Final Internship Report

Date: April 23, 2025

A’shya Reynolds

Department of Justice of Executive Office for Immigration Review

CYSE 368/Internship

Spring 2025

Table of Contents

1. Introduction
2. Beginning of the Internship
3. Management Environment
4. Major Work Duties and Assignments
5. Use of Cybersecurity Skills and Knowledge
6. Connection to ODU Curriculum
7. Reflection on Learning Objectives
8. Motivating Aspects of the Internship
9. Discouraging Aspects of the Internship
10. Challenges Encountered
11. Recommendations for Future Interns
12. Conclusion
13. Appendices: Work Samples

Introduction

I chose to intern with the Department of Justice’s Executive Office for Immigration Review (DOJ EOIR) because it aligns with my long-term career goal of becoming a federal government employee specializing in cybercrime, particularly Insider Threat investigations. The DOJ’s mission to uphold justice through innovative cybersecurity operations deeply resonates with my academic background and ethical values. This internship offered an ideal opportunity to gain real-world experience while contributing to a cause that supports national security and public service.

My primary goals for the internship included developing hands-on experience in cybersecurity, learning how cybercrimes, especially insider threats, are investigated and mitigated, and improving my technical and professional communication skills. I had the experience of cybersecurity policies and operations within a federal agency to better understand how theory is applied in practice. This role also allowed me to contribute meaningfully while enhancing my digital security knowledge and technical abilities. I set three key learning objectives for myself: (1) apply what I have learned in the classroom to real-world cybersecurity challenges, (2) strengthen my skills in analyzing and interpreting cyber threat reports, and (3) build strong professional communication and teamwork skills within cybersecurity teams. I was eager to observe the full of threat response and mitigation in a structured, high-security environment.

This paper reflects on my internship experience, highlighting the technical skills I gained, the challenges I overcame, and the personal and professional growth I achieved. Most importantly, it illustrates how this internship has helped my commitment to a career in government cybersecurity and reinforced my interest in protecting digital infrastructure through proactive and ethical cybercrime prevention.

Beginning of the Internship

The Department of Justice (DOJ) agency where I completed my internship was a specialized federal cybersecurity task force dedicated to protecting the nation’s digital infrastructure and responding to cybercrime threats. Positioned at the intersection of law enforcement and national defense, the task force provides a wide range of services, including cyber threat analysis, infrastructure risk assessments, vulnerability management, and interagency coordination. The agency mission centers on ensuring national cybersecurity resilience through strategic monitoring, investigation, and collaborative efforts to combat emerging threats.

My internship began with a comprehensive orientation program designed to prepare interns for work within a high-security federal environment. The first week included briefings on agency protocols, system usage policies, cybersecurity compliance requirements, and the expectations tied to different levels of security clearance. We were introduced to various DOJ platforms and learned how to navigate secure communication tools, perform data handling procedures, and follow ethical guidelines related to government cybersecurity operations. From the very beginning, I was impressed by the structure and professionalism of the organization. The DOJ internship program was clearly designed not just to involve interns in administrative tasks but to help us gain real-world experience in cybersecurity operations. I immediately noticed the emphasis on education, engagement, and ethical responsibility. There was a strong focus on training and mentorship, which created a welcoming and motivating environment for learning.

One of the most memorable parts of my first week was meeting my assigned supervisor and the team I would be working with throughout the period. My supervisor took the time to understand my schedule and was flexible, also my goals and interests, offering insight into how my tasks would align with DOJ objectives. The team members were approachable and genuinely interested in helping me grow as a cybersecurity professional. They welcomed my questions and made me feel like a valued contributor rather than just an intern.

Management Environment

The management environment at the DOJ cybersecurity task force was well-organized and supportive, having a professional grounded in structure, accountability, and collaboration. From the beginning, it was clear that the agency operated under a clearly defined management structure. Each team had designated supervisors, analysts, and technical leads, all contributing to a hierarchy that promoted both clarity in responsibilities and efficiency in operations. Weekly team meetings served as the foundation for communication and coordination. These meetings typically included updates on ongoing projects, progress reports, and task assignments. We also participated in debriefing sessions, which were particularly useful in reviewing incidents, examining responses, and identifying areas for improvement. Discussions often focus on current and emerging cyber threats, allowing interns and staff to stay informed about evolving tactics, vulnerabilities, and threat actors. These sessions not only promoted awareness but also emphasized proactive thinking and real-time collaboration.

The environment was designed to encourage continuous learning. I appreciated that, even as an intern, I was invited to participate in team discussions and contribute insights when relevant. Supervisors actively encouraged engagement by asking for opinions, assigning tasks that matched our learning goals, and providing us with opportunities to shadow more experienced analysts. This hands-on exposure helped me understand how federal agencies manage large-scale cybersecurity operations and respond to incidents across different domains. The supervisors had a central role in shaping a positive management culture. They were approachable, professional, and consistently open to dialogue. Feedback was a regular and constructive part of the internship experience. Whether through weekly one-on-one check-ins or spontaneous reviews during project work, my supervisor offered clear guidance on how I could improve my analysis, communication, and technical skills. Their mentorship was practical and encouraging, contributing significantly to my personal and professional growth.

Major Work Duties and Assignments

Throughout my internship I was assigned a variety of tasks that offered practical experience in federal cybersecurity operations and threat prevention. My responsibilities were thoughtfully structured to reinforce both technical knowledge and analytical thinking, all while supporting the agency’s core mission of protecting national digital infrastructure. One of my primary duties involved analyzing security events for suspicious activity. This required attention to detail and a solid understanding of how to interpret log data to detect potential anomalies. In addition, I routinely reviewed phishing email reports submitted by agency employees. I helped identify malicious indicators and provided recommendations on how to respond to these threats. These assignments helped sharpen my ability to recognize social engineering tactics and understand how phishing attacks can compromise systems and data.

Another area I contributed to was network defense, specifically through assisting in the configuration of firewall rules. I worked alongside cybersecurity analysts to review existing rulesets and propose updates to better restrict unauthorized access and minimize vulnerabilities. This hands-on task deepened my understanding of network security, access controls, and secure configuration practices. A particularly valuable project involved helping to create internal cybersecurity awareness content for DOJ employees. I collaborated with my team to develop clear, engaging messages about safe browsing, password hygiene, and phishing prevention. This work showed me how essential user education is in reducing human error and strengthening overall organizational security.

One of the most technical and interesting assignments involved investigating the unauthorized use of ChatGPT within the DOJ network. As part of a team, I was tasked with using CrowdStrike, a widely used endpoint detection and response platform to investigate flagged activity. We were given an Excel spreadsheet containing computer names that had triggered alerts for ChatGPT-related traffic. Using this data, we accessed CrowdStrike to locate the corresponding endpoints and identify associated users. This included retrieving users’ first and last names as well as their DOJ email addresses. The task reinforced the importance of monitoring tools in detecting non-compliant activity and protecting sensitive government systems.

Use of Cybersecurity Skills and Knowledge

Prior to beginning the internship my cybersecurity education was primarily classroom-based. I had gained foundational knowledge through coursework in digital forensics, ethical hacking, and network security. These courses provided me with a strong theoretical understanding of cybersecurity concepts, including threat modeling, system vulnerabilities, penetration testing, and forensic analysis techniques. However, the internship gave me the opportunity to apply this knowledge in a real-world environment, offering valuable hands-on experience that deepened my technical capabilities and professional readiness.

One of the most impactful aspects of the internship was the opportunity to use professional cybersecurity tools that are widely employed in government and enterprise environments. I worked extensively with CrowdStrike, an endpoint detection and response (EDR) platform used to monitor, investigate, and respond to potential threats in real-time. I learned how to examine data, analyze endpoint behavior, and track suspicious user activity using the platform’s dashboards and threat intelligence features. Another tool I used was JCAM (Justice Cybersecurity Analysis Management), a DOJ-specific platform that supports case tracking and digital threat analysis. This tool helped me understand how federal agencies manage ongoing investigations and compliance cases, emphasizing the importance of structured workflows and documentation.

Additionally, I gained experience with Tenable, a vulnerability scanning tool used to assess risk exposure across systems and networks. Working with Tenable gave me insight into how vulnerabilities are prioritized, reported, and addressed within a secure infrastructure. I learned how to interpret scan results and assist in recommending mitigation strategies, particularly for high-risk assets. What made this experience especially valuable was how these tools were used in accordance with federal cybersecurity compliance frameworks, such as NIST (National Institute of Standards and Technology) guidelines.

Understanding how technical operations align with compliance requirements helped bridge the gap between academic learning and operational execution. Through each task, I was challenged to apply classroom knowledge in practical ways, whether identifying malicious behavior, interpreting scanned data, or drafting cybersecurity documentation. The hands-on work refined my problem-solving skills, taught me how to approach cybersecurity challenges methodically, and emphasized the importance of attention to detail in protecting sensitive systems.

Connection to ODU Curriculum

My academic experience at ODU had a strong foundation for the hands-on work I completed during my internship with the DOJ cybersecurity task force. The curriculum in the Information Technology and Cybersecurity program equipped me with both technical and theoretical knowledge that directly applied to my internship tasks and responsibilities. Courses like CYSE 450 – Ethical Hacking and Penetration Testing were especially impactful. In this course, I gained practical skills in identifying system vulnerabilities, conducting penetration tests, and understanding attack methodologies. These skills were used in my internship work, particularly when I assisted with vulnerability assessments using Tenable. I was able to apply my classroom experience to help identify system weaknesses, interpret scan reports, and contribute to mitigation planning critical steps in securing federal networks.

Therefore, my coursework in networking and system security provided a strong technical baseline for understanding firewall configurations and endpoint monitoring. I was already familiar with the concepts of packet filtering, intrusion detection, and network segmentation, which made it easier to grasp and contribute to the agency’s cybersecurity operations using tools like CrowdStrike. ODU’s emphasis on cyber ethics, law, and privacy was equally important. Courses like Cyber Law 406 helped me understand the legal frameworks that govern cybersecurity practices in the public sector. During the internship, I regularly encountered scenarios involving information access, user monitoring, and data sharing, and my background in ethics helped me assess these situations thoughtfully and responsibly. I could critically evaluate the DOJ’s internal policies, particularly those related to surveillance and AI use, with an understanding of their broader legal and societal implications. ODU’s interdisciplinary approach also played a key role in preparing me to think critically and solve problems from multiple perspectives. Whether I was working with technical analysts, policy advisors, or legal teams, I felt confident in my ability to understand different viewpoints and contribute meaningfully to discussions.

Reflection on Learning Objectives

Entering my internship with DOJ, I set clear learning objectives using classroom knowledge with real-world cybersecurity practices. My primary goals were to apply concepts to practical scenarios, gain exposure to insider threat analysis and mitigation, and enhance my professional communication skills in a collaborative environment. I am proud to say that not only were these objectives fully met they were greatly exceeded. One of my most valuable experiences was applying academic concepts to live case scenarios, particularly in insider threat detection and response. I observed firsthand how potential internal risks were identified through system monitoring and user activity analysis. By reviewing security documentation, analyzing threat patterns, and supporting mitigation practices, I developed a more comprehensive understanding of how insider threats are managed in high-security environments. These experiences enhanced my ability to think critically about user behavior, access controls, and the importance of trust and accountability within an organization.

Additionally, I focused on improving my professional communication skills, especially in technical and team-based settings. This objective was accomplished through regular participation in meetings, team briefings, and peer review sessions. I learned how to present technical information clearly and concisely, tailor my language for different audiences, and offer constructive feedback to colleagues. These interactions taught me the importance of collaboration in the cybersecurity field, where sharing knowledge and working as a cohesive unit is vital for effective incident response and system protection.

What made the experience even more enriching was my interaction with professionals across different levels and specialties within the DOJ. Engaging with cybersecurity analysts, supervisors, and policy advisors allowed me to understand how diverse roles contribute to a unified mission. I gained insight into how cybersecurity tools and practices are implemented in alignment with federal regulations and strategic policies. This internship gave me insight into the policy implications of cybersecurity decisions and the ethical considerations involved in protecting government systems and data.

Motivating Aspects of the Internship

One of the most motivating aspects was the cybersecurity task force was the rare and exciting opportunity to gain hands-on professional experience before graduating. Knowing that I was trusted to contribute to meaningful projects in a high-stakes environment gave me a strong sense of purpose and accomplishment. This internship served as a valuable opportunity in my career, allowing me to see the direct impact of my efforts in real-time and reinforcing my passion for working in government cybersecurity. Another powerful motivator was the flexibility of the internship. Being able to complete it remotely and independently structure my schedule based on personal availability made the experience not only manageable, but also empowering. This autonomy taught me how to balance time effectively and helped me develop strong self-discipline. Having the ability to meet deadlines while also managing coursework and personal responsibilities increased my confidence in my ability to thrive in a hybrid or remote work environment, something I hope to continue in my future career.

The nature of the work itself was also highly motivating. From analyzing security reports and reviewing system logs to participating in I.T. configurations and training sessions, each task gave me an opportunity to grow technically while making meaningful contributions to national cybersecurity operations. I took great pride in knowing that my work supported efforts to protect critical systems and infrastructure from cyber threats. That sense of purpose and relevance kept me engaged and enthusiastic throughout the internship.

Equally inspiring was the support and encouragement I received from my supervisors and co-workers. The professionals I worked with created an inclusive and welcoming environment, always willing to share their knowledge and patiently explain complex tools or processes. Their guidance helped me navigate challenges, expand my skill set, and see the value of teamwork in cybersecurity operations. Having mentors who believed in my potential pushed me to go above and beyond and affirmed that I belonged in this field.

Discouraging Aspects of the Internship

While my DOJ internship was highly rewarding and an experience, there were several discouraging aspects that tested my confidence, adaptability, and resilience but ultimately helped me grow both personally and professionally. One of the most difficult parts of the internship was adapting to the complexity of the DOJ’s technical environment. The systems, tools, and terminology used in day-to-day operations were far more advanced than what I had previously encountered in a classroom setting. Early on, I often felt overwhelmed during team meetings and while reading through incident reports, policy documents, and threat intelligence briefings. The technical language, acronyms, made it difficult for me to fully grasp the scope of discussions or contribute meaningfully to conversations.

There were moments when I questioned whether I was fully prepared for such a high-level internship. However, rather than allowing this discouragement to define my experience, I chose to view it as a growth opportunity. I began taking more detailed notes, doing independent research, and creating personal glossaries to better understand unfamiliar terms and systems. I also made it a point to ask questions, even when I felt unsure, which helped me clarify confusing concepts and build stronger connections with my team. receive real-time feedback. This occasionally led to moments of isolation or uncertainty about my performance. I learned to be more proactive in reaching out to supervisors, requesting feedback, and scheduling regular check-ins to stay on track. Despite these aspects, each discouraging moment taught me important lessons in perseverance and self-advocacy. I developed stronger communication, organizational, and problem-solving skills that I will carry into future roles. In hindsight, these challenges were some of the most valuable parts of the experience, as they truly prepared me for the dynamic and demanding world of cybersecurity.

Challenges Encountered

Throughout the time, I encountered several challenges that tested my ability to balance priorities, manage time effectively, and adapt to a dynamic work environment. These obstacles, while initially difficult, played a significant role in shaping my personal and professional development. One of the most challenges was navigating time management while doing multiple responsibilities. Balancing the demands of the internship with my academic coursework and personal commitments often felt overwhelming, particularly during weeks when assignments from all areas seemed to peak simultaneously. Certain internship tasks, such as reviewing lengthy incident reports or conducting independent research on cybersecurity tools, required extended periods of deep focus something that was difficult to achieve amidst a packed schedule. Learning to prioritize tasks, creating structured to-do lists, and set realistic daily goals became essential to staying organized and maintaining productivity.

Another challenge I faced was working remotely, which brought both flexibility and its own set of complications. While I appreciated being able to work from home and manage my own schedule, the remote format sometimes created communication gaps. There were moments when I needed immediate clarification on an assignment or tool but had to wait for a response via email or messaging platforms. This delay could slow down progress or create uncertainty in how to proceed with a task. Not having in-person access to mentors or peers also made it more difficult to observe informal learning moments that often occur in a traditional office setting.

In response to these challenges, I became much more resourceful and proactive. I learned to use multiple platforms such as agency guides, internal knowledge bases, and previous documentation to troubleshoot and find answers on my own. When I couldn’t resolve an issue independently, I made sure to frame my questions clearly and concisely to get the most helpful feedback.

Recommendations for Future Interns

For any student considering an internship with the Department of Justice (DOJ) or a similar organization whether it is federal, state, or local there are several key recommendations I would give to help ensure a successful experience. First, it is important to research the agency thoroughly before applying for or accepting a position. Understanding the mission, structure, and recent initiatives of the organization will help you determine whether the internship aligns with your career interests and long-term goals. For example, the DOJ’s focus on national cybersecurity and law enforcement coordination made it a perfect fit for my interest in cybercrime and digital policy. Knowing this ahead of time allowed me to approach the internship with purpose. Second, be proactive in developing technical skills before your internship begins. Familiarity with foundational cybersecurity frameworks such as NIST and CIO Controls and tools like Wireshark and Tenable, will provide a strong advantage. While you will learn a lot on the job, coming in with a baseline understanding of cybersecurity operations will allow you to contribute more quickly and confidently. For federal internships, be prepared for security clearance requirements, including background checks and strict adherence to privacy and confidentiality policies. It is important to be patient throughout this process because it takes a while.

Another critical skill is professional communication, especially in writing. Interns are often asked to contribute briefings, reports, or documentation. Learning how to write clear, concise, and formal reports will make a strong impression and increase the value you provide to your team. In terms of mindset, future interns should embrace initiative, curiosity, and humility. Don’t be afraid to ask questions or get clarification, doing so demonstrates your eagerness to learn. Likewise, be open to constructive feedback, as it is one of the most effective ways to improve. Adaptability is also crucial in a fast-paced and high-stakes environment like the DOJ, where projects can shift rapidly based on new threats or priorities.

Finally, always carry yourself with professionalism and ethical awareness. As a representative of both your university and a government agency, your actions matter. Upholding confidentiality, following policy, and being respectful to all co-workers will build your credibility and make a lasting impression. These habits and preparations can transform a good internship into a truly impactful journey toward a career in cybersecurity.

Conclusion

In conclusion, my internship with the Department of Justice of Executive Office for Immigration Review was a transformative and enlightening experience that significantly strengthened my passion for cybersecurity and affirmed my desire to work within the government sector. This opportunity not only enhanced my technical skillset but also deepened my understanding of cybersecurity operations at a federal level. Through hands-on tasks, real-time threat analysis, and collaborative learning environments, I gained insights that cannot be replicated in the classroom. I now better understand the crucial role government agencies play in protecting national digital infrastructure and the multifaceted approach required to defend against evolving cyber threats.

One of the most valuable lessons I took from this internship is the importance of being proactive, asking questions, seeking feedback, and pushing beyond my comfort zone. These habits enabled me to grow both personally and professionally. I learned that confidence comes not from having all the answers, but from having the courage to learn, adapt, and remain open to continuous improvement. This experience built my professional work ethic, improved my time management skills, and exposed me to a network of passionate, knowledgeable individuals dedicated to cybersecurity and public service. This internship continued my interest in cybercrime investigation and insider threat detection, two areas I want to pursue long-term. Working in a field where my contributions can directly impact on the safety and security of others gave me a renewed sense of purpose.

However, seeing the workings of interagency collaboration helped me understand how critical communication, coordination, and trust are in achieving national security goals. I am more motivated than ever to make the most of my remaining time at Old Dominion University. I plan to continue building my technical skills, pursuing advanced coursework, and preparing for professional certifications such as CompTIA Security+, CEH (Certified Ethical Hacker), or CCCI (Certified Cyber Crimes Investigator). My goal is to transition into a full-time government cybersecurity position, ideally with the Department of Justice, where I can continue contributing to mission-driven work that safeguards the public from digital threats. Overall, this internship has been a defining chapter in my academic and professional journey. It shaped not only my future career path but also the values and goals I will carry with me as I pursue a career dedicated to protecting people, information, and infrastructure in the digital world.

Appendices: Work Samples

Appendix A: Duties during Internship Appendix B: Cybersecurity Risk Assessment Document

Appendix C: CIO CS Weekly Report