• Review smart contracts and analyze security measures • Audit smart contracts following the highest security industry standards • Mentor and educate engineers internally on the security best practices • Review code (primarily solidity smart contracts) of blockchain projects • Work to identify vulnerabilities, design and architectural flaws, quality improvement, and ways to mitigate future risk • Deliver clear and concise reports and “action-items” for developers to quickly mitigate and fix any issues discovered • Interact with developers and key stakeholders when identifying and handling security issues

Are you looking for an internship with a fast-growing, innovative, and data-driven company? You’ve come to the right place! The IT Security & GRC Intern will join DWC's technology team as we elevate and strengthen our security program, with SOC 2 compliance as our guiding framework. This is not a passive role, you will contribute directly to work that matters: refreshing policies that protect the business, conducting risk assessments that drive real decisions, and helping DWC close the gap between where we are and where we want to be. If you are eager to grow, ready to take ownership, and excited about making a measurable impact in a dynamic distribution company environment, we want to hear from you. What are your Duties and Learning Objectives during this Internship? - Policy Development: Build DWC’s IT security policies and procedures from the ground up, aligned to SOC 2 Trust Services Criteria. This includes drafting, reviewing, and iterating on policies covering access control, data protection, incident response, and change management. - Risk Assessment: Assist in conducting a formal risk assessment across DWC’s technology environment. Identify, document, and rate risks by likelihood and impact, and help develop a risk register with recommended treatment plans. - SOC 2 Compliance Support: Help map DWC’s current controls to SOC 2 Trust Services Criteria. Identify control gaps, document evidence requirements, and support readiness activities for a future SOC 2 audit. - Application Security: Conduct basic application security reviews using OWASP Top 10 as a baseline. Document findings, rate risk severity, and recommend remediations for internal tools and systems. - Vendor & Supply Chain Risk: Assist in assessing third-party and vendor security posture, maintain the vendor risk register, and review supplier security questionnaires. - Incident Logging & Response Support: Help document security incidents and near-misses. Contribute to after-action summaries and assist in developing basic incident response playbooks. This is the right fit for you if you have the following: - Currently enrolled in or recently completed a degree in Cybersecurity, Information Technology, Computer Science, or a related field. - Coursework or certifications in CompTIA Security+, or GRC tools is a strong plus. - Prior experience in security, IT, or compliance is a plus but not required. - Strong desire to learn and a “no task is too small” attitude. - Basic understanding of cybersecurity concepts: CIA triad, access control, and risk management fundamentals. - Familiarity with SOC 2 Trust Services Criteria or willingness to learn it quickly. - Strong written communication skills, able to write clear, concise policies and risk documentation. - Proficiency in Google Suite and comfortable using spreadsheets for tracking and reporting. - Detail-oriented with the ability to manage multiple tasks and meet deadlines. Length of Internship: 2 months Compensation: $25/hr Distributor Wire & Cable is an equal opportunity employer

Compensation Range: Annual Salary: $87,923.00 - $118,690.00 Position Summary The Director, Information Security, provides strategic, institutional leadership for National University’s information security and cyber risk management program. Reporting to the Associate Vice President (AVP), Information Security, this role is accountable for designing, governing, and advancing a comprehensive, risk‑based security program that protects the confidentiality, integrity, and availability of university information assets. The Director serves as the senior operational and strategic leader for all information security domains, including Security Engineering, Security Operations, Governance, Risk & Compliance (GRC), Identity & Access Management, and Third‑Party Risk Management. They will partner closely with executive leadership, IT, academic leadership, legal, privacy, and compliance stakeholders to ensure security is embedded into institutional strategy, operations, and culture. The Director translates enterprise risk priorities into sustainable security capabilities, maturity roadmaps, and measurable outcomes while advising leadership on emerging threats, regulatory changes, and strategic investments. Essential Functions: Strategic Leadership & Program Ownership - Provides strategic leadership for the university’s enterprise information security program in alignment with institutional goals and risk appetite. - Partners with the AVP, Information Security, to define long‑term security strategy, multi‑year roadmaps, and program maturity objectives. - Serves as a senior advisor to IT and university leadership on cybersecurity risk, threat trends, and control effectiveness. - Establishes and maintains security governance frameworks, policies, standards, and metrics aligned with recognized frameworks (e.g., NIST CSF, NIST 800‑53, ISO 27001). - Leads institutional cybersecurity risk assessments and maturity evaluations, ensuring results inform investment and prioritization decisions. - Provides executive‑level reporting and briefings on security posture, risk trends, incidents, and compliance status. Security Operations, Engineering & Architecture - Directs the design, implementation, and operation of security controls across on‑premises, cloud, and SaaS environments. - Oversees security monitoring, detection, and response capabilities, including SIEM, endpoint protection, identity security, and network defense. - Serves as executive lead for cybersecurity incident response, ensuring effective coordination, decision‑making, communications, and post‑incident improvement. - Guides vulnerability management, penetration testing, and remediation strategies across the enterprise. - Partners with Infrastructure, Applications, and Cloud teams to embed security into architecture, system design, and change management processes. Governance, Risk & Compliance (GRC) - Owns the university’s information security risk management program, including risk identification, assessment, treatment, and tracking. - Ensures compliance with applicable regulatory and contractual requirements, including FERPA, GLBA, PCI‑DSS, HIPAA (as applicable), state privacy laws, and institutional policies. - Leads internal and external security audits and assessments, coordinating remediation and executive reporting. - Oversees the Third‑Party Risk Management (TPRM) program, ensuring vendors and partners meet institutional security expectations. - Collaborates closely with Privacy, Legal, Compliance, and Data Governance stakeholders. Identity, Access & Data Protection - Provides strategic oversight of identity and access management (IAM), role‑based access control (RBAC), and privileged access management. - Ensures effective access lifecycle governance in partnership with HR, IT, and business units. - Guides data protection strategies, including classification, access controls, and loss prevention capabilities. Awareness, Culture & Collaboration - Champions a culture of shared responsibility for information security across the institution. - Oversees security awareness and training initiatives in collaboration with institutional stakeholders. - Represents Information Security on university committees, councils, and working groups related to technology, data, privacy, and risk. - Maintains awareness of emerging threats, technologies, and regulatory developments to proactively advise leadership. - Performs other duties as assigned. Supervisory Responsibilities: - Provides direct leadership and oversight for Information Security teams, including Security Engineering, Operations, GRC, and Identity functions. - Responsible for organizational design, staffing strategy, hiring, performance management, coaching, and professional development. - Establishes clear objectives, accountability, and succession planning aligned with institutional priorities. - Manages budgets, vendor relationships, and resource allocation for the information security program. Requirements: Education & Experience: - Bachelor’s degree in Information Security, Computer Science, or a related field required; Master’s degree preferred. - Minimum of Ten (10) years of progressive experience in information security or technology risk management. - Minimum of Five (5) years of leadership experience managing teams and enterprise‑level security programs. - Professional certifications such as CISSP, CISM, GIAC, or equivalent required. - Experience in higher education or large enterprise environments preferred. - Demonstrated experience across multiple security domains: operations, governance, risk management, and access control. Competencies/Technical/Functional Skills: - Deep knowledge of cybersecurity domains, including security operations, cloud security, identity management, and risk governance. - Strong understanding of regulatory and compliance frameworks applicable to higher education. - Proven ability to communicate complex security risks to executive and non‑technical audiences. - Strategic thinker with the ability to translate risk into actionable priorities. - Strong leadership, collaboration, and influence skills across diverse stakeholder groups. - Experience managing security tools, vendors, and managed service providers. - High level of integrity and ability to manage sensitive and confidential information. Location: Remote, USA Travel: up to 10% travel #LI-Remote Candidate receiving offers will be offered a salary/pay rate commensurate with experience that vary based on a candidate’s qualifications, skills, and competencies. Absent exceptional circumstances, candidates will be offered a salary within this range for this position. The minimum salary will be offered based on the minimum exemption threshold based on state of residency. Base pay is one component of National University’s total rewards package, as we are dedicated to supporting the needs of the “whole you” with our holistic approach to employee benefits by offering comprehensive well-being benefits for you and your family. For full details about our benefit plan offerings, please visit benefits.nu.edu. For Part-time benefits, please click here. National University is committed to maintaining a high-quality workforce representative of the populations we serve. National University employs more than 4,500 faculty and staff and serves over 45,000 students. We are united in our mission to meet the global education demands of the 21st Century and are dedicated to creating a supportive academic and work environment that allows students, faculty and staff to develop their interests and talents while experiencing a sense of community. With programs available both online and at our many campus locations, National University is a leader in creating innovative solutions to education and meeting the needs of our student population, including adult learners and working professionals. National University (NU) is proud to be an equal opportunity employer and does not discriminate against any employee or applicant per applicable federal, state and local laws. At NU, a mix of highly talented, innovative and creative people come together to make the impact of a lifetime for each of our student learners. All qualified applicants will receive equal consideration for employment, education, and admission at National University.

Are you a dynamic sales engineer with a passion for cybersecurity and a knack for building strong client relationships? We're looking for a Senior Sales Engineer to join our team and help drive growth in the French market. In this role, you'll bring your proven track record in selling cybersecurity solutions to lead technical engagements with prospects, partners, and clients. Your ability to translate complex technology into compelling business value will be key to your success. About the team Our Sales Engineering team partners closely with our Account Executives in a pre-sales role to develop and position solutions involving Rapid7's security solutions. This team consists of a group of driven colleagues where there is a lot of synergy between them. Due to the smaller size of the local team, you can really make an impact and ride on future growth. About the role As a Senior Sales Engineer, you will work closely with the sales team to understand customer challenges and position Rapid7's security solutions to address their needs. You will be required to possess presentation-ready knowledge and product expertise on all Rapid7's product groups, with specialized expertise in the security solutions. Specifically, your focus will be to: - Proactively partner with your territory sales team in a pre-sales role to position all appropriate Rapid7 solutions to address our prospects' IT Security, IT Operations and business needs - Understand and articulate the value of our solutions as well as conduct in-person and remote product demonstrations, working closely with Sales Account Executives to present the technical value proposition - Engage with the customer as their technical contact throughout the pre-sales evaluation cycle, demonstrating how Rapid7 products meet the customer's business and technical needs. - Develop content for and speak at Rapid7 seminars, events and trade shows. - Engage with channel partners in the region to provide technical sales training and support for partner led-opportunities. - Attend commercial forecast calls with the EMEA / International Team in order to support the Regional Director. - Provide thought leadership - demonstrate knowledge outside of the Rapid7 portfolio and provide training to both Sales and Sales Engineering teams. The skills and qualities you'll bring include: - A technical background, preferably in the Security space and an in-depth knowledge of multiple Operating Systems and Security Solutions - A good understanding of network topology, TCP/IP network configuration and components (firewalls, routers, etc.) - Relevant Industry Qualifications such as CISSP, E|CH, AWS (Solutions Architect) and/or Azure - Expertise in IT, Vulnerability Management, Incident Response, Threat Intelligence, DevOps, Application Security or Security Automation - Expertise in one or more cloud environments. For example; AWS, Azure, GCP or Oracle Cloud - An understanding of the sales process and the roles and responsibilities involved - Strong Communicator, skilled at building rapport and engaging with both technical and non-technical audiences, with the ability to deliver clear and impactful presentations to large groups, regardless of their technical background. - Partners closely with Sales and Customer Success teams to align on customer needs, share technical insights, and ensure a seamless transition from pre-sales engagement to successful customer adoption. - Takes ownership of the technical strategy for opportunities within your territory, driving progress from initial engagement through evaluation while ensuring alignment with internal teams and successful outcomes for the customer - Demonstrates a proactive, self-driven mindset with a strong curiosity and passion for continuously learning new technologies and developing new skills. - Core Value Embodiment: Embody our core values to foster a culture of excellence that drives meaningful impact and collective success We know that the best ideas and solutions come from multi-dimensional teams. That's because these teams reflect a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, please don't be shy - apply today. #LI-Remote #LI-CP1 About Rapid7 At Rapid7, our vision is to create a secure digital world for our customers, our industry, and our communities. We do this by harnessing our collective expertise and passion to challenge what's possible and drive extraordinary impact. We're building a dynamic and collaborative workplace where new ideas are welcome. Protecting 11,000+ customers against bad actors and threats means we're continuing to push the envelope just like we' ve been doing for the past 20 years. If you 're ready to solve some of the toughest challenges in cybersecurity, we're ready to help you take command of your career. Join us.