Cybersecurity Analyst Internship

Red Alert Labs is hiring!

About

Red Alert Labs is a French start-up founded in 2017 with a mission to bring trust to the internet of things.

We act as security partners with expertise in IoT. Our goal is to help organizations to secure their solutions and make well informed strategic decisions. We help them find the right balance in satisfying business and security needs.

Our partners come to us at any stage within the lifecycle of their IoT products or solutions. Our cybersecurity expertise and deep insight in the cybersecurity certifications, standards and regulatory space gives our offerings a unique point of differentiation in the marketplace.

Development of methodologies and specialized tools for risk assessment, security audits and certifications constitute the focus of our innovation because they reflect the pain-points of technical and commercial parts of IoT security. This allows us to provide services that cover among others, risk assessments, security of architectures, security audits, security benchmarking, compliance to standards as well as European or International certification.

Red Alert Labs essentially addresses manufacturers of connected objects, developers and integrators of IoT solutions, cloud & platform service providers, and finally buyers of and users of IoT products and services.

Job Description

Are you passionate about cybersecurity, threat modelling, and emerging authentication standards? Red Alert Labs is offering an exciting opportunity to join our team as a Cybersecurity Analyst Intern. You'll work alongside industry experts on real-world projects involving cutting-edge technologies like FIDO, and contribute to shaping methodologies for risk analysis, threat modelling, and vulnerability management.

This internship is ideal for students who want to build solid expertise in both technical and regulatory aspects of cybersecurity, while developing practical skills in threat modelling, compliance evaluation, and cybersecurity documentation.


đź§ What You Will Learn & Do

Risk & Threat Modelling

  • Learn and apply leading risk assessment methodologies like EBIOS and EUROSMART

  • Analyze and map different threat models (e.g., STRIDE) to real-world vulnerabilities

  • Contribute to the creation of a threat catalogue/database used in evaluations

Methodology & Documentation

  • Improve existing methodologies through research and structured analysis

  • Develop easy-to-follow "How to Use" documentation for threat and vulnerability mappings

  • Draft generic vulnerability management procedures from a manufacturer’s perspective, referencing relevant standards and certifications

FIDO Security & Evaluation Support

  • Learn about FIDO (U2F, UAF, FIDO2) protocols and certification processes

  • Draft user guidance documentation for FIDO Level 1 compliance, and help enhance existing ones for Level 2

  • Support FER (FIDO Evaluation Reports) and FIAR (FIDO Impact Analysis Report) evaluations

  • Help create internal training materials to guide future evaluators

Preferred Experience

We’re looking for highly motivated candidates with a curious mindset and strong analytical skills.

🎓 Education & Knowledge

  • Currently pursuing a Master's degree in Cybersecurity, Information Security, Computer Science, or related field

  • Understanding of cybersecurity standards, regulatory requirements, and best practices (e.g., ISO/IEC 27005, FIDO Alliance specs)

  • Knowledge of risk assessment (EBIOS, EUROSMART) and threat modelling (STRIDE)

  • Knowledge in cryptography

🛠️ Technical & Analytical Skills

  • Understanding of FIDO protocols: U2F, UAF, FIDO2

  • Ability to identify and analyze threats and vulnerabilities in digital products

  • Excellent documentation and presentation skills

  • Ability to structure and prepare training material

  • Strong written and verbal communication in English; French is a plus


Why Join Us?

  • Contribute to projects that have real impact on the security of digital identities and IoT ecosystems

  • Gain hands-on experience with international certification schemes and cybersecurity evaluations

  • Work with an experienced and friendly team in a company that bridges technical excellence and regulatory expertise

  • Opportunity to grow and potentially join the team post-interns

Recruitment Process

You will participate in two interview stages designed to provide a comprehensive evaluation of your fit for the role. During these interviews, we will collaborate to assess the following key areas:

  • Personal Motivation: We’ll focus on understanding your background, what drives your interest in cybersecurity, and how your aspirations align with the mission and culture of Red Alert Labs. This is an opportunity for you to share your journey, express what excites you about risk analysis and compliance, and discuss how you see yourself growing in this role.

  • Technical Competence: We’ll explore your understanding of risk assessment methodologies such as EBIOS or EUROSMART, your approach to threat modelling using frameworks like STRIDE, and your ability to interpret cybersecurity standards or authentication protocols like FIDO2, U2F, or UAF. You’ll also be asked to reflect on how you approach structured documentation, training material preparation, or vulnerability mapping tasks. Throughout the process, we aim to keep the conversation open, collaborative, and focused on your learning potential as much as your current skills.

Additional Information

  • Contract Type: Internship (Between 6 and 6 months)
  • Start Date: 01 October 2025
  • Location: Paris
  • Possible partial remote