IT Security & Compliance Intern (Cybersecurity)

TL;DR

IT Security & Compliance Intern (Cybersecurity): Assessing security posture and documenting readiness for CMMC and NIST SP 800-171 requirements with an accent on asset inventories, policy gap mapping, and POA&M creation. Focus on using AI tools to accelerate documentation and ensuring compliance within the government technology industry.

Location: Hybrid from the Baltimore area, United States

Salary: $20.00 per hour

Company

A digital integration consultancy building user-friendly solutions for meaningful problems in the government technology industry.

What you will do

• Assess IT security posture against CMMC Level 2 and NIST SP 800-171 controls.
• Maintain inventories of hardware, software, and cloud services processing Controlled Unclassified Information (CUI).
• Draft and organize compliance artifacts including System Security Plans (SSPs) and policies.
• Contribute to Plans of Action and Milestones (POA&M) for identifying gaps and planning remediations.
• Utilize AI tools to normalize inventory data and accelerate the creation of first-draft documentation.

Requirements

• Currently enrolled in or recent graduate of an associates, bachelor's, or master's program, or a career changer with relevant experience.
• Familiarity with basic cybersecurity and IT concepts.
• Must be able to work a full-time, hybrid schedule from the Baltimore area.
• Strong attention to detail, accuracy, and clear written communication skills.
• Proficiency with spreadsheets (Excel/Google Sheets) and curiosity about AI tools (ChatGPT, Claude, Copilot).

Nice to have

• Familiarity with frameworks such as NIST SP 800-171, NIST SP 800-53, CMMC, or ISO 27001.
• Pursuit of entry-level certifications like CompTIA Security+ or ISC2 Certified in Cybersecurity (CC).
• Exposure to GRC platforms such as Vanta, Drata, or Hyperproof.
• Interest in government technology and defense industrial base work.

Culture & Benefits

• 401(k) with 4% match and immediate vesting.
• Flexible, family-friendly schedules and paid sick leave.
• Supportive coaching environment with high autonomy and a culture of equity and innovation.
• Program activities focused on professional development, including resume building and networking.

Hiring process

• Introductory interview with a recruiter to review experience, skills, and salary expectations.
• Skills and Business Fit interview involving technical assessments and values-based questions.