[Remote] Junior Application Security Engineer Internship

Note: The job is a remote job and is open to candidates in USA. EncryptEdge Labs is offering a Junior Application Security Engineer Internship Program that provides a hands-on learning experience focused on securing modern applications. Interns will engage in challenges covering application security areas, gaining practical expertise in identifying vulnerabilities and implementing secure development practices.

Responsibilities

• Learn and implement secure software development practices
• Conduct Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST)
• Perform vulnerability assessments and penetration testing on web and mobile applications
• Identify and mitigate OWASP Top 10 and CWE vulnerabilities
• Collaborate on securing APIs, databases, and cloud-based applications
• Complete a final capstone project to secure a mock application and present findings
• Write detailed security assessment reports, including remediation recommendations

Skills

• A strong passion for application security, secure coding, and ethical hacking
• Detail-oriented mindset with the ability to analyze and identify vulnerabilities in web and software applications
• Exceptional documentation and reporting skills, capable of clearly articulating findings and remediation steps
• Strong communication and collaboration skills, especially when working with developers and security teams
• Consistent commitment to meeting deadlines and maintaining a high standard of work
• Understanding of web technologies and architectures (HTML, CSS, JavaScript, APIs, databases)
• Basic familiarity with network protocols (HTTP/HTTPS, DNS, TCP/IP) and operating systems (Windows/Linux)
• Awareness of the OWASP Top 10 and common web vulnerabilities
• Foundational understanding of web application vulnerabilities such as SQL injection, XSS, CSRF, and insecure deserialization
• Ability to perform basic vulnerability scanning, manual testing, and input validation assessments
• Understanding of secure software development lifecycle (SDLC) and DevSecOps concepts
• Knowledge of ethical and legal standards in web security testing
• Access to a dedicated computer and a reliable internet connection
• Ability to set up and maintain a secure testing environment
• A degree in Computer Science, Software Engineering, or Information Security is preferred but not mandatory
• Demonstrated self-learning through certifications, projects, or participation in bug bounty programs, CTFs, or online labs
• Practical exposure to web security labs, CTF challenges, or bug bounty platforms (e.g., HackTheBox, TryHackMe, PortSwigger Labs)
• Personal or academic projects demonstrating an understanding of application security or secure coding practices
• Experience with tools such as Burp Suite, OWASP ZAP, and Nikto for web application testing
• Experience with Kali Linux, Nmap, and Metasploit (for reconnaissance and exploitation)
• Basic scripting ability in Python, JavaScript, or Bash for automation and testing

Benefits

• Hands-on Experience: Gain practical knowledge and skills in network security, including traffic monitoring, intrusion detection, firewall configuration, and advanced cybersecurity practices.
• Professional Development: Receive guidance on career development and opportunities to build a portfolio through real-world challenges and presentations.
• Global Exposure: Participate in a global internship program, connecting with cybersecurity professionals from worldwide.
• Certificate of Completion: Earn a certificate of completion at the end of the internship, demonstrating your proficiency in network security engineering.
• Letter of Experience: Interns who successfully complete the program will also receive a letter of experience, outlining the skills and competencies developed during the internship.
• Letter of Recommendation: Outstanding interns will receive personalized letters of recommendation from EncryptEdge Labs.
• Remote Learning: Enjoy the flexibility of a remote internship that allows you to work from anywhere.
• Mentorship: Access support from experienced mentors and cybersecurity experts throughout the internship.
• Job Opportunities: Top-performing interns may be recommended for job placements through our network of partners and clients, helping you advance your career in network security.

Company Overview