IT Security Intern

Position Summary

The IT Security Intern will gain hands-on experience supporting real-world cybersecurity operations, governance, and risk management activities. This internship is designed as a learning opportunity for students pursuing a career in cybersecurity, providing exposure to security tools, frameworks, and processes used to protect corporate systems, data, and users. The intern will work closely with senior IT security analysts to strengthen technical and analytical skills.

Key Learning Opportunities

• Vendor Cybersecurity Assessments:
  • Assist in reviewing vendor risk questionnaires, analyzing vendor responses, and helping document security and compliance gaps identified during due-diligence reviews.
• Security Operations & Monitoring:
  • Exposure to enterprise security monitoring by assisting with log review, alert triage, ticket management, and incident documentation.
  • Update SOP documentation and assist with implementation of playbooks.
  • Create KQL script queries that can be reused for typical use-case scenarios.
• Governance, Risk, & Compliance (GRC):
  • Participate in policy reviews, control testing, and evidence gathering by conducting audits.
  • Monitor organization secure score and contact vendors to address vulnerabilities.
• Vulnerability Management:
  • Observe and support vulnerability scanning, patch tracking, and remediation coordination efforts.
  • Operating system and application patch reviews
• Threat intelligence:
  • Monitor threat intel feeds then document, and block Indicators of Compromise (IOCs).
• Threat analysis:
  • Work within lab or sandbox environments to review and analyze threats

Education & Experience Strong Preferred:

• Completed third year (or recently completed) Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field from a four-year accredited institution. (Minimum 3.5 GPA)
• Hands-on experience in a lab environment—either through academic coursework, technical certification, personal projects, or security labs (e.g., TryHackMe, HackTheBox, or university cyber ranges).
• Basic understanding of networking, cloud infrastructure, operating systems, and security fundamentals.
• Strong analytical, problem-solving, and communication skills.
• Interest in pursuing professional certifications such as CompTIA Security , CISSP, Network , or Microsoft SC-900

What You’ll Gain:

• Direct mentorship from experienced cybersecurity professionals.
• Exposure to enterprise-level security technology and processes.
• Development of technical and soft skills necessary for security roles.
• Opportunity to contribute meaningful work to ongoing security and risk management projects.

Location:  Dallas (Hybrid: 4 days in office, 1 day remote)

Balfour Beatty US is an industry-leading provider of general contracting, at-risk construction management and design-build services for public and private sector clients across the nation. Performing heavy civil and vertical construction, our teams build the unique structures and infrastructure that play an important role in how people live, work, learn and play in our communities. Our teammates have an instinctive passion for innovating that is fueled by a relentless curiosity, a drive to employ lean practices and processes and the determination to find a better way. Through Zero Harm®, we are challenging the construction industry’s assumptions about safety. We believe that no level of harm should come to anyone as a result of our business.

Consistently ranked among the nation’s largest building contractors by Engineering News-Record, our US business is a subsidiary of London-based Balfour Beatty plc (LSE: BBY).

Balfour Beatty is an equal opportunity employer that recognizes the value of a diverse workforce. All qualified individuals will receive consideration for employment without regard to race, color, age, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, genetic information, or any other criteria protected by federal, state or local law.