Cybersecurity Intern – AI & SaaS Systems in Hull

NexCell Solutions is offering a 6-month Cybersecurity Internship for students seeking hands-on experience in the security, resilience, and protection of modern AI-driven and SaaS-based systems. This role operates at the intersection of cybersecurity engineering, cloud infrastructure security, encryption, and risk management. You will support efforts to identify vulnerabilities, harden systems, and enforce security-by-design principles across real production environments.

Your work will directly support live internal systems, real security controls, and real risk-mitigation processes within a technology consultancy operating at enterprise standards. This is not simulated coursework or theoretical lab work. This internship is designed for students who want a serious cybersecurity foundation, with exposure to how security is implemented, monitored, and governed in real AI and SaaS businesses.

Responsibilities

• Support identification and assessment of security risks across cloud-based systems
• Assist with vulnerability scanning, threat modelling, and attack-surface analysis
• Review authentication, authorisation, and identity-management flows
• Support implementation and review of encryption at rest and in transit
• Assist with secrets management, key-handling practices, and secure configuration reviews
• Support least-privilege access models and role-based access control (RBAC)
• Monitor logs, alerts, and security events for anomalies or suspicious behaviour
• Assist with security hardening tasks across applications and infrastructure
• Contribute to internal security documentation, guidelines, and incident procedures
• Support compliance-aligned security practices (GDPR-aware controls, audit readiness)
• Learn how DevSecOps and secure development practices operate in production
• Escalate potential risks clearly and responsibly
• Collaborate with developers, system architects, and senior technical leads

You will be expected to think critically, document clearly, and act with a professional, security-first mindset.

Ideal Candidate

Academic Requirements: Currently enrolled in a Bachelor's or Master's degree that allows a credit-bearing internship. Studying Cybersecurity, Computer Science, Information Security, IT, Software Engineering, or related disciplines.

Professional Attributes: Interested in cybersecurity within AI, SaaS, and cloud-native systems. Seeking exposure to real security engineering challenges beyond academic coursework. Comfortable working remotely and managing time independently. Able to communicate clearly in written English and operate professionally.

Required Skills & Knowledge

• Core Cybersecurity Foundations
• Strong understanding of the CIA triad (confidentiality, integrity, availability)
• Solid familiarity with OWASP Top 10 (Web & API)
• Understanding of threat modelling concepts (e.g. STRIDE or similar)
• Ability to reason about attack surfaces and system risk, not just isolated vulnerabilities
• Security-first mindset with attention to misconfiguration risks
• Encryption & Cryptography
• Strong understanding of modern encryption standards (AES-256, RSA, Elliptic Curve cryptography)
• Clear understanding of encryption at rest vs encryption in transit
• Familiarity with TLS 1.2 / TLS 1.3 and certificate-based security
• Understanding of hashing vs encryption (e.g. SHA-256, bcrypt, Argon2)
• Awareness of key-management principles (secure storage, key rotation, environment isolation)
• Awareness of common cryptographic mistakes (hardcoded secrets, weak hashes, key reuse)
• Identity, Access & Authentication
• Understanding of OAuth 2.0 and token-based authentication flows
• Knowledge of JWT structure and common security pitfalls
• Multi-factor authentication principles
• Role-Based Access Control (RBAC) and least-privilege enforcement
• Session management and access expiry awareness
• Cloud & Infrastructure Security
• Understanding of cloud shared responsibility models
• Awareness of cloud security concepts (AWS, GCP, or Azure): identity and access management, secure storage access controls
• Basic understanding of container isolation (Docker-level knowledge)
• Network security fundamentals (firewalls, ports, TLS, secure API exposure)
• Security Testing, Monitoring & Tooling
• Exposure to vulnerability scanning or security testing tools (e.g. OWASP ZAP, Burp Suite, Snyk)
• Understanding of dependency and supply-chain security risks
• Familiarity with Git-based workflows and secure pull-request practices
• Awareness of log monitoring and security event concepts
• Basic incident response awareness (detection, escalation, containment)
• Preferred Skills
• Exposure to DevSecOps or secure CI/CD pipelines
• Basic scripting skills (Python or Bash) for security tasks
• API security testing experience
• Prior CTFs, labs, or security research
• Interest in security challenges related to AI systems and data protection

Application Process

Apply through this LinkedIn job posting or by email to contact@nexcellsolutions.com. Please include in your application: Your CV, a short cover letter, and a paragraph (maximum 150 words) answering: Describe a cybersecurity, encryption, or security-related project you have worked on. What was your role, and what did you learn?

What You Gain

• Eligibility to apply directly for our graduate scheme, a 2-year paid contract with NexCell Solutions
• Hands-on experience with real cybersecurity practices in AI and SaaS environments
• Strong practical grounding in encryption, access control, and cloud security
• Exposure to professional security documentation and incident processes
• Direct collaboration with senior technical team members
• Ownership of meaningful security-related tasks with real impact
• Certificate of completion and professional reference upon successful completion

About NexCell Solutions

NexCell Solutions Ltd (London, UK) is a CRM and AI consultancy specialising in secure, intelligent digital systems for real-world business environments. We design and build AI-powered platforms, automation systems, and SaaS products used by organisations across multiple industries.