Security & Compliance Intern

 About Us:

At apexanalytix, we’re lifelong innovators! Since the date of our founding nearly four decades ago we’ve been consistently growing, profitable, and delivering the best procure-to-pay solutions to the world.   We’re the perfect balance of established company and start-up.  You will find a unique home here. 

Security and compliance aren’t just checkboxes at APEX — they’re central to how we earn and maintain the trust of the world’s largest companies. As a Security & Compliance Intern, you’ll work directly with our Manager of Information Security and Compliance, getting real exposure to enterprise audit processes, SOC reporting, risk assessments, and policy governance. If you’re the kind of person who reads the fine print and actually cares about getting it right, this role was made for you.

• Play an active role in supporting SSAE18 SOC I and SOC II compliance efforts and related audits.
• Track audit action items, follow up with control owners, and help keep things moving.
• Contribute to quarterly compliance reviews and document outcomes with precision.
• Help coordinate remediation activities when control gaps are identified.

• Own updates to compliance control documentation, process guides, and policy frameworks.
• Monitor and document policy exceptions, capturing risk statements and action plans.
• Develop a thorough understanding of our business systems to help craft practical, tailored security guidance.
• Ensure corporate policies are reviewed, current, and understood across teams.
• Security & Risk
• Join technology project reviews to flag information security gaps in proposed systems and applications.
• Help design and deliver security awareness training that actually resonates with employees.
• Support third-party vendor risk assessments with research and documentation.
• Act as a vigilant steward of client data — flag access anomalies and escalate appropriately.

• Assist with licensing and support contract tracking to keep our compliance posture clean.
• Provide day-to-day support to the Manager - Information Security and Compliance on strategic and ad-hoc projects.
• Help facilitate control owner meetings and drive accountability across stakeholders.

•  Currently pursuing or recently completed a degree in Computer Science, Management Information Systems, Cybersecurity, or a related field.
•  A solid grasp of information security fundamentals and why compliance frameworks exist.
•  Proficient in Microsoft Office (Word, Excel, PowerPoint, Outlook) and comfortable with Visio for process mapping.
•  Exceptional written and verbal communication skills — you’ll be interfacing with people at all levels.
•  Highly organized and dependable — someone who follows through and closes the loop.
•  A natural collaborator with the confidence to engage professionally across the organization.

 Exposure to SSAE18, SOC I/II, or PCI compliance — even from coursework or self-study.

 Familiarity with IT audit principles, internal controls, or change management processes.

 Understanding of IT, security, or compliance

 Knowledge of incident management workflows and vendor risk assessment practices.