Internship - Security & Compliance

About the role

Fiducial is a young but fast-growing deep-tech start-up with big ambitions at the frontier of autonomy, perception, and defence. Currently, we are developing software for advanced on-board UAV situational awareness in military applications. Using low-cost and widely available sensors and compute, our solutions are built for scalability. From there, we plan to develop a line-up of interconnected solutions to safeguard European safety. Our team consists of engineers that are passionate about the technology and solutions they develop. The only time most of us are not thinking about the technology is when we are asleep, and sometimes even then. Our team members have a background in different fields such as Aerospace Engineering, Computational Science and Engineering, Robotics and Computer Graphics. Our office is located in the Aerospace Innovation Hub, a start-up hub located on the TU Delft campus in the faculty of Aerospace Engineering. We work closely with top-tier partners, ranging from government agencies and prime contractors to academic research institutes and other start-ups. Our projects span from large tender orders in collaboration with partners to low TRL research with government agencies. Whether through formal R&D programs or rapid prototyping tracks, we operate at the intersection of innovation and deployment. Given the nature of our work, security, compliance, and controlled access to technology are core to how we operate. This is not an afterthought , it is embedded in how we design, build, and deliver our systems. Your Role As a Security & Compliance Intern , you will help build and structure Fiducial's internal compliance and security framework. This is a governance and administrative role, not a technical engineering role. Your value lies in your ability to understand frameworks, translate requirements into policies, and help execute compliance processes in a structured and disciplined way. Your work will include: Supporting the setup of our information security management framework based on ISO 27001 principles - drafting policies, control structures, and documentation Assisting with the implementation of ABDO/ABRO security requirements applicable to our defence-oriented environment Structuring and maintaining internal documentation: asset registers, risk registers, data classification schemes, and access control policies Translating security and compliance requirements into clear, practical guidelines for our team Supporting export control activities : conducting due diligence on potential customers, assisting with export license applications, and maintaining related administrative records Identifying gaps between current practices and required standards, and proposing structured improvements You will work closely with leadership and interact with engineering teams - not to build systems, but to understand them well enough to document, classify, and assess them from a compliance perspective. The Environment You will operate in a security-sensitive, regulated environment inspired by defence sector practices. Our approach is: Structured around ISO 27001 principles Informed by ABDO/ABRO defence security requirements Shaped by evolving EU regulatory requirements including NIS2 and dual-use export control regulations This means working in an environment where access to information is strictly controlled, documentation matters, and process discipline is expected.

Requirements

• You do not need to be a developer or cybersecurity engineer. You do need to be someone who can think in systems, work rigorously with documentation, and engage seriously with regulatory frameworks.
• We are looking for someone:
• Currently studying Law, Public Administration, Security Studies, Business Administration, or a related field - or a technical study with a strong interest in governance and compliance over engineering
• With a genuine interest in compliance frameworks, risk management, and policy work
• Who can understand concepts like data classification, access control, or asset management at a conceptual level - you don't need to configure systems, but you need to understand why these controls exist
• Who is structured, precise, and comfortable working independently with complex documentation
• With strong written communication skills in English (Dutch is a plus)
• Proactive and disciplined - you take ownership of your tasks and follow through
• Strong plus:
• Familiarity with ISO 27001, ISO 37001, or similar management system standards
• Exposure to export control regulations (EU Dual-Use Regulation, ITAR awareness)
• Interest in the defence sector, regulated industries, or national security topics
• Experience drafting or reviewing policy documents

Benefits

Additional Information

Opening WE CANNOT PROVIDE VISA SPONSORSHIP Details Preferred starting date: ASAP Weekly availability: full-time (5 days/week) Location: Aerospace Innovation Hub, Delft, the Netherlands

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at fiducial? Share your experience