Security and Resilience Industrial Placement Review

My role focuses on supporting the protection of sensitive information and helping to reduce the risk of data breaches, whether accidental or intentional, by internal users. Monitoring and Analysis: I assist in reviewing alerts generated by DLP tools to identify potential data exfiltration or policy violations. This involves analysing user activity and understanding - context to determine whether an alert is a false positive or a genuine risk.
This involved tasks such as:
- Policy Review and Tuning
- Insider Risk Management
- Automation and Scripting

At the start of my placement, I joined the operations side of the team, where my primary responsibilities included:
- Managing Security Mailboxes: I monitored and triaged emails sent to the team’s shared mailboxes, helping to identify and escalate potential security concerns or user queries related to data loss.
- Context Monitoring: I reviewed alerts generated by DLP tools, assessing the context of user activity to determine whether it posed a risk. This involved analysing data movement, user behaviour, and policy triggers to support accurate decision-making.
As I gained experience, I transitioned into a more engineering-focused role, where I took on more technical and investigative tasks, including:
- Rule Tuning: I worked on refining DLP rules and policies to reduce false positives and improve detection accuracy. This involved analysing alert patterns and collaborating with stakeholders to ensure rules aligned with business needs.
IT Faults and Security Incidents: I supported the investigation and resolution of technical issues and security incidents, helping to identify root causes and implement corrective actions.
- Exception Management: I assisted in reviewing and processing exception requests, ensuring that any deviations from standard security policies were justified, documented, and appropriately risk-assessed.
This progression allowed me to build a strong foundation in both the operational and engineering aspects of information security, giving me a well-rounded understanding of how DLP functions within a large organisation.

I have significantly expanded both my technical and professional skill set. I learned to use Trellix ePolicy Orchestrator (ePO) to monitor and manage endpoint security policies across the organisation, gaining insight into how large-scale security infrastructure is maintained. I also developed proficiency in Microsoft Power Automate, creating automated workflows to streamline repetitive tasks and improve operational efficiency.
Working with Microsoft Purview and Defender for Endpoint gave me hands-on experience with enterprise-grade tools for data classification, compliance, and endpoint threat detection. I became familiar with ServiceNow, using it to track incidents, manage tasks, and document investigations, an essential part of working in a structured security operations environment.
In addition, I enhanced my Python scripting skills by contributing to automation and data analysis tasks, which helped me understand how scripting can support security operations. I also deepened my understanding of information security classifications, learning how data is categorised and protected based on sensitivity and regulatory requirements. Finally, I gained practical experience in insider threat detection, learning how behavioural indicators and technical controls are used to identify and mitigate internal risks.

Throughout my placement, I received outstanding support from both my co-workers and team leads. From day one, the team created a welcoming and inclusive environment where I felt comfortable asking questions and seeking guidance. My colleagues were always willing to share their knowledge which helped me quickly get up to speed with the tools and processes.

One of the most impactful aspects of my placement at Nationwide has been experiencing its strong, inclusive culture and unwavering commitment to putting members first. From day one, I felt welcomed and valued as part of the team, regardless of my level of experience. This inclusive environment fosters collaboration, openness, and respect, which are reflected in how teams work together and support one another.

I’ve thoroughly enjoyed my day-to-day responsibilities during my placement. The work has been engaging, meaningful, and well-aligned with my interests in cybersecurity and information protection. I’ve particularly appreciated the opportunity to work closely with a supportive and knowledgeable team, where collaboration and shared learning are part of the daily routine. This positive team dynamic made it easy to contribute, ask questions, and grow in confidence.
However, I found the Social Impact project to be less relevant to my role and personal interests. While I understand and respect the intention behind encouraging community-focused initiatives, the project felt somewhat disconnected from the technical and security-focused nature of my placement. As a result, it was more difficult to stay engaged with that aspect of the programme compared to the core responsibilities I was genuinely passionate about.

Yes