Cyber Resilience and Product Security Intern at DWYER INSTRUMENTS, LLC – Michigan City, Indiana

About the Company:

DwyerOmega is a globally trusted leader in manufacturing innovative instrumentation solutions for the Process Measurement, Automation, Control and HVAC markets. With very strong brand recognition and high levels of customer loyalty, DwyerOmega has an unmatched reputation for providing customized solutions that meet and exceed customer needs. Our team of engineering experts help our customers select technical, and often configured, product solutions for their unique applications.

The company offers over 300,000 state-of-the-art products for process measurement and control of temperature, humidity, pressure, strain, force, flow, level, pH, conductivity, and indoor air quality, and is a recognized global leader in the digital marketing of technical products. The products that we manufacture are used to control and drive process efficiency, creating safe and sustainable environments.

At DwyerOmega, we enable our customers to improve the world – one measurement at a time. We achieve this through our unwavering commitment to technology, customer service, and overall continuous improvement. Every day, we strive to cultivate a culture of ingenuity, empowerment, accountability, adaptability, and speed.

The company’s corporate headquarters are based in Michigan City, Indiana, and Norwalk, CT with manufacturing locations and sales offices located throughout the world.

Position Summary:

This internship will focus on reviewing the digital elements of products, supporting risk assessments, developing technical documentation, and assisting with European Union (EU) Cyber Resilience Act (CRA) compliance efforts and governance framework development.

This is an excellent opportunity for a student or early career professional interested in cybersecurity, product security, regulatory compliance, and embedded/digital systems within industrial products.

Responsibilities include the following. Other duties may be assigned:

Product Digital Element Review

• Analyze and document digital components within DwyerOmega products (firmware, software, connectivity features, embedded systems, cloud interfaces, etc.).
• Identify potential cybersecurity risks associated with product digital elements.
• Support vulnerability identification and mitigation tracking.
• Assist engineering teams in documenting product security architectures.

Risk Assessment & Documentation

• Conduct structured cybersecurity risk assessments for products.
• Support threat modelling and risk classification activities.
• Develop and maintain:
• Technical security documentation
• Risk registers
• Security requirement traceability documentation
• Compliance evidence artifacts

Cyber Resilience Act (CRA) Support

• Assist with gap analysis against CRA requirements.
• Support development of compliance documentation aligned with CRA obligations.
• Help organize product cybersecurity technical files.
• Contribute to secure development lifecycle documentation.

Governance & Framework Support

• Assist in developing and refining cyber governance frameworks.
• Support internal cybersecurity policies and procedures documentation.
• Help define product security controls aligned with industry standards (e.g., NIST CSF, ISO 27001, IEC 62443 where applicable).
• Support internal audit preparation and evidence gathering.

Qualifications and Educational Requirements:

Academic Requirements

• Currently pursuing a Bachelor’s or Master’s degree in:
• Cybersecurity
• Computer Engineering
• Electrical Engineering
• Computer Science
• Information Systems
• Or related technical discipline
• Basic understanding of cybersecurity principles (STRIDE, threat modeling, vulnerability management).
• Familiarity with embedded systems, firmware, or network-connected devices.
• Strong analytical and documentation skills.
• Ability to review technical systems and translate findings into structured documentation.
• Proficiency in Microsoft Office (Word, Excel, PowerPoint).

Preferred Experience

• Exposure to product security, IoT security, or industrial control systems.
• Familiarity with regulatory frameworks
• Experience with risk assessment methodologies.
• Basic understanding of secure software development lifecycle (SSDLC).
• Strong attention to detail and ability to work independently.

Competencies

• Structured analytical thinking
• Technical curiosity
• Clear technical writing
• Regulatory awareness
• Cross-functional collaboration
• Organizational skills

What We Offer

What You Will Gain

• Hands-on experience in product cybersecurity and regulatory compliance.
• Exposure to real world implementation of cyber resilience requirements.
• Experience working cross functionally with engineering and compliance teams.
• Practical understanding of governance frameworks within an industrial manufacturing environment.

Other duties, responsibilities and activities may change or be assigned at any time with or without notice as assigned by the Manager. The job description does not constitute a contract of employment, and the position remains at-will.

Dwyer Instruments, LLC is an equal employment opportunity and affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, protected veteran status, status as a qualified individual with a disability, marital status, pregnancy, sexual orientation, ancestry, genetic information, or any other characteristic protected by law.

We believe in transparent and equitable pay. All U.S. job postings include a good-faith salary range based on role, location, experience, and internal equity. We're happy to discuss compensation openly throughout the hiring process.