• You monitor the IT environments of our clients from the upper mid-market and large corporations, ensuring everything runs smoothly • You handle complex incidents, problems and changes in sophisticated IT environments — including our own data centers and platforms — and find fast, clever solutions • You maintain close contact with our clients, understand their needs and technologies, develop tailored concepts and sometimes provide quick workarounds • By documenting incidents and solutions thoroughly, you ensure that our service quality remains consistently high

• Provide technical and strategic advice to clients on comprehensive cyber-security architectures • Position and communicate modern security solutions to clients, partners and at events • Provide technical and conceptual leadership in client projects • Work closely with sales, vendors and professional services teams • Monitor market and competitors to further develop our offerings • Participate in trade shows and customer events

• Review smart contracts and analyze security measures • Audit smart contracts following the highest security industry standards • Mentor and educate engineers internally on the security best practices • Review code (primarily solidity smart contracts) of blockchain projects • Work to identify vulnerabilities, design and architectural flaws, quality improvement, and ways to mitigate future risk • Deliver clear and concise reports and “action-items” for developers to quickly mitigate and fix any issues discovered • Interact with developers and key stakeholders when identifying and handling security issues

Are you looking for an internship with a fast-growing, innovative, and data-driven company? You’ve come to the right place! The IT Security & GRC Intern will join DWC's technology team as we elevate and strengthen our security program, with SOC 2 compliance as our guiding framework. This is not a passive role, you will contribute directly to work that matters: refreshing policies that protect the business, conducting risk assessments that drive real decisions, and helping DWC close the gap between where we are and where we want to be. If you are eager to grow, ready to take ownership, and excited about making a measurable impact in a dynamic distribution company environment, we want to hear from you. What are your Duties and Learning Objectives during this Internship? - Policy Development: Build DWC’s IT security policies and procedures from the ground up, aligned to SOC 2 Trust Services Criteria. This includes drafting, reviewing, and iterating on policies covering access control, data protection, incident response, and change management. - Risk Assessment: Assist in conducting a formal risk assessment across DWC’s technology environment. Identify, document, and rate risks by likelihood and impact, and help develop a risk register with recommended treatment plans. - SOC 2 Compliance Support: Help map DWC’s current controls to SOC 2 Trust Services Criteria. Identify control gaps, document evidence requirements, and support readiness activities for a future SOC 2 audit. - Application Security: Conduct basic application security reviews using OWASP Top 10 as a baseline. Document findings, rate risk severity, and recommend remediations for internal tools and systems. - Vendor & Supply Chain Risk: Assist in assessing third-party and vendor security posture, maintain the vendor risk register, and review supplier security questionnaires. - Incident Logging & Response Support: Help document security incidents and near-misses. Contribute to after-action summaries and assist in developing basic incident response playbooks. This is the right fit for you if you have the following: - Currently enrolled in or recently completed a degree in Cybersecurity, Information Technology, Computer Science, or a related field. - Coursework or certifications in CompTIA Security+, or GRC tools is a strong plus. - Prior experience in security, IT, or compliance is a plus but not required. - Strong desire to learn and a “no task is too small” attitude. - Basic understanding of cybersecurity concepts: CIA triad, access control, and risk management fundamentals. - Familiarity with SOC 2 Trust Services Criteria or willingness to learn it quickly. - Strong written communication skills, able to write clear, concise policies and risk documentation. - Proficiency in Google Suite and comfortable using spreadsheets for tracking and reporting. - Detail-oriented with the ability to manage multiple tasks and meet deadlines. Length of Internship: 2 months Compensation: $25/hr Distributor Wire & Cable is an equal opportunity employer