitting any application or resume to us, you will be deemed to have read and agreed to the terms of our Privacy Policy(https://esgpedia.io/privacy-policy/), and consented to us collecting, using, retaining and disclosing your personal information to prospective employers for their consideration.

You may refer and access our website(https://esgpedia.io/) for more information.