About the area
Roku’s Trust team protects the company’s products, infrastructure, and data from security threats. The team collaborates across Governance, Risk & Compliance (GRC) and Security Operations (SecOps) to ensure security policies are followed, risks are managed, and threats are detected and mitigated.
About the role
We are looking for a motivated Cyber Security Intern to join our Trust team and gain hands‑on experience across SecOps and GRC. This paid 12‑week Summer 2026 internship includes a 60/40 split between GRC and SecOps activities.
Responsibilities
Governance, Risk & Compliance (GRC) – 60% of time:
* Maintain compliance with security policies and regulations by reviewing Roku’s internal repositories.
* Support security governance documentation across the intranet, ensuring accuracy and up‑to‑date libraries.
* Implement wider compliance policies and guidelines, aligning to standardized processes.
* Assist with security awareness training programs.
* Contribute to compliance research and reporting.
Security Operations (SecOps) – 40% of time:
* Perform vulnerability assessments, malware analysis, and script development (e.g., Python) to automate security tasks.
* Support vulnerability management and remediation across corporate endpoints and cloud systems (Azure, AWS, GCP).
* Help with threat hunting and investigations by querying systems and logs (XQL, KQL, SQL).
* Support security compliance audit checks and highlight policy gaps through technical assessments.
Deliverables
* Produce an ISM deliverable at the end of the program, including an assessment of internal documentation aligned with ISO and NIST standards.
* Clearly articulate business justification and rationale for reorganising internal policies, processes, and procedures.
* Identify workflows, diagrams, and RACI charts to catalogue internal documentation.
Qualifications
* Currently pursuing a degree in Project Management, Lean Six Sigma, Process Engineering, Computer Science, Cyber Security, Information Security, Electrical Engineering, or a related field (expected to graduate in Dec 2026 or later).
* Basic understanding of networking protocols, operating systems (Windows/Mac/Linux), and security concepts.
* Strong analytical and problem‑solving skills.
* Excellent written and verbal communication skills.
* Detail‑oriented with strong documentation skills.
* Ability to work effectively in a team environment.
* Programming knowledge of XQL, KQL, SQL, Python, or related languages.
* Passion for cybersecurity trends and risk compliance.
Hybrid Work Approach
Teams work in the office Monday through Thursday. Fridays are flexible for remote work except for roles requiring in‑office presence five days a week.
Benefits
Roku offers a comprehensive benefits package, including health, dental, and vision insurance; life and disability coverage; commuter benefits; and a 401(k) retirement plan. Some benefits may vary by location or role.
Accommodations
Roku welcomes applicants of all backgrounds and provides reasonable accommodations and adjustments in accordance with applicable law.
#J-18808-Ljbffr