About the Role
We’re looking for a Cybersecurity-focused Intern to join our Cybersecurity Connector Team. You’ll help build lightweight connectors to industry-standard security solutions such as CrowdStrike, Tenable, and Microsoft Defender, enabling our platform to perform automated control checks and deliver Continuous Compliance Monitoring (CCM) aligned with frameworks like NIST 800-171 and CMMC. These connectors are a critical part of our ASCERA platform.
This is a hands-on development role with real impact. You’ll write scripts that extract evidence directly from cybersecurity systems and transform that data to feed automated compliance decisions. You’ll work closely with technical product managers and platform engineers to make sure the right data is retrieved, normalized, and validated.
What You’ll Do
- Connector Development: Write, test, and maintain data connectors to cybersecurity tools using light Python scripting, SQL queries, and JQ transforms
- Cybersecurity Integration: Work with APIs and logs from security platforms (e.g., CrowdStrike Falcon, Tenable.io, Microsoft Defender for Endpoint) to extract evidence required for compliance control assessments
- Control-Focused Data Mapping: Implement mappings from raw security signals to structured formats that support “met/not met” control evaluation
- Collaborate on Requirements: Partner with TPMs to understand what security control is being evaluated and identify which data sources and evidence are required to support compliance automation
- Proof-of-Concept Work: Stand up local or lab-based versions of security tools when needed to test and troubleshoot integrations
- Lifecycle Ownership: Support the initial deployment of new connectors with real customers. Capture learnings and help refine the connector logic or evidence mappings accordingly
- Documentation: Clearly document each connector’s purpose, behavior, configuration, and data transformations to support internal usage and long-term maintainability
- Lab Resource Stewardship: Help manage the shared cybersecurity tool lab environment by installing new tools, cleaning up unused systems, and ensuring resources are efficiently allocated
What You’ll Learn
- How real-world cybersecurity telemetry maps to formal compliance frameworks like CMMC and NIST 800-171
- How to extract and transform cybersecurity related compliance evidence from leading security products
- How a modern compliance automation platform ingests and normalizes cyber data for continuous monitoring
- Best practices for connector lifecycle management, from first build to field deployment
About the Team
You’ll join a fast-moving, cybersecurity-driven engineering team focused on automating evidence collection for compliance use cases. Our mission is to eliminate manual evidence collection by connecting directly to the tools already defending customer environments. Every connector you build brings us closer to true continuous compliance.
Requirements
What We’re Looking For
- Currently enrolled in a 4-year college or university; sophomore year or later preferred
- Studying Cybersecurity, Computer Science, Information Systems, or a related technical field
- Demonstrated passion for cybersecurity. Examples include:
- Participation in cybersecurity clubs or Capture the Flag (CTF) events
- Building and maintaining a home lab with security tooling
- Prior internship or personal projects in the cyber domain
- Comfort writing simple scripts in Python, querying data with SQL, and transforming JSON with JQ or similar tools
- Familiarity with common cybersecurity tools and concepts: EDR, vulnerability management, SIEM, endpoint telemetry, etc.
- A mindset for debugging, exploring APIs, and automating evidence extraction
- Ability to communicate findings, write clear documentation, and work collaboratively in a team setting
Nice to Have (but not required):
- Experience working with APIs from tools like CrowdStrike, Tenable, Microsoft Graph, or Splunk
- Familiarity with tools like Postman, Wireshark, Burp Suite, or open-source EDR platforms
- Exposure to cloud environments (Azure, AWS) and authentication protocols (OAuth2, API tokens)
Benefits
Why SP6?
- Recognized as one of North America’s top professional service partners.
- The chance to be part of a winning team and a premier Splunk partner.
- Competitive salary and OTE.
- 100% employer-paid health insurance (Gold-rated plan).
- 401(k) with company match.
- 30 days of annual paid time off
- Significant Training and Development and Certification attainment.
- Opportunity for long-term career advancement.
- Your contributions are felt and recognized by our growing company.