Description

The Cybersecurity Intern supports The Signatry's information security program through hands-on project work across multiple cybersecurity initiatives. This internship offers real-world exposure to enterprise security challenges, risk management, compliance, and security awareness in a mission-driven nonprofit environment.

Primary Responsibilities

This internship is expected to execute real-life projects for The Signatry's cybersecurity program. Each project includes documented deliverables, executive summaries, and presentation opportunities with leadership. Projects include:

• Project 1: Social Engineering Campaign Design & Execution
• Project 2: Cybersecurity Tool Pilot Support & Business Case Development
• Project 3: Risk Profiling & Data Analysis
• Project 4: Trust Center Competitive Research & Recommendation

Project Details

Project 1: Social Engineering Campaign Design & Execution

• Collaborate with The Signatry's penetration support vendor to design a comprehensive social engineering campaign targeting the organization-wide user base (scheduled for June 2026)
• Develop realistic phishing email scenarios, credential capture landing pages, and pretexting approaches aligned with best practices and ethical standards
• Coordinate campaign logistics including scheduling, launch windows, and communication with leadership
• Track campaign metrics (click rates, credential submissions, reporting rates) and document results
• Analyze findings to identify vulnerability patterns and recommend targeted security awareness training interventions
• Prepare executive summary of campaign results for leadership review and staff debriefing

Project 2: Cybersecurity Tool Pilot Support & Business Case Development

• Support evaluation and pilot testing of emerging cybersecurity tools and technologies (e.g., physical MFA tokens) with our Cybersecurity Implementation Specialist
• Conduct hands-on testing, document user experience, and gather feedback from stakeholders
• Compile pilot testing results, cost-benefit analysis, and performance metrics
• Develop business case recommendations including ROI analysis, implementation considerations, and vendor comparisons
• Present findings and recommendations to leadership for go/no-go decisions

Project 3: Risk Profiling & Data Analysis

• Analyze The Signatry's customer/donor dataset to identify risk indicators and develop a quantitative risk profile formula
• Work with data team to extract, clean, and analyze security-relevant data points (account age, activity levels, transaction volumes, geographic patterns, etc.)
• Identify correlations between data attributes and security risk
• Build a risk scoring model that can be applied to customer segments for targeted security interventions
• Document methodology, assumptions, and recommendations for ongoing risk assessment
• Prepare visualizations and dashboards to communicate risk profile findings

Project 4: Trust Center Competitive Research & Recommendation

• Conduct market research on "Trust Center" resources published by peer organizations, competitors, and technology vendors (reference: https://trust.giveinteractive.com/)
• Analyze trust center content frameworks, design approaches, information architecture, and security/compliance claims presented
• Identify best practices and emerging standards for transparency, compliance disclosure, and customer trust communication
• Prepare competitive analysis and strategic recommendations for developing a Trust Center resource for The Signatry
• Propose content structure, scope, and governance model for a potential Trust Center initiative
• Present findings and recommendations to executive leadership

Mentorship & Development

• Weekly check-ins with CIO and System Administrator of Foundation Systems to align on project progress and provide guidance
• Exposure to enterprise security operations, compliance, and risk management decision-making
• Opportunity to present findings directly to executive leadership
• Networking with cybersecurity professionals within the organization and partner MSSP

Key Qualifications and Skills

Essential

• Alignment with The Signatry's mission, values, and statement of faith
• Currently enrolled in or recently graduated from an accredited college or university with a focus on cybersecurity, information security, computer science, or related field
• Strong analytical and research skills with ability to work independently on structured projects
• Excellent written and verbal communication skills; ability to present findings clearly to non-technical audiences
• Proficiency with Microsoft Office Suite (Excel, Word, PowerPoint) and ability to create professional documentation
• Familiarity with basic cybersecurity concepts (authentication, data protection, risk management, compliance frameworks)
• Proactive, detail-oriented approach to project work with strong organizational skills
• Ability to maintain confidentiality with sensitive security and organizational information
• Curiosity about emerging security threats, technologies, and industry trends

Preferred

• Knowledge of NIST Cybersecurity Framework, ISO 27001, or similar security governance frameworks
• Experience with data analysis tools (e.g., SQL or Python) or business intelligence platforms
• Familiarity with phishing simulations, social engineering testing, or security awareness programs
• Prior internship or hands-on experience in IT, cybersecurity, or risk management
• CompTIA Security+ certification or equivalent foundational security credential
• Experience with nonprofit operations, donor management, or financial services

Work Location

This is a flexible hourly internship designed to be 12 weeks during the summer (40 hours per week) that can be performed remotely.

Pay Range

$25/hour. Timesheet required.

Benefits

Paid holidays to include Memorial Day and Independence Day.

Applicants have rights under Federal Employment Laws

Equal Employment Opportunity Employee Polygraph Protection Act (EPPA) The Signatry is a 501(c)(3) tax exempt organization and a religious organization that has not waived any exceptions to any federal, state or local legislation, including, but not limited to Title VII of the Civil Rights Act of 1964.