Cybersecurity Risk & Compliance Intern

Introduction:

We are a leading, national consulting firm that provides compassionate, full-spectrum emergency management services including planning and preparedness, response, recovery, and mitigation services to the public and private sectors before, during and after a natural disaster or catastrophic event.

Our mission is to provide compassionate consulting services to local, state, federal, and industry clients, active in disaster response, recovery, and preparedness. We will be on time, on target, and on budget with the services aligned to the evolving threats and hazards facing our nation.

The position will be guided by ACDC’s Corporate Values Platform in all activities.

Position Summary:

• Job Title: Cybersecurity Risk & Compliance Intern
• Full Time or Part Time: Determined upon hire
• Temporary/Seasonal/Regular: Temporary
• Compensation: $18/hour
• Travel/Location: Remote
• Benefits Summary: Not benefits eligible

Mission of Role/Position Summary:

The Cybersecurity Risk & Compliance Intern will support the organization's Digital Technology & Innovation (DTI) team by assisting in risk assessments, policy development, and compliance initiatives aligned with the NIST Cybersecurity Framework (CSF) 2.0. Interns will gain hands-on experience in governance, risk, and compliance (GRC) by conducting gap analyses, contributing to incident response planning, and collaborating on security documentation in preparation for hurricane season. They will also have opportunities to shadow cross-functional meetings, engage with internal cybersecurity discussions, and potentially work on projects with direct client impact where applicable. The position is structured to provide professional development through exposure to cybersecurity principles in real-world operations, reinforcing the organization's commitment to risk management and resilience.

Tasks, Duties, and Responsibilities:

Reasonable accommodation will be made to enable individuals with disabilities to perform the following essential functions:

• Support the DTI team in aligning organizational practices with the NIST Cybersecurity Framework (CSF) 2.0
• Assist with risk assessments by identifying, documenting, and evaluating current security controls and processes
• Conduct a gap analysis comparing the company’s security posture to industry standards and NIST requirements
• Research and draft or revise security policies, procedures, and documentation in preparation for hurricane season
• Participate in internal discussions or working groups related to incident response readiness and disaster recovery
• Shadow cross-functional meetings and virtual client engagements, where appropriate, to understand cybersecurity’s role in business continuity
• Contribute to an internal incident response checklist or escalation process document
• Collaborate with staff to understand how cybersecurity principles apply in real world operations
• Prepare and deliver a final capstone project summarizing key findings, takeaways, and recommendations to company leadership
• Maintain accurate records of research, documentation, and project progress throughout the internship using Confluence
• Work on projects that have a direct impact on clients if available/needed.
• Interns will be given the opportunity for shadowing experiences and exposure to various divisions and projects as available.
• In limited circumstances, Interns may be asked to assist in matters related to research and development, project management/administration, or other corporate operations.
• Perform other duties as assigned.

Knowledge, Skills, and Abilities:

• Ability to read, interpret, and contribute to security policies, procedures, and compliance documentation
• Strong written and verbal communication skills, with the ability to document findings clearly and present to non-technical audiences
• Research skills to analyze cybersecurity frameworks, best practices, and emerging threats
• Ability to manage time independently and stay organized on multi-week projects with limited supervision
• Interest in GRC (Governance, Risk, and Compliance), audit readiness, or security operations
• Team-oriented mindset with the desire to learn from professionals across departments and contribute to a mission-driven environment
• Ability to maintain confidentiality with sensitive customers and internal information.
• Capable of multi-tasking when necessary.
• Excellent critical thinking, strategic planning, and problem-solving skills.
• Highly organized and detail oriented.
• Ability to remain flexible and adapt quickly to changes in roles and projects.

Expected Hours of Work:

Schedule may vary. Work on evenings and weekends may be required. Dependability and punctuality are paramount.

Physical Demands:

• Sitting or standing for hours at a time.
• Ability to work at a computer for extended periods of time if needed.

Working Environment:

• All AC Disaster Consulting (ACDC) positions are remote work site positions with the home location agreed upon at time of hire.
• If the remote work site locations change, ACDC Human Resources must be made aware, and leadership needs to approve any site changes for business registration and payroll tax purposes.

Requirements

Experience/Education Required:

• Currently pursuing a degree or recent graduate in Cybersecurity, Computer Science, Information Systems, or related field.
• Can demonstrate foundational knowledge in at least two areas:
• Introduction to Cybersecurity
• Networking and Systems
• Information Security Policies
• Risk Management or Governance, Risk, and Compliance (GRC)
• Demonstrates interest or experience in cybersecurity through one or more of the following:
• Completion of relevant certifications (e.g., Security+, SSCP, GFACT)
• Participation in cyber competitions (e.g., NCL, CCDC)
• Hands-on labs, home labs, or personal cybersecurity projects
• Volunteer or work experience in IT, cybersecurity, or tech-related support
• Familiarity with the NIST Cybersecurity Framework (CSF) and foundational cybersecurity principles (e.g., CIA triad, risk management)
• Completed coursework in Intro to Cybersecurity, Networking & Systems, Security Policies, or Risk Management
• 0-2+ years’ beginner-level knowledge/experience in Cybersecurity, Computer Science, or Information Systems principles.
• Beginner-level customer service experience.
• Proficient in Microsoft Office 365, particularly Excel.

Experience/Education Preferred:

• Current GPA of 3.0 or higher.
• Participation in a cyber competition (e.g., CCDC, NCL) or equivalent hands-on challenge is a plus
• Experience with hands-on labs or simulations involving security tools, risk assessments, or incident response
• 1 year of previous emergency management-related internship, volunteering, or work experience.

Additional Qualifications:

• Must be 18 years of age or older.
• Eligibility to work in the United States without employer sponsored visa is required. We are not able to employ those located outside of the US.
• Must pass company and any applicable client background check and reference check upon offer of employment.

Benefits

Temporary positions are not benefits eligible except where required by law. Regular status positions will receive these benefits:

EEO Statement

AC Disaster Consulting is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender, gender identity, national origin, disability, or veteran status. 

 This applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training. AC Disaster Consulting will not tolerate discrimination or harassment based on any protected characteristic. 

Please redact or remove information that identifies applicant's age, date of birth, or dates of attendance at (or graduation from) an educational institution from the resume or other application documents prior to submitting the application. 

 If you are a qualified individual with a disability or a disabled veteran, you may request a reasonable accommodation if you are unable or limited in your ability to access job openings or apply for a job on this site as a result of your disability. You can request reasonable accommodation by contacting AC Disaster Consulting Human Resources team at hr@acdisaster.com. 

 We use E-Verify for all candidates who are offered and accept a position with us. Please visit this link to the E-Verify Website and this link to view the E-Verify rights poster to understand your rights in this process.