Security Automation Intern

Position Purpose:

Arnall Golden Gregory seeks a motivated and detail-oriented Security Analyst Intern to support the firm’s Information Security program with a focus on SOAR playbooks, AI-driven security, and Zero Trust principles. This part-time internship is ideal for students or recent graduates who want hands-on experience applying modern security operations practices and automation in a legal-industry context.

The intern will assist with incident response orchestration, AI-assisted threat detection and analysis, and implementation of Zero Trust–aligned controls, working under the guidance of senior security staff while contributing to real-world projects.

Reports to: Director of Technology

Major tasks, Responsibilities and Key Accountabilities:

• Monitor and triage security alerts, following established SOAR playbooks and runbooks for common incident types.
• Assist in developing, testing, and refining SOAR playbooks to automate repetitive incident response tasks and improve response consistency.
• Support the use and evaluation of AI-powered security tools (e.g., for anomaly detection, phishing analysis, or log enrichment) and help document AI security use cases and risks.
• Contribute to basic AI security modeling tasks, such as identifying threats and risks to AI-enabled systems and documenting controls and mitigations.
• Participate in projects that advance the firm’s Zero Trust philosophy, including least-privilege access reviews, segmentation initiatives, and continuous verification of users and devices.
• Assist with vulnerability scanning, risk assessments, and tracking remediation activities across systems and applications.
• Help maintain and enhance security policies, standards, and procedures that align with Zero Trust and automation-focused practices.
• Support compliance and documentation activities related to data protection and client/security requirements.
• Perform other information security support duties as assigned.

Learning Opportunities

• Exposure to SOAR platforms and playbook design, including how playbooks are used to standardize and automate incident response workflows.
• Hands-on experience with AI-enhanced security tools and an introduction to core AI security concepts such as threat modeling for AI and governance of AI-assisted decisions.
• Practical understanding of Zero Trust concepts (e.g., never trust/always verify, least privilege, continuous monitoring) and how they are applied in a hybrid, professional services environment.
• Opportunities to develop scripting skills (e.g., Python, PowerShell) to support automation, data enrichment, and reporting.

General Competencies Required:

• Writes clearly, accurately, and concisely for technical and non-technical audiences.
• Communicates effectively with IT, legal, and business stakeholders.
• Maintains strict confidentiality and adheres to the highest ethical standards in handling sensitive firm and client data.
• Demonstrates initiative, curiosity, and a growth mindset in learning new security technologies and methodologies.

Qualifications:

• Currently pursuing or recently completed a degree in Cybersecurity, Computer Science, Information Technology, or a related field.
• Basic understanding of security operations concepts such as SIEM, SOAR, incident response, and vulnerability management.
• Interest in or exposure to AI/ML concepts and their application to security (preferred but not required).
• Familiarity with core security principles, especially identity and access management and least-privilege access.
• Strong analytical and problem-solving skills, with attention to detail and a willingness to learn modern security tooling and approaches.
• Excellent written and verbal communication skills and a collaborative mindset.

Employment Status: Part TimeWork Location: AtlantaFLSA Status: Non-Exempt