Internship Web Application Security Automation
Type of vacancy: Internship
City: Schiphol Rijk
Hours per week: 32-40
Education: Hbo
Apply before: 12/10/2024
Introduction
Are you passionate about security and eager to play a key role in shaping the automation of our Web Application cyber protections? As a Web Application Security Automation Intern at Air France KLM, you will have the opportunity to drive real change, supporting our cyber security teams to adapt and automate our application protections real time in an increasingly cyber-attack context.
If you are eager to join a forward-thinking team and contribute to protect Air France KLM's most exposed applications, we encourage you to apply for this exciting opportunity!
What are you going to do?
As a Web Application Security Automation Intern, you will perform analyses (and document it) on the different application attack types. You will then propose and develop plans on where and how to address these attacks (on a business level, boundary, dev team, or both etc.)
This role offers hands-on experience in Cyber Security, collaboration with key stakeholders, and the opportunity to work with highly skilled security professionals in major airlines that have strongly invested in cyber security.
Your objectives will be to:
- Document the different application attack types (DDOS, Bot, Customer Id...) targeting web applications.
- Investigate all customer usage flows which could be improved taken the protections in place.
- Propose develop plans on where/how to address these attacks (at the business level, boundary, dev team, or both etc.).
Where do you land?
Within Air France KLM, the Security Operations department (ITOP_SE) is responsible for the following missions:
• ITOP_SE defines, implements, operates and maintains in operational conditions the processes and technological components which allow to protect the Air France / KLM information system in accordance with:
- The Group's security policy defined by the CISO (Chief Information Security Officer),
- The technological roadmap defined by the Architecture Department,
- The security needs expressed by the various business lines of the company.
• ITOP_SE provides operational platforms and business applications with cross-functional security services that enable them to comply with the AF / KL Group's security policy as well as security expertise support for the implementation of security services.
• ITOP_SE is responsible for analyzing security events, detecting and then remedying any security incident that could impact the AF / KL Group. For this, ITOP_SE implements a SOC (Security Operations Center) type organization.
• ITOP_SE maintains the security systems of the AF / KL Group in safe conditions, through active detection of vulnerabilities, contextualization of the associated risk, correction of vulnerabilities in accordance with defined SLAs and an ambitious LCM (Life Cycle Management) policy allowing to maintain our security solutions at the highest level of protection against a constantly evolving threat.
Within ITOP_SE, the ITOP.SC (Cyber, Cloud, and Data Security Pole) is responsible for providing security products and services in the areas of Content Filtering, SOC (Security Operational Center), Vulnerability Management, Data and Cloud Security.
Your profile
- You are passionate about cyber security and making a positive impact.
- You enjoy a challenge and are resilient and dynamic.
- A collaborative, team-oriented mindset and an eagerness to contribute.
- Fluent in written and spoken English (minimum C1 level). Optional: Dutch and/or French.
- You are in your last year of your bachelor's/master's degree program.
- You are available from February/March onwards for a period of 5 or 6 months, 4 or 5 days a week.
Competencies:
- You enjoy diving into cyber security related topics (i.e. Layer 4 security vs Layer 7 security);
- You enjoy doing analyses of large data sets to identify areas of focus;
- You have affiliation with scripting/programming languages (e.g. Python/PowerShell);
- You are familiar with Infrastructure as Code and Automation (DevOps);
- You have some knowledge of various large logging systems / SIEM databases (e.g. ELK, Splunk etc).
Competencies
We offer
KLM offers you a highly instructive experience in a dynamic organisation in which you will play an important role. You can develop yourself considerably during this internship, both personally and professionally. In addition, this internship offers you the opportunity to build up your network, as you will be working with many different KLM employees!
Another advantage of an internship at KLM is the KLM ''Taxibaan'' association run by and for interns. This association expands your network and organises fun events and interesting excursions within the KLM organisation. There is also an internship allowance.
Ready for your next destination?
Does this sound like the perfect opportunity for you and are you ready for a flying start? Then don't wait any longer, and send us your CV for the 'final boarding call' on 12/10/2024! You don't need to write a cover letter; during your application we will ask you some specific questions. You will be notified within two weeks of the closing date of the vacancy.
Questions?
If you would like to know more about the internship position, please contact the hiring manager, or e-mail the recruiter for questions about the application process. In both cases, don't forget to mention the vacancy number: #18109 .
Hiring manager
Olivier d'Agata: oldagata@airfrance.fr
Recruiter
Esmée Boekhoudt: ESMEE.BOEKHOUDT@KLM.COM
Details from this vacancy are not to be used for marketing purposes.