Plus
Включить Plus
Назад
Company hidden
12 часов назад

Application Security Intern (Cybersecurity)

3 200$
Формат работы
remote (только USA)/hybrid
Тип работы
fulltime
Грейд
trainee
Английский
b2
Страна
US
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Application Security Intern (Cybersecurity): Supporting application security reviews and improving secure SDLC processes for a payment tokenization platform with an accent on API security and threat modeling. Focus on identifying security vulnerabilities, evaluating AI-enabled development workflows, and documenting remediation options.

Location: Must be based in the US (specifically CA, CO, CT, FL, IL, NY, NC, OR, TX, VA, or WA). No visa sponsorship provided.

Salary: $20 per hour

Company

hirify.global is a leader in payment tokenization, providing secure universal token vaults and data orchestration for banks and fintechs.

What you will do

  • Support application security reviews for services, APIs, and new product features across the hirify.global platform.
  • Identify, validate, and track security findings using SAST, DAST, dependency scanning, and container scanning tools.
  • Participate in threat modeling and secure design discussions with engineering teams during feature development.
  • Evaluate the security of AI-enabled development workflows and internal AI systems integrated into the SDLC.
  • Perform manual testing and validation of web application and API security issues, including access control and authentication.
  • Improve secure SDLC processes by contributing to developer guidance, secure coding resources, and review checklists.

Requirements

  • Currently pursuing a degree in Computer Science, Cybersecurity, Software Engineering, or a related field.
  • Foundational understanding of OWASP Top 10, API security, authentication, and common software vulnerabilities.
  • Ability to read and reason about code in Java, Python, JavaScript, or Go.
  • Familiarity with Git, the software development lifecycle, and basic debugging workflows.
  • Legally authorized to work in the United States without sponsorship.
  • Must reside in one of the following states: CA, CO, CT, FL, IL, NY, NC, OR, TX, VA, or WA.

Nice to have

  • Exposure to LLMs and threat modeling.
  • Experience with Burp Suite, SAST/DAST tools, or CI/CD pipelines.
  • Knowledge of Docker, Kubernetes, or cloud environments.

Culture & Benefits

  • Remote-first philosophy emphasizing flexibility and work-life balance.
  • Hybrid schedule available for those living within 30 miles of office locations.
  • Culture rooted in transparency, collaboration, grit, and humility.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →