Product Security Intern
Burlington, MA
Veracode
Veracode's mission is to ensure that software is secure from the start. With our platform you can continuously find and fix security flaws throughout the software development lifecycle. Veracode brings security and development teams together.Product Security Intern
Looking for an Internship in an innovative, high-growth company in one of the hottest segments of the security market? Look no further than Veracode!
The Product Security Intern will work with internal product teams to secure Veracode’s product portfolio. A part of the Security Research organization, the Product Security team's primary charter is to help engineering teams throughout Veracode secure their software.
Key Aspects of the Role:
- Assist development teams with adding and updating automated application security testing (AST) in their CI/CD pipelines
- Assist in tracking and addressing security issues revealed by various forms of application security testing.
- Investigate AST policy failures to determine root cause and assist teams with regaining policy compliance, including:
- Addressing security findings via code fixes and train the team on what the issue was and how to avoid it in the future
- Preparing mitigation proposals
- Debugging and repairing AST in their CI/CD pipelines
- Document common patterns for all the above to share with Security Champions and development teams
- Develop, maintain, and document internal libraries that provide common implementations of critical security controls.
- Review internally developed code for basic security issues as part of an agile development process.
- Work with engineering teams to understand and respond to security advisories in third-party components as part of a Product Security Incidence Response Team.
- Complete and evaluate security training materials, including capture the flag style hacking exercises.
Requirements:
- Familiarity with the Java/J2EE language and/or modern web development including JavaScript (e.g. AngularJS, Node.js, etc.). Familiarity with git, modern CI/CD pipelines, python, or .NET also a plus.
- Actively enrolled in an accredited college/university with an anticipated graduation date between December 2023-May 2025.
- Must be able to work a 40-hour work week (Monday-Friday) between May 31st- August 18th, 2023.
- Must be legally authorized to work in the United States for any employer without sponsorship now or in the future.
Benefits of Internship
- Ability to develop your skills in a unique industry and gain valuable work experience
- Exposure to corporate culture
- Paid Full-Time Summer Internship
Tags: Agile Application security CI/CD Compliance Java JavaScript Node.js Product security Python Veracode
Perks/benefits: Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open IT Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open IAM-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs