Privacy, Data Governance & AI Risk Intern

JOB OVERVIEW

The Privacy, Data Governance & AI Risk Intern will support enterprise initiatives focused on

HIPAA/HITRUST

compliance, workforce and customer data governance, and AI data risk management. This role provides hands-on exposure to cross-functional data governance, product data flows, and emerging AI compliance practices, working closely with GRC, HR, Product, and AI leadership teams.

KEY RESPONSIBILITIES

Regulatory & Compliance Deep Dive Conduct structured analysis of current HIPAA and HITRUST processes and controls Partner with GRC and Compliance leaders (e.g., Privacy, Security, Legal stakeholders) to: Understand existing control frameworks Identify how data protection requirements are operationalized Document findings in a clear, structured format aligned to audit and compliance expectations Product & Customer Data Flow Mapping Collaborate with Product, Engineering, and Operations teams to: Understand key platforms (e.g., Instanote, Instacode, InstaAuth workstreams) Map end-to-end customer data flows across systems

Identify:

Data inputs, processing points, and outputs Points of data storage, transformation, and transmission Visualize workflows to support risk identification and governance clarity AI Data Governance & Policy Validation Review internal policies related to AI usage and data protection (including generative AI tools and platforms) Analyze how AI tools (e.g., enterprise AI systems and third-party technologies) handle: Customer data Sensitive information Validate alignment between: Documented policies Actual system usage and practices Identify potential risks, gaps, or inconsistencies in AI data governance (Aligned with internal AI usage expectations that restrict use of sensitive data and require compliance with privacy and security standards) Enterprise Data Flow Synthesis & Executive Reporting Consolidate findings into a comprehensive data flow analysis , including: Internal systems AI-enabled workflows Third-party data interactions

Develop:

A formal written report (whitepaper) A concise executive summary slide deck for leadership review (ELT) Present key insights, including: Risk areas Control gaps Recommendations for improved governance and compliance Key Deliverables End-to-end Customer Data Flow Map (Internal + AI Systems) AI Data Governance Assessment Summary Final Whitepaper (audit-ready documentation) Executive-Level Presentation (ELT-ready summary) The intern will contribute to a high-impact deliverable: a comprehensive data flow analysis and executive-level report on customer and AI data usage across the organization.

KNOWLEDGED, SKILLS & ABILITIES

Interest in data privacy, compliance, or healthcare regulations (HIPAA/HITRUST) Strong analytical and research skills with ability to synthesize complex information Ability to map workflows and data processes conceptually or visually Excellent written and presentation skills (ability to create executive-ready materials) High attention to detail and commitment to data accuracy

EDUCATION & EXPERIENCE

Currently pursuing a bachelor s or master s degree in: Information Security Data Analytics / Information Systems Healthcare Administration Public Policy, Law, or related field