information security intern at Gen Digital

ABOUT US: Gen is a global company dedicated to powering Digital Freedom through its trusted consumer brands including Norton, Avast, LifeLock, MoneyLion and more. Our combined heritage is rooted in financial empowerment and cyber safety for the first digital generations, and today we deliver award-winning cybersecurity, online privacy, identity protection and financial wellness solutions to nearly 500 million users in more than 150 countries. Together, we share a collective passion and vision to protect consumers and help them grow, manage and secure their digital and financial lives. We’re always looking for smart, fearless and high-impact talent who see AI as a teammate – leveraging it to move faster and deliver meaningful results. When you’re part of Gen, you’ll have the flexibility, tools and support to do your best work and grow your career – from flexible working options and time off to competitive pay, benefits and well-being programs. At Gen, we are scrappy and relentlessly customer driven. We create room for healthy debate, experimentation and continuous learning, and we seek out people with different experiences, identities and ideas to join our team. You’ll work with people who back each other, respect each other and understand that our differences are a competitive advantage. If this sounds like you, we’d love you to be part of Gen. ABOUT THE ROLE: This is a 3-month full-time (40 hours/week) onsite internship starting from 15th of June. You’ll be part of our Security Operations team, which runs a global, follow-the-sun Incident Response capability and works daily with tools like CrowdStrike, Splunk, TheHive, and OpenCTI. You’ll work on a real operational project — deploying and hardening a security tooling platform on Google Cloud Platform using Docker. The system you build will be handed over to the team and used in production. This is not a sandbox exercise. In this role, you will: - Design and document a cloud deployment architecture before writing a line of configuration. - Deploy a containerised security platform on GCP using Docker Compose, including HTTPS and reverse proxy configuration. - Configure persistent cloud storage covering database, cache, and application data volumes. - Harden the deployment across OS, container, network, and IAM layers and document your findings in a security report. - Design, execute, and validate backup and restore procedures. - Write a complete operational runbook enabling any team member to operate, update, and troubleshoot the system independently. - Present and formally hand over the completed system to the Security Operations team. ABOUT YOU: - You are comfortable working in Linux at the command line. - You have hands-on experience with Docker and Docker Compose. - You understand networking fundamentals: DNS, TLS, firewalls, and basic IP routing. - You can write scripts in Bash or Python to automate tasks and solve problems. - You use Git to version-control your work. - You understand core security concepts — confidentiality, integrity, availability, and what threats look like in practice. - You are comfortable communicating in English, both written and spoken. - You work independently, raise blockers early, and follow through to a finished, documented deliverable. NICE TO HAVE: - Experience with any cloud platform (GCP, AWS, or Azure). - Familiarity with threat intelligence concepts or platforms. - Knowledge of IAM and least-privilege access principles. - Experience with nginx or Traefik as a reverse proxy. WHAT’S NEXT: The interview process consists of one stage. You’ll have an onsite interview where you’ll meet your future team members from the Security Operations team and walk through a short technical screen covering Linux, Docker, networking, and cloud fundamentals. There are no trick questions — we want to understand how you think through a problem.