Cybersecurity Analyst Internship (Summer 2024)

Defensive- Blue Team Mettawa, Illinois


DOT Security’s mission is to improve the security posture of client organizations by providing detection, response, risk management, and compliance services as identified and required. DOT Security will implement processes, technology, and subject matter expert personnel to monitor and respond to client needs in the cybersecurity and compliance space. DOT Security is seeking team members who are passionate about Cybersecurity, detailed-oriented, desire for continuous learning, and enjoy working in a collaborative environment. We provide our Interns with a career progression path, that challenges them to grow as cybersecurity professionals with strong cybersecurity skills. As a member of DOT Security, you will get the opportunity to work at a brand-new, state of the art Security Operations Center (SOC) facility in Lake Forest, IL. 

This is a full-time, 9-week internship for the Summer of 2024. Interns will be paid at a rate of $20 per hour. 

Internship Innovation Challenge 2023

What you will be doing:

As a Cybersecurity Analyst Intern, you will be treated as our entry level staff and learn what it takes to be on the front lines of defense, working with a highly motivated team that is focused on analyzing, developing, and delivering solutions to stop adversaries.  You will be responsible for learning how to analyze alerts from various defensive security systems/tools (e.g. IDS alerts, firewall, and network logs) to analyze and determine if the alerts represent a threat.  

Career Path:

Internships are a mutually beneficial agreement between DOT Security and those entering the workforce. It allows young professionals to gain real-life experience while test-driving a potential career. In addition, it allows DOT Security to benefit by training and observing potential employees to ensure they will be a good fit for the business before hiring them full-time. 

Upon completion of this internship, each individual will have a review with his/her direct manager. If the experience has been mutually beneficial between the manager, team, and intern, a full-time opportunity as a part of the SOC team may be extended upon graduation, so long as the hiring pipeline allows for such a move. 

Responsibilities to be learned but are not limited to:

  • Throughout the summer you will complete a checklist of different tasks to accomplish. It will include tasks associated with working in a Security Operations Center.
  • Monitor and analyze real-time alerts from our SIEM and other security tools to determine possible causes of such alerts.
  • Ability to evaluate and investigate network traffic, read, interpret logs, and packet captures
  • Provide timely detection, investigation, identification, and alerting of possible attacks/intrusions, anomalous activities, misuse activities and distinguish these incidents and events from benign activities.
  • Document investigation and analysis actions to effectively communicate information to both internal and external stakeholders
  • Evaluate and escalate events and incidents based on established escalation procedures, playbooks, etc.
  • Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack.
  • Investigate phishing emails

Things We Are Looking For

Required Qualifications:

  • Must be currently enrolled in an accredited Information Security/ Cybersecurity program at a 4-year institution in pursuit of a Bachelor’s degree 
  • Targeted graduation date of either the Fall of 2024 or the Spring of 2025.
  • Rooted interest in Blue Team cybersecurity principles

Fundamental understanding:

  • Anti-virus software, intrusion detection/prevention systems, firewalls, and content filtering
  • Endpoint security solutions
  • Disaster recovery, computer forensic tools, technologies, and methods
  • Authentication, authorization, and access control methods.
  • Defense-in-depth principles and network security architecture
  • Network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services
  • Knowledge of Windows/Unix ports and services

Interpersonal and soft skills:

  • Strong written and verbal communication skills.
  • Knowledge of current threats and vulnerabilities.