Summer 2026 Cybersecurity Engineering - Cloud Security Undergraduate Intern

Cloud Security Intern

Applicants must be authorized to work in the U.S. independently. At this time, we do not offer visa sponsorship for this role.

This job has the goal of providing the opportunity to acquire practical experience through direct exposure to the related business line(s) and to develop the next generation of diverse business professionals. To that end, the program will provide hands-on training and experience in the business line, expose the various career opportunities in the business line and related areas, and prepare participants for positions in the business. Typical responsibilities include, providing services to the day-to-day operating objectives of the assigned area, participating in projects and programs appropriate to the needs of the assigned area, participating in the planning and implementation of projects and initiatives, conducting research and reporting including recommendations or proposals for action.

The Cloud Security Intern will assist the Highmark Health Cloud Security team in protecting the organization's cloud-based assets and data. This internship provides an opportunity to gain hands-on experience in various aspects of cloud security, including security monitoring, vulnerability management, incident response, and security engineering. The intern will work closely with experienced security professionals to learn and contribute to the ongoing efforts to maintain a strong security posture in the cloud environment.

Required Qualifications

• Full or part-time enrollment in an accredited college or university baccalaureate program.

Preferred Qualifications

• Graduation date: 2027, 2028, 2029
• Coursework in Computer Science, Information Security, or a related field: Foundational knowledge is crucial.
• Experience with Cloud Platforms (AWS, Azure, GCP): Any hands-on experience with these platforms is a plus.
• Experience with Scripting Languages (Python, Bash, PowerShell): Automation is key in cloud security.
• Knowledge of Networking Concepts: Understanding network protocols and security principles is essential.
• Familiarity with Security Tools (SIEM, vulnerability scanners): Exposure to common security tools is helpful.
• Previous Internship or Project Experience: Any experience in a technical role, even if not directly security related.
• Cybersecurity Certifications (e.g., CompTIA Security+): While not required, these demonstrate a commitment to security.
• Participation in Cybersecurity Clubs or Competitions: Shows interest and engagement in the field.
• Basic understanding of operating systems (Windows, Linux).

Essential Job Functions

1. Communicate effectively while interacting directly with colleagues, clientele, and/or other internal or external constituencies in the planning of assignments and the resolution of day-to-day operational problems.
2. Under supervision, provide entry-level professional services as appropriate to the day-to-day operating objectives of the area. Receives guidance, training, and mentoring from senior personnel in planning and carrying out activities and assignments.
3. Undertake and/or participates in projects and programs designed to develop professional skills and expertise appropriate to the needs of the organization.
4. Participate in the planning and implementation of unit projects and initiatives within area of expertise and ability.
5. As specifically requested by management, conduct research and reporting inclusive of recommendations or alternative proposals for action.
6. Undertake related studies or enrichment programs as appropriate to the specific objectives of the operating unit.
7. Perform miscellaneous job-related duties as assigned.
8. Assisting with various cloud security tasks as needed to gain exposure to different areas of the team's work.
9. Assisting in monitoring cloud security tools and platforms to identify potential security incidents and vulnerabilities.
10. Assisting in identifying and assessing vulnerabilities in cloud infrastructure and applications.
11. Helping track and manage vulnerability remediation efforts.
12. Assisting in the implementation of security controls in the cloud environment.
13. Helping develop and maintain security documentation, including policies, standards, and procedures.
14. Contributing to the development and maintenance of vulnerability management processes and procedures.
15. Participating in security architecture reviews and providing security recommendations.
16. Presenting findings and recommendations to the Cloud Security team.
17. Contributing to the overall improvement of the Highmark Health cloud security program.

The job description has been designed to indicate the general nature and essential duties and responsibilities of work performed by employees within this job title. It may not contain a comprehensive inventory of all duties, responsibilities, and qualifications required of employees to do this job.

This position adheres to the ethical and legal standards and behavioral expectations as set forth in the code of business conduct and company policies. As a component of job responsibilities, employees may have access to covered information, cardholder data, or other confidential customer information that must be protected at all times. In connection with this, all employees must comply with both the Health Insurance Portability Accountability Act of 1996 (HIPAA) as described in the Notice of Privacy Practices and Privacy Policies and Procedures as well as all data security guidelines established within the Company's Handbook of Privacy Policies and Practices and Information Security Policy. Furthermore, it is every employee's responsibility to comply with the company's Code of Business Conduct. This includes but is not limited to adherence to applicable federal and state laws, rules, and regulations as well as company policies and training requirements.

Highmark Health and its affiliates prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities and prohibit discrimination against all individuals based on any category protected by applicable federal, state, or local law. We endeavor to make this site accessible to any and all users.