L1 SOC Security Analyst Intern

About the Company

Univers builds a broad decarbonization platform that helps organisations and governments improve energy performance and cut emissions through reliable, actionable sustainability data. Its EnOS platform brings together operational technology in the field with cloud-based intelligence to support live energy monitoring, carbon reporting, and emissions reduction.

The company’s ecosystem spans hundreds of millions of connected sensors and smart devices, hundreds of gigawatts of renewable energy under management, and a large customer base working toward net-zero outcomes.

Role Overview

Univers is looking for an L1 SOC Security Analyst Intern to join its Security Operations Center. This role offers practical exposure to cybersecurity operations, incident handling, security engineering, and response processes that protect important systems and data.

What You Will Do

• Track and review security alerts from SIEM, XDR, SOAR, and threat intelligence platforms to spot possible threats.
• Perform first-level investigation of incidents and route more complex cases to L2 analysts.
• Look for suspicious activity using endpoint detection and network security tools such as firewalls, SASE, and WAF.
• Support security engineers with firewall setup, XDR tuning, and SOAR playbook improvements to automate detection and response.
• Help connect security tools and contribute to custom scripting efforts that improve SOC efficiency.
• Assist in building, testing, and refining detection rules and security policies.
• Review logs from endpoints, servers, cloud systems, and network devices to identify unusual patterns.
• Support basic forensics work on compromised systems and data breach cases.
• Contribute to malware review and reverse-engineering activities under guidance.
• Use threat intelligence sources and IOCs to enrich investigations and stay updated on attacker methods and trends.
• Work with engineers to strengthen threat detection using current intelligence.
• Record incident details, investigation steps, and outcomes in the SOC case management system.
• Help improve SOC workflows, playbooks, and escalation paths to speed up and sharpen response.
• Follow cybersecurity expectations aligned with frameworks such as NIST, CIS, and ISO 27001.
• Join projects involving security tool rollout, SIEM log ingestion tuning, and custom alert creation.
• Coordinate with IT, DevOps, and compliance teams on security controls and best practices.
• Share investigation and project findings with SOC leadership in a clear, professional manner.

Requirements

• Basic understanding of cybersecurity concepts, including common attacks and threats.
• Ability to turn classroom learning into practical, hands-on work.
• Good written and verbal communication skills.
• Strong problem-solving, critical thinking, and creative thinking abilities.
• Genuine interest in cybersecurity, IT, operational technology, edge, and cloud environments.
• Willingness to work a rotating shift pattern of 3 days on work followed by 3 days of rest.

Preferred Qualifications

• Exposure to malware analysis techniques and investigation tools.
• Experience using any scripting language.
• Knowledge of networking and Windows operating systems.
• Professional certifications in cybersecurity or IT are an advantage.

Benefits

• Shift allowance.
• Transport claims.
• Compensatory off-in-lieu for work performed on public holidays.

Additional Information

This is an onsite role based in Singapore. The internship is part-time. No stipend amount, start date, or duration was specified in the source.