What are the responsibilities and job description for the Governance, Risk, and Compliance (GRC) Intern position at Neurocrine Biosciences?
Who We Are
At Neurocrine Biosciences, we pride ourselves on having a strong, inclusive, and positive culture based on our shared purpose and values. We know what it takes to be great, and we are as passionate about our people as we are about our purpose - to relieve suffering for people with great needs.
What We Do
Neurocrine Biosciences is a leading neuroscience-focused, biopharmaceutical company with a simple purpose: to relieve suffering for people with great needs. We are dedicated to discovering and developing life-changing treatments for patients with under-addressed neurological, neuroendocrine and neuropsychiatric disorders. The company's diverse portfolio includes FDA-approved treatments for tardive dyskinesia, chorea associated with Huntington's disease, classic congenital adrenal hyperplasia, endometriosis* and uterine fibroids,* as well as a robust pipeline including multiple compounds in mid- to late-phase clinical development across our core therapeutic areas. For three decades, we have applied our unique insight into neuroscience and the interconnections between brain and body systems to treat complex conditions. We relentlessly pursue medicines to ease the burden of debilitating diseases and disorders because you deserve brave science. For more information, visit neurocrine.com, and follow the company on LinkedIn, X and Facebook. (*in collaboration with AbbVie)
About The Role
Neurocrine Biosciences, Inc. (NASDAQ: NBIX) is offering the opportunity to gain hands-on experience in cybersecurity governance, risk, and compliance (GRC) in the world of biotechnology. Our internship program provides exposure to enterprise-level cybersecurity operations, compliance frameworks, and risk management processes. The Cybersecurity GRC team has a strong reputation for promoting security awareness, driving compliance maturity, and enabling secure business innovation within a regulated pharmaceutical environment.
As a GRC Intern, you will work directly with Neurocrine’s Cybersecurity GRC Lead to support critical initiatives across third-party risk management, control assessments, audit support, and cybersecurity metrics development. This is an excellent opportunity to build foundational knowledge in cybersecurity governance and develop practical skills applicable to future roles in information security and risk management.
_
Your Contributions (include, But Are Not Limited To)
Third-Party Risk Management
We are committed to building a workplace of belonging, respect, and empowerment, and we recognize there are a variety of ways to meet our requirements. We are looking for the best candidate for the job and encourage you to apply even if your experience or qualifications don’t line up to exactly what we have outlined in the job description.
At Neurocrine Biosciences, we pride ourselves on having a strong, inclusive, and positive culture based on our shared purpose and values. We know what it takes to be great, and we are as passionate about our people as we are about our purpose - to relieve suffering for people with great needs.
What We Do
Neurocrine Biosciences is a leading neuroscience-focused, biopharmaceutical company with a simple purpose: to relieve suffering for people with great needs. We are dedicated to discovering and developing life-changing treatments for patients with under-addressed neurological, neuroendocrine and neuropsychiatric disorders. The company's diverse portfolio includes FDA-approved treatments for tardive dyskinesia, chorea associated with Huntington's disease, classic congenital adrenal hyperplasia, endometriosis* and uterine fibroids,* as well as a robust pipeline including multiple compounds in mid- to late-phase clinical development across our core therapeutic areas. For three decades, we have applied our unique insight into neuroscience and the interconnections between brain and body systems to treat complex conditions. We relentlessly pursue medicines to ease the burden of debilitating diseases and disorders because you deserve brave science. For more information, visit neurocrine.com, and follow the company on LinkedIn, X and Facebook. (*in collaboration with AbbVie)
About The Role
Neurocrine Biosciences, Inc. (NASDAQ: NBIX) is offering the opportunity to gain hands-on experience in cybersecurity governance, risk, and compliance (GRC) in the world of biotechnology. Our internship program provides exposure to enterprise-level cybersecurity operations, compliance frameworks, and risk management processes. The Cybersecurity GRC team has a strong reputation for promoting security awareness, driving compliance maturity, and enabling secure business innovation within a regulated pharmaceutical environment.
As a GRC Intern, you will work directly with Neurocrine’s Cybersecurity GRC Lead to support critical initiatives across third-party risk management, control assessments, audit support, and cybersecurity metrics development. This is an excellent opportunity to build foundational knowledge in cybersecurity governance and develop practical skills applicable to future roles in information security and risk management.
_
Your Contributions (include, But Are Not Limited To)
Third-Party Risk Management
- Conduct cybersecurity assessments for third-party relationships and escalate findings to GRC leadership.
- Maintain due diligence documentation supporting third-party processes (e.g., SOC 1 & 2, ISO 27001 certifications, audit attestations).
- Track and follow up with third parties on identified security gaps and remediation timelines.
- Support quarterly NIST 2.0 maturity assessments and control validation efforts.
- Assist with internal and external audit coordination, including evidence collection, initial review, and recommendations to the GRC Lead.
- Monitor and track IT and cybersecurity risks through established risk registers and compliance tools.
- Identify opportunities for control optimization and best practice implementation in GRC processes.
- Support automation initiatives for evidence collection, control mapping, and compliance monitoring.
- Contribute to the continued development of cybersecurity KPI/KRI dashboards and reporting metrics.
- Collaborate with cross-functional teams across IT, Security, and Compliance functions.
- Work closely with your mentor and the Cybersecurity GRC Lead to gain real-world insight into security risk management in a pharmaceutical setting.
- Complete a special project and present your findings and recommendations to senior management upon program completion.
- Pursuing an undergraduate degree in Cybersecurity, Information Technology, Computer Science, Business, or a related field.
- Interest in cybersecurity governance, risk management, compliance frameworks, or audit processes.
- Familiarity with NIST Cybersecurity Framework (CSF), ISO 27001, or SOC reporting is preferred but not required.
- Strong attention to detail, organization, and analytical thinking skills.
- Effective written and verbal communication abilities.
- Ability to work independently and collaboratively on multiple projects simultaneously.
- Passion for learning and a willingness to contribute to a fast-paced, mission-driven environment.
- Commitment to a 10-week, full-time summer internship program.
- Lab Work Requirements: Not applicable (non-lab position).
We are committed to building a workplace of belonging, respect, and empowerment, and we recognize there are a variety of ways to meet our requirements. We are looking for the best candidate for the job and encourage you to apply even if your experience or qualifications don’t line up to exactly what we have outlined in the job description.