Uni Internship May to Oct 2025 - CSIRT (Cyber Security Incident Response Team)

Apply now »

Date: 7 Jan 2025

Location: SG

Company: Synapxe

Synapxe is the national HealthTech agency inspiring tomorrow’s health. The nexus of HealthTech, we connect people and systems to power a healthier Singapore. Together with partners, we create intelligent technological solutions to improve the health of millions of people every day, everywhere.
 
Are you someone who enjoys problem solving, has a creative and curious mind, and strives to create a better and healthier tomorrow? If you say yes to all, do check out our website and find out more about Internship@Synapxe.
 
Join Synapxe as an intern and see how you can contribute in powering a healthier Singapore. We aim to deliver the best experience for all interns, to create exponential growth and paving your future in the tech industry.

 

The internship aims to provide the following opportunities for the intern to acquire knowledge and experience related to CSIRT (Cyber Security Incident Response Team):

 

  1. Understanding the Process of Incident Response
    • Different phases of incident response.
    • Escalation process and the stakeholders involved.
  2. Understanding Digital Forensics
    • Overview of Digital Forensic Standard Operating Procedures (SOP).
    • Processes to preserve and protect the integrity of digital evidence.
    • Types of digital evidence to acquire.
    • Acquisition in the order of volatility.
    • Tools for performing acquisition.
    • Tools for analyzing acquired evidence.
    • Understanding Windows artifacts (e.g., shellbags, prefetch, Shimcache, .lnk files, event log analysis, registry keys, MFT, etc.).
    • Basics of memory analysis.
    • Compiling artifacts into a report. 
  3. Introduction to Malware Analysis
    • Explore and understand Synapxe CSIRT Malware SOP.
    • Understand the cybersecurity framework (Mitre ATT&CK and its TTPs).
    • Learn about different types of malware (viruses, worms, Trojans, ransomware, etc.) and their characteristics, including case studies of notable malware incidents.
    • Understand operating system architecture and kernels.
    • Explore malware analysis tools:

 

Interns will also get the opportunity to familiarize with tools for static analysis (e.g., PEiD, ExifTool, Sysinternals) and dynamic analysis (e.g., MASS Sandbox, Process Monitor) and practice using the tools on benign files to understand their functionalities.

 

  1. Engage in static analysis:
    • Analyze malware samples without executing them, focusing on file headers, strings, and metadata.
    • Document findings to identify the malware's purpose and behavior.
  2. Engage in dynamic analysis
    • Set up a safe environment (e.g., virtual machines) to execute malware samples.
    • Monitor system changes, network traffic, and process behavior during execution.
  3. Project Considerations

 

The intern can participate in the following projects:

  • Involvement in AWS and Azure projects for Cybersecurity Incident Response and Forensics.
  • Redesigning the network diagram of the forensic lab.
  • Deployment of tools in the forensic lab.
  • Investigating a malware-infected image and submitting a written report for review.

 

Other Areas of Work Scope:

 

  • Scribing during a cyber incident.
  • Assisting in documentation for CSIRT.
  • Maintenance of lab equipment.
  • Testing of new forensic tools.
  • Augmenting as IR personnel during incidents (not included in the duty roster)."

 

About you:

  • Be pursuing a Bachelor's Degree in Computer Science, Information Security or related discipline
  • Graduating in Dec 2025 or May/Dec 2026
  • A keen interest in cybersecurity and technology
  • The ability to work well under pressure and handle time-sensitive tasks
  • An eagerness to learn and adapt in a rapidly evolving field
  • Passionate and keen to make a difference to re-imagine the future of HealthTech

 

#LI-YG1

#LI-LK1