Application Security Intern (Cybersecurity)

TL;DR

Application Security Intern (Cybersecurity): Validating security findings and remediating vulnerabilities within the product codebase with an accent on pentesting and vulnerability management. Focus on building automated workflows leveraging LLMs for triage and remediation in Rust, Go, and Python.

Location: Remote (United States or Canada)

Company

hirify.global is a leading cybersecurity company providing unified access management and password security for millions of users and businesses.

What you will do

• Validate security findings from the research community using code analysis and pentesting tools like Burp Suite.
• Collaborate with engineering teams to remediate valid vulnerabilities in the product codebase.
• Manage communications with security researchers and coordinate public disclosures.
• Develop and improve automated workflows for vulnerability triage and remediation using LLMs.
• Work with technical stacks including Rust, Golang, and Python.

Requirements

• Must be based in the United States or Canada.
• Available for a 4-month internship from September to December 2026.
• Strong curiosity regarding software security and pentesting.
• Willingness to take on new challenges and drive them to completion.
• Ability to thrive in a fast-paced, demanding environment and adapt to ambiguity.

Nice to have

• General software development experience, specifically with Rust or Golang.
• Previous experience with Bug Bounty, Vulnerability Management, or Pentesting programs.

Culture & Benefits

• Remote-first environment with occasional travel for team offsites and industry events.
• Generous PTO policy (2.08 days per month).
• Quarterly company-wide wellness days.
• Access to hirify.global University and dedicated learning sessions.
• Peer-to-peer recognition via Bonusly and monthly internship socials.