Security Analyst Intern, Open Source Security Team

We are looking for a curious, analytical and detail-oriented Security Analyst Intern to join our team and help us maintain the best open source vulnerability database in the world.

Your Role

In modern software development, much of any project's code relies on open source packages. These are out there in the world, visible for anyone, and within that code there are vulnerabilities. As part of our security team, you'll join us on our mission to continually improve our ability to find these open source vulnerabilities in a programmatic way.

You'll join our interdisciplinary security team, alongside fully dedicated engineers focused on building tools that make your work more effective and have lots of opportunities to learn and grow. This role is particularly well-suited to help you develop a deep understanding of how code works, and over time you'll have the opportunity to work with just about every programming language.

You’ll spend your time:

• triaging and analyzing potential vulnerabilities discovered within open-source dependencies
• deep-diving into the web to answer research questions
• further researching known vulnerabilities to determine characteristics such as severity and exploitability
• using research to verify or disqualify potential vulnerabilities
• exploring and establishing the new abilities we need to develop our product to further  our mission
• communicating with maintainers of open source libraries

You should apply if you:

• are a recent CS or equivalent graduate of an accredited college, university, or coding bootcamp
• are available for a minimum 11-week full-time internship starting on June 6, 2022
• have a passion for security and an interest in the problem space
• have experience answering questions using qualitative or quantitative analysis
• have a general understanding of how code is written
• are comfortable working in a globally distributed team
• love learning new techniques and getting experience in new fields
• are comfortable writing and communicating in English

We’d especially love to hear from you if you:

• have experience triaging vulnerabilities
• Experience in scripting and automating your work (such as python/js)
• Experience querying and analyzing data using SQL techniques
• are excited by Snyk’s mission, open-source, or developer tools

Interested?

Please apply below! We care deeply about the warm, inclusive environment we’ve created and we value diversity - we welcome applications from those typically underrepresented in tech. If you like the sound of this role, but are not totally sure whether you’re the right person, do apply anyway :)

#LI-SO1

About Snyk

Snyk is the leader in developer security. We empower the world's developers to build secure applications and equip security teams to meet the demands of the digital world. Our developer-first approach ensures organizations can secure all of the critical components of their applications from code to cloud, leading to increased developer productivity, revenue growth, customer satisfaction, cost savings and an overall improved security posture. 

At Snyk, we envision an inclusive technology industry powering a more sustainable and secure world. Since our founding, Snykers have cared deeply for one another and the developer and security communities as well as the larger world around us. Learn more about our Snyk Impact social and environmental mission and take action with us here.

Snyk's Developer Security Platform automatically integrates with a developer's workflow and is purpose-built for security teams to collaborate with their development teams. Snyk is used by 1,200 customers worldwide today, including industry leaders such as Asurion, Google, Intuit, MongoDB, New Relic, Revolut and Salesforce.

Snyk is recognized on the Forbes Cloud 100 2021, the 2021 CNBC Disruptor 50 and was named a Visionary in the 2021 Gartner Magic Quadrant for AST.