Informational Technology Security Intern

Are you looking for an internship with a fast-growing, innovative, and data-driven company? You’ve come to the right place! The IT Security & GRC Intern will join DWC's technology team as we elevate and strengthen our security program, with SOC 2 compliance as our guiding framework. This is not a passive role, you will contribute directly to work that matters: refreshing policies that protect the business, conducting risk assessments that drive real decisions, and helping DWC close the gap between where we are and where we want to be. If you are eager to grow, ready to take ownership, and excited about making a measurable impact in a dynamic distribution company environment, we want to hear from you. What are your Duties and Learning Objectives during this Internship? Policy Development: Build DWC’s IT security policies and procedures from the ground up, aligned to SOC 2 Trust Services Criteria. This includes drafting, reviewing, and iterating on policies covering access control, data protection, incident response, and change management. Risk Assessment: Assist in conducting a formal risk assessment across DWC’s technology environment. Identify, document, and rate risks by likelihood and impact, and help develop a risk register with recommended treatment plans. SOC 2 Compliance Support: Help map DWC’s current controls to SOC 2 Trust Services Criteria. Identify control gaps, document evidence requirements, and support readiness activities for a future SOC 2 audit. Application Security: Conduct basic application security reviews using OWASP Top 10 as a baseline. Document findings, rate risk severity, and recommend remediations for internal tools and systems. Vendor & Supply Chain Risk: Assist in assessing third-party and vendor security posture, maintain the vendor risk register, and review supplier security questionnaires. Incident Logging & Response Support: Help document security incidents and near-misses. Contribute to after-action summaries and assist in developing basic incident response playbooks. This is the right fit for you if you have the following: Currently enrolled in or recently completed a degree in Cybersecurity, Information Technology, Computer Science, or a related field. Coursework or certifications in CompTIA Security+, or GRC tools is a strong plus. Prior experience in security, IT, or compliance is a plus but not required. Strong desire to learn and a “no task is too small” attitude. Basic understanding of cybersecurity concepts: CIA triad, access control, and risk management fundamentals. Familiarity with SOC 2 Trust Services Criteria or willingness to learn it quickly. Strong written communication skills, able to write clear, concise policies and risk documentation. Proficiency in Google Suite and comfortable using spreadsheets for tracking and reporting. Detail-oriented with the ability to manage multiple tasks and meet deadlines. Length of Internship: 2 months Compensation: $25/hr Distributor Wire & Cable is an equal opportunity employer