Undergraduate/Graduate (Summer) Cybersecurity Research Intern

Posting TitleUndergraduate/Graduate (Summer) Cybersecurity Research Intern

.

LocationCO - Golden

.

Position TypeIntern (Fixed Term)

.

Hours Per Week40

.

Working at NRELThe National Renewable Energy Laboratory (NREL), located at the foothills of the Rocky Mountains in Golden, Colorado is the nation's primary laboratory for research and development of renewable energy and energy efficiency technologies.

Join a team of world-class scientists, engineers, and visionaries dedicated to shaping the world’s energy future through cutting-edge research and innovation. From our vision to our NREL community, we are unique in the research community. We are focused on impact. From our work in basic sciences to systems engineering, analysis, demonstration, and deployment, we are focused on solving market-relevant problems that result in advanced, secure, reliable, and affordable energy systems. We are trusted clean energy leaders, developing cost-saving solutions that make U.S. industries more competitive, and support job creation and economic growth across rural and urban communities.

At NREL, we offer a unique, mission-driven work environment with cutting-edge facilities and multidisciplinary research teams. NREL's environment offers strong partnerships with industry, academia, and other national laboratories, as well as professional development opportunities and a competitive benefits package for employees.

Learn about NREL’s critical objectives: NREL's Mission and Vision.

Job Description

As a Cybersecurity Research Intern, you will contribute to cutting-edge projects aimed at strengthening the cybersecurity of critical energy infrastructure. Your responsibilities will include conducting research, performing tests, and analyzing results to enhance the security of the supply chain for this sector. This position provides hands-on experience with advanced tools, technologies, and testing methodologies.

You will work alongside cybersecurity experts and engineers on tasks such as reverse engineering components, identifying vulnerabilities, refining testing procedures, and developing insights to safeguard critical energy systems.

Duties may include

• Assist in reverse engineering hardware and software components to conduct vulnerability analysis within ICS and OT environments.
• Conduct research on emerging cybersecurity threats affecting supply chains and critical energy infrastructure.
• Support the development and refinement of testing methodologies, tools, and protocols.
• Analyze test results, document findings, and contribute to technical reports and recommendations.
• Collaborate with team members to test hardware and software to identify vulnerabilities.
• Participate in team meetings, presentations, and brainstorming sessions to enhance project outcomes.

Job description & intern’s expected contribution: 

As a Cybersecurity Research Intern, you will contribute to cutting-edge projects aimed at strengthening the cybersecurity of critical energy infrastructure. Your responsibilities will include conducting research, performing tests, and analyzing results to enhance the security of the supply chain for this sector. This position provides hands-on experience with advanced tools, technologies, and testing methodologies.

You will work alongside cybersecurity experts and engineers on tasks such as reverse engineering components, identifying vulnerabilities, refining testing procedures, and developing insights to safeguard critical energy systems.

Duties may include:

• Assist in reverse engineering hardware and software components to conduct vulnerability analysis within ICS and OT environments.
• Conduct research on emerging cybersecurity threats affecting supply chains and critical energy infrastructure.
• Support the development and refinement of testing methodologies, tools, and protocols.
• Analyze test results, document findings, and contribute to technical reports and recommendations.
• Collaborate with team members to test hardware and software to identify vulnerabilities.
• Participate in team meetings, presentations, and brainstorming sessions to enhance project outcomes.

For more information about the project work, please visit: https://www.energy.gov/ceser/cybersecurity-testing-resilient-industrial-control-systems.

This internship will take strictly onsite at the NREL South Table Mountain campus in Golden, Colorado. More specifically, the intern will work in the Energy Systems Integration Facility (ESIF), an advanced and unique research facility. For more information about ESIF, please visit: https://www.nrel.gov/esif/

.

Basic QualificationsMust be enrolled as a full-time student in a Bachelor's, Master's or PhD degree program, or graduated in the past 12 months from an accredited institution. Candidates who have earned a degree may work for a period not to exceed 12 months. Must have a minimum of a 3.0 cumulative grade point average.

Please Note:
•You will need to upload official or unofficial school transcripts as part of the application process.
•If selected for position, a letter of recommendation will be required as part of the hiring process.

* Must meet educational requirements prior to employment start date.

Additional Required Qualifications

• Pursuing a degree in cybersecurity, computer science, electrical engineering, or a related field.
• Basic understanding of vulnerability assessment tools, penetration testing methodologies, or secure coding practices.
• Experience with virtualized technologies and their application in managing virtualized environments, including virtual network configurations.
• Strong analytical and problem-solving skills with attention to detail.
• Effective written and verbal communication skills for documentation and reporting.
• Ability to work independently and as part of a collaborative team environment.

Eligibility requirements: This position will require access to Controlled Unclassified Information which may include restricted dissemination requirements based on citizenship.  As a result, applicants may be excluded from consideration based on citizenship in accordance with DOE O 471.7, Controlled Unclassified Information. https://www.directives.doe.gov/news/new-doe-o-471-7-controlled-unclassified-information

Preferred Qualifications

• Familiarity with industrial control systems, operational technology, or power systems.
• Skills related to using tools such as Ghidra, IDA Pro, Wireshark; Programming and Scripting languages such as C, C++, Java, Python, SQL, and Bash.
• Computer hardware knowledge such as computer architecture and low-level programming.
• Electrical engineering (EE) skills such as circuit design and analysis, hardware and firmware debugging, and parsing electronic components datasheets.

.

Job Application Submission Window

The anticipated closing window for application submission is up to 30 days and may be extended as needed.

Annual Salary Range (based on full-time 40 hours per week)Job Profile: Undergraduate II / Annual Salary Range: $34,800 - $55,700

NREL takes into consideration a candidate’s education, training, and experience, expected quality and quantity of work, required travel (if any), external market and internal value, including seniority and merit systems, and internal pay alignment when determining the salary level for potential new employees. In compliance with the Colorado Equal Pay for Equal Work Act, a potential new employee’s salary history will not be used in compensation decisions.

Benefits SummaryBenefits include medical, dental, and vision insurance; 403(b) Employee Savings Plan with employer match*; and sick leave (where required by law). NREL employees may be eligible for, but are not guaranteed, performance-, merit-, and achievement- based awards that include a monetary component. Some positions may be eligible for relocation expense reimbursement. Internships projected to be less than 20 hours per week are not eligible for medical, dental, or vision benefits.

* Based on eligibility rules

Badging RequirementNREL is subject to Department of Energy (DOE) access restrictions. All employees must also be able to obtain and maintain a federal Personal Identity Verification (PIV) card as required by Homeland Security Presidential Directive 12 (HSPD-12), which includes a favorable background investigation. Intern assignments extending beyond six months will be subject to this requirement.

Drug Free Workplace

NREL is committed to maintaining a drug-free workplace in accordance with the federal Drug-Free Workplace Act and complies with federal laws prohibiting the possession and use of illegal drugs. Under federal law, marijuana remains an illegal drug.

If you are offered employment at NREL, you must pass a pre-employment drug test prior to commencing employment. Unless prohibited by state or local law, the pre-employment drug test will include marijuana. If you test positive on the pre-employment drug test, your offer of employment may be withdrawn.

Submission Guidelines

Please note that in order to be considered an applicant for any position at NREL you must submit an application form for each position for which you believe you are qualified. Applications are not kept on file for future positions. Please include a cover letter and resume with each position application.

.

EEO Policy

NREL is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard basis of age (40 and over), color, disability, gender identity, genetic information, marital status, domestic partner status, military or veteran status, national origin/ancestry, race, religion, creed, sex (including pregnancy, childbirth, breastfeeding), sexual orientation, and any other applicable status protected by federal, state, or local laws.

EEO is the Law | Pay Transparency Nondiscrimination | Reasonable Accommodations

E-Verify www.dhs.gov/E-Verify For information about right to work, click here for English or here for Spanish.

E-Verify is a registered trademark of the U.S. Department of Homeland Security. This business uses E-Verify in its hiring practices to achieve a lawful workforce.