WE CANNOT PROVIDE VISA SPONSORSHIP
Preferred starting date: ASAP
Weekly availability: full-time (5 days/week)
Location: Aerospace Innovation Hub, Delft, the Netherlands
Fiducial is a young but fast-growing deep-tech start-up with big ambitions at the frontier of autonomy, perception, and defence. Currently, we are developing software for advanced on-board UAV situational awareness in military applications. Using low-cost and widely available sensors and compute, our solutions are built for scalability. From there, we plan to develop a line-up of interconnected solutions to safeguard European safety.
Our team consists of engineers that are passionate about the technology and solutions they develop. The only time most of us are not thinking about the technology is when we are asleep, and sometimes even then. Our team members have a background in different fields such as Aerospace Engineering, Computational Science and Engineering, Robotics and Computer Graphics. Our office is located in the Aerospace Innovation Hub, a start-up hub located on the TU Delft campus in the faculty of Aerospace Engineering.
We work closely with top-tier partners, ranging from government agencies and prime contractors to academic research institutes and other start-ups. Our projects span from large tender orders in collaboration with partners to low TRL research with government agencies. Whether through formal R&D programs or rapid prototyping tracks, we operate at the intersection of innovation and deployment.
Given the nature of our work, security, compliance, and controlled access to technology are core to how we operate. This is not an afterthought , it is embedded in how we design, build, and deliver our systems.
As a Security & Compliance Intern, you will help build and structure Fiducial's internal compliance and security framework. This is a governance and administrative role, not a technical engineering role. Your value lies in your ability to understand frameworks, translate requirements into policies, and help execute compliance processes in a structured and disciplined way.
Supporting the setup of our information security management framework based on ISO 27001 principles — drafting policies, control structures, and documentation
Assisting with the implementation of ABDO/ABRO security requirements applicable to our defence-oriented environment
Structuring and maintaining internal documentation: asset registers, risk registers, data classification schemes, and access control policies
Translating security and compliance requirements into clear, practical guidelines for our team
Supporting export control activities: conducting due diligence on potential customers, assisting with export license applications, and maintaining related administrative records
Identifying gaps between current practices and required standards, and proposing structured improvements
You will work closely with leadership and interact with engineering teams - not to build systems, but to understand them well enough to document, classify, and assess them from a compliance perspective.
The Environment
You will operate in a security-sensitive, regulated environment inspired by defence sector practices. Our approach is:
Structured around ISO 27001 principles
Informed by ABDO/ABRO defence security requirements
Shaped by evolving EU regulatory requirements including NIS2 and dual-use export control regulations
This means working in an environment where access to information is strictly controlled, documentation matters, and process discipline is expected.
What We're Looking For
You do not need to be a developer or cybersecurity engineer. You do need to be someone who can think in systems, work rigorously with documentation, and engage seriously with regulatory frameworks.
We are looking for someone:
Currently studying Law, Public Administration, Security Studies, Business Administration, or a related field - or a technical study with a strong interest in governance and compliance over engineering
With a genuine interest in compliance frameworks, risk management, and policy work
Who can understand concepts like data classification, access control, or asset management at a conceptual level - you don't need to configure systems, but you need to understand why these controls exist
Who is structured, precise, and comfortable working independently with complex documentation
With strong written communication skills in English (Dutch is a plus)
Proactive and disciplined — you take ownership of your tasks and follow through
Strong plus:
Familiarity with ISO 27001, ISO 37001, or similar management system standards
Exposure to export control regulations (EU Dual-Use Regulation, ITAR awareness)
Interest in the defence sector, regulated industries, or national security topics
Experience drafting or reviewing policy documents
Internship compensation in line with Dutch market standards (HBO/WO level)
10 vacation days during the internship period
Hybrid working arrangement with flexible hours — onsite presence required on a regular basis
Direct exposure to a high-growth defence tech environment
Real responsibility: the frameworks and policies you build will be used in practice
A steep learning curve in one of the most regulated and strategically relevant sectors in Europe
Convinced this is the right fit? Send us something that gives us a clear picture of your background: a CV, a LinkedIn profile, a short motivation letter, or a combination. We'll respond promptly.
If we see a potential fit, you'll receive a short follow-up questionnaire.
Based on your answers, we'll invite you for an interview centred around a real compliance scenario.
If it clicks, we'll discuss the details and welcome you to the team.
