Intern: IT Audit, Risk and Controls, Policy and Compliance

Job Description

Information Technology Department (ITD)

Cybersecurity and Compliance Unit (ITOD-CS)

1. Internship Topic

IT Audit, Risk & Controls, Policy & Compliance

2. Summary of Job Description

ITOD is looking for a dynamic intern who will support the department’s IT Risk, Audit and Compliance Team by contributing to: (i) IT Risk identification and management, (ii) Process Documentation and (iii) Automation Research and Implementation. The Intern must be passionate about process improvement for efficiency gains.

The intern will

• Contribute to the enhancement of ADB’s IT risk management and cybersecurity posture as part of the ITD - IT Risk team.
• Gain expertise in IT risks, controls, and enterprise cybersecurity.
• Analyze IT security risks, recommend mitigations, and track corrective actions via the risk exception process.
• Conduct IT risk assessments to support due diligence activities.
• Maintain and improve unit processes and tools (templates, reports, archives).
• Research IT risk topics and prepare documentation as needed.
• Collaborate with stakeholders to strengthen key controls using data analytics and automation
• Document completed work and newly introduced processes in coordination with ADB teams.

3. Period of Assignment

Duration: 11 weeks

Timing: June 2026 onwards

4. Location

ADB Headquarters, Manila, Philippines

5. Expected Outcomes

• The intern is expected to develop a solid understanding of, and hands on experience in IT risk management and cybersecurity operations in an enterprise environment
• Documented work performed, observations and lessons learned
• Established or improved existing risk assessment and management processes
• Internship report in form of documented processes and a presentation on the outcome of any research on IT risk automation

6. Education Requirements

Currently enrolled in a master’s degree or PhD program in computer science, computer engineering, information technology, information systems, cybersecurity or related disciplines are highly desirable.

7. Relevant Experience and Other Requirements

• Exposure to IT risk management and information security training is desired.
• Experience in IT audit, advisory and consulting is highly desired.
• Articulate in conveying research results
• Skilled in prioritizing tasks
• Passionate about the use of technology in improving efficiency
• Preferably with 2-3 years relevant professional experience
• Excellent oral and written communication skills in English

DEADLINE: March 16, 2026 11:59 p.m. (2359 Manila Time, 0800 GMT)