Cybersecurity Intern

OChK is a leading cloud services provider in Poland with experience in advanced data analytics, artificial intelligence, and cybersecurity solutions. They develop services on their proprietary OChK Platform and on cloud platforms of strategic partners Google and Microsoft. OChK experts create scalable and secure environments following best practices and market standards, supporting clients' business goals at every stage of cloud implementation. Their comprehensive services include strategy, migration, IT environment management, application and data/AI solution development, optimization, automation, security, and compliance support. Nearly 400 organizations from various sectors, including public institutions, private companies, corporations, supervised entities, and startups, use OChK's services.

• Student after the 2nd year of studies in Computer Science, Cybersecurity, or related fields
• Agility and multitasking skills, able to switch smoothly between different topics and contexts (from technical analysis to documentation)
• Good work organization
• Interest or passion for cybersecurity
• Basic industry knowledge (understanding the daily work of Blue, Red, and Purple Teams)
• Analytical thinking and project work skills
• Willingness for continuous learning, openness to feedback, and proactive problem-solving approach

Security Operations & Compliance:

• Support the SOC team by reviewing repetitive alerts from SIEM/EDR systems and classifying them (filtering out False Positives)
• Check suspicious IP addresses, domains, and file checksums
• Support phishing incident handling by analyzing suspicious email headers and verifying links in sandbox environments
• Create technical notes from conducted analyses
• Work closely with the Cyber Threat Intelligence Analyst
• Monitor open sources (OSINT), industry portals, social media (X/Twitter), and security company blogs for new APT groups and attack techniques
• Periodically check if company-related data (domains, logins) appear in public leak databases or forums
• Enrich the IoC database by adding new indicators of compromise (IP, URL, hashes) with appropriate context and tagging
• Create short summaries of important cybersecurity news for the team
• Support the Compliance team by helping collect evidence for audits (e.g., ISO 27001), such as verifying log collection and periodic system access reviews
• Assist in editing secure system configuration instructions and security policies
• Work with the Compliance team to confirm appropriate security controls