Job Description

About C&R Software:

C&R Software ( www.crsoftware.com) provides expertise in Credit Risk Management domain and delivers optimized SaaS (AWS) based solutions across the Collections & Recovery lifecycle, empowering organizations to manage their end-to-end collections operation more effectively and compliantly. We have been in the industry for ~40 years. We operate out of 16 countries and our customers are based out of 60 countries across the globe. Our Vision is to Humanize Collections and our Values are Diversity, Simplicity, Respect, Bravery, and Responsibility.

– Intern

A Security GRC (Governance, Risk, and Compliance) intern assist the company's cybersecurity and compliance programs by assisting with risk assessments, policy development, and internal/external customer audits. Key responsibilities include helping with documentation, performing gap analyses against standards like ISO 27001, and using GRC tools for tracking and reporting of remediation. The role involves collaboration with engineering, IT, legal, and audit teams to ensure adherence to policies and to help improve the organization's risk posture. 

Role / Responsibilities:

Qualified candidates are being considered for Internship at C&R Software, India  These candidates possess a strong educational background in Cybersecurity, Computer Engineering or Computer Science and are expected to work on small to medium-scale cybersecurity practices.

• Assist with conducting and documenting risk assessments and third-party vendor risk assessments. Help with tracking and monitoring compliance with security policies and customer requirements.

• Assist the development and update of security policies, standards, and procedures. Gather documentation and maintain records for compliance initiatives. 

• Assist with internal and external audits, assessments, customer questionnaires, remediation and help monitor security controls. Support the execution of control reviews and provide input for improving control effectiveness. 

• Use GRC tools to help streamline reporting and manage risks. Assist in tracking key performance indicators (KPIs) and key risk indicators (KRIs). 

• Work with engineering, operations, and other business units to integrate security and compliance into their work. Support security awareness and training initiatives in the organization. 

• Collaborate with engineering teams to ensure projects meet security standards from the outset. 

• Assist with implementing and maintaining security controls and protocols. 

• Assist the deployment of new security technologies and processes for risk detection and response. 

• Help with incident management, business continuity and disaster recovery efforts, which often involves close coordination with technical teams. 

Essential Technical skills

• An understanding of cloud environments, their shared responsibility models, and built-in security tools is critical.

• Platforms: AWS, Azure, or Google Cloud (GCP).

• Automation and Scripting: The ability to automate tasks is a hallmark of GRC.

• Scripting: Proficiency in scripting languages like Python, PowerShell, or Bash for automating evidence collection, monitoring, and reporting.

• Basic understanding of security tools DLP, Email security, Active Directory, SIEM etc

Skills / Education Requirements:

• Undergraduate / Graduate in Computer Science or Computer Applications such as B. Sc. / B.C.A. /

B. Tech. / B. E. / M. Sc. / M. Tech. / M. E. / M.C.A.

• Good technical aptitude to understand & use different technologies

• Basic Knowledge of cybersecurity practices and high-level framework ISO 27001, PCI, SOC, NIST

• Pursuing relevant certifications (CompTIA Security+, ISC² CC)

• Hands-on lab experience (TryHackMe, Hack the Box, cloud labs)

• Volunteer GRC work or relevant project experience

• Knowledge of Database Query Tools / Technologies such as SQL / PL-SQL etc. preferred

• Good Knowledge of UI programming concepts/languages such as Angular, Java etc. preferred

• Familiarity with diverse AI platforms, applications, and specialized tools 

• Knowledge of various LLMs, their capabilities, limitations, and optimal use cases

• Understanding of autonomous AI systems & agent-based artificial intelligence solutions

• Strong analytical thinking

• Good communication skills including verbal and writing skills 

What You'll Gain

• Real-world experience in modern GRC automation practices

• Exposure to enterprise security tools and cloud platforms

• Mentorship in automation and technical risk management

• Opportunity to contribute to meaningful compliance and security initiatives

• Exposure to work with all stakeholders from technical to executives

#LI-RG1

Business Unit:

Jonas Collections and Recovery - India

Scheduled Weekly Hours:

40

Number of Openings Available:

0

Worker Type:

Student (Fixed Term) (Trainee)

More About Jonas Software:

Jonas Software is a leading provider of enterprise management software solutions, serving a wide range of vertical markets including hospitality, healthcare, construction, education, personal care, fitness, leisure, moving and legal services, to name a few. Within these markets, Jonas is comprised of over 65 distinct brands, each a respected leader in its domain.

Jonas’ vision is to be the branded global leader across these verticals and to be recognized by customers and industry stakeholders as the trusted provider of “Software for Life.” We are committed to technology, product innovation, quality, and exceptional customer service.

Jonas Software supports over 60,000 customers in more than 30 countries. We employ over 6,000 skilled professionals, including industry experts and technology specialists. Across our broader network, we support a global workforce of more than 30,000 employees.

Headquartered in Canada, Jonas Software has a global footprint with offices around the world. We’re a 100% owned subsidiary of Constellation Software Inc., based in Toronto, publicly listed on the TSX (CSU.TO), and a member of the S&P/TSX 60 Index.