Description:
We are seeking a Security Analyst Intern to join our AlayaCare's Security & Privacy team division. Reporting to the Director, Information Security and Privacy, As a Security Analyst Intern, you will support the protection of the company's systems, data, and customers. In this role, you will gain hands-on exposure to real-world cybersecurity operations within a fast-growing B2B SaaS healthcare environment, while contributing to the ongoing strengthening of AlayaCare's security posture.
You will collaborate with experienced security professionals and cross-functional teams across the organization, assisting with initiatives related to security operations, governance, risk management, and compliance. Through this experience, you will develop practical skills and a strong understanding of how modern cloud-based security programs operate at scale.
This internship offers the opportunity to contribute to meaningful security initiatives while developing hands-on experience across security operations and governance. Our team members have the opportunity to do their best work and to grow their careers, in a high-growth company, while making an impact in an industry that genuinely helps people.
What You'll Do
- Monitor and triage alerts from security tooling and help investigate suspicious activity across our platform.
- Support incident response activities by helping analyze events, gather evidence, and document findings.
- Track and help drive remediation of vulnerabilities and security findings across cloud and application environments.
- Assist in reviewing AWS security configurations and identifying opportunities to improve our cloud security posture.
- Contribute to collecting and organizing evidence for compliance frameworks such as SOC 2 and HITRUST.
- Support identity and access reviews to ensure the right people have the right level of access.
- Participate in vendor security reviews and help assess third-party security risks.
- Help maintain and improve internal security documentation, playbooks, and operational procedures.
- Assist with phishing simulations and internal security awareness initiatives.
- Build and maintain simple dashboards or reports that help track security metrics and operational health.
- Research new security threats, vulnerabilities, and defensive techniques relevant to modern SaaS platforms.
- Collaborate with engineers, infrastructure teams, and product teams to help continuously improve AlayaCare's security posture.
What You Bring to the Team
- Currently pursuing a Bachelor's or advanced degree in Computer Science, Cybersecurity, Software Engineering, Computer Engineering, Information Technology, or a related technical field.
- Strong curiosity for cybersecurity and how modern cloud and SaaS platforms are built and secured.
- Solid understanding of networking, operating systems, authentication, and common security vulnerabilities.
- Comfortable working in Linux environments and using scripting or programming languages such as Python.
- Interest in automation and improving security workflows through code and tooling.
- Exposure to cloud platforms (AWS preferred), Git, or modern development workflows is a strong plus.
- Curious about AI and emerging technologies, and how they can improve security operations and enhance productivity.
- Analytical mindset with the ability to investigate problems and communicate findings clearly.
- Demonstrates grit, ownership, and persistence when tackling unfamiliar problems.
- Relevant certifications such as Security+, Network+, eJPT, or AWS Cloud Practitioner are considered an asset.
- Participation in Capture The Flag (CTF) competitions, HackTheBox, TryHackMe, bug bounty programs, or open-source security projects is strongly encouraged.
- Bilingual in French and English
What will make you stand out for this internship
- You have built scripts, tools, or small automations that made security or system tasks easier.
- You have explored cloud environments (AWS, Azure, or GCP) and understand how security works in a modern SaaS stack.
- You are curious about how AI can improve security operations, detection, or developer workflows.
- You maintain projects, experiments, or write-ups on GitHub, a blog, or similar platforms.
- You enjoy learning by doing — building labs, breaking things, and figuring out how they work.