InternshipDevSecOps

Ozone is a team of DevSecOps engineers offering automated security tools as part of our standard approach. Our tools help KPN DevOps teams keep their developer environments stable and secure. During your internship, you work with experienced engineers who guide and support you. You have regular check-ins to discuss progress and ideas. We encourage you to share insights and challenge current methods. We value a safe, open environment where learning through questions and mistakes drives success. As a DevSecOps intern, you will work on a real and impactful security challenge within our cloud-native platform. We run business-critical workloads on AWS and Kubernetes. While preventive security controls are in place, we are looking to improve our visibility into what actually happens inside running containers and cloud workloads. Think of detecting unusual behavior such as privilege escalation, credential misuse, or unexpected network activity. During your internship, you will investigate how we can strengthen our runtime security and monitoring capabilities. You will combine research, analysis, and hands-on work to design and validate a solution. This means your work will directly help us better detect and respond to real-world security threats. Your activities include: * Understanding the current situation: assess our AWS and Kubernetes setup to find gaps in monitoring, logging, and security. * Researching possible solutions: review and compare open-source, commercial, and AWS-native tools, then share clear recommendations. * Designing an improved future setup: set clear runtime monitoring rules, detail data collection and response steps, and ensure seamless integration with current tools and processes. * Building a Proof of Concept: test the chosen solution in a controlled setting, show it detects security events, and document the setup, configuration, and results. * Creating an implementation approach: roll out the solution by listing prerequisites, estimating effort,