Intern - Security analyst

Preferred Candidates :

• Experience : 0 - 2 years
• Bug Hunting & Pentesting experience is a must
• Duration : 3-6 months
• Stipend : 8 - 12k for first 3 months
• With a pre-placement opportunity for FTE

Key responsibilities:

• Work on security assessment VAPT of different web/android applications from diverse sectors.
• Proactively maintain, monitor and improve our systems and security posture with a focus on service excellence
• Create and implement automation solutions to enhance security and reduce manual effort.
• Collaborate with other security professionals to ensure the protection of the organization's information systems, data, and network infrastructure.
• Triage vulnerability reports on bug bounty programs and take it to resolution within the defined SLAs.
• Work on staying up-to-date with the latest security threats and vulnerabilities, and recommend security improvements.
• Good communication skills to organize and lead security awareness training sessions.
• Real life social engineering simulation campaigns with the organizations.

What To Bring:

In-depth knowledge of security vulnerabilities not just limited to OWASP Top 10

• Experience with pentesting Hack the box & try hack me platforms.

Experience in doing security assessments on web applications, Android and iOS mobile applications.

Experience in using the security tools to carry out manual & automated security assessments

Experience working with common product flows like payment gateway integration, authentication etc.

Knowledge of how applications work end-to-end which may help in multiple scenarios.

Basic knowledge & understanding of Python, Java, PHP, C, C++, SQL, Javascript, Ruby, NodeJS, Go etc. is a huge plus

Passion for security, and a practical and balanced approach to security issues

Ability to visualize the root cause and deep dive

Curiosity in knowing how things work in different conditions

Independent, self-motivated and comfortable working in a fast-paced environment with teams ranging from product to engineering teams.

Exceptional interpersonal verbal and written skills in English.

Ability to document risks, security controls and evidence to ensure compliance

Who are we?

Apni Sec aims to deliver a Security as a Service (SECaaS) offering with different solutions consolidated on a centralized dashboard (a one-stop-shop for all your security needs). With the fast evolving needs of the world and rapid development within an organization, it becomes harder for the teams to deliver their flagship offerings to clients both securely and seamlessly. Apni Sec team comprises passionate security researchers and certified white hat hackers to protect organizations' data from attackers by detecting, investigating, and responding to cyber-threat. The main motto for ApniSec is to work hand-in-glove with the business, to enable them to still deliver their digital ambition without compromising on the security of their product and also of their stakeholders. This ensures that the business can build a digital info system vested in innovation, security & trust.

Our Values

We are audacious in vision and action

We encourage honesty and open dialogue

We respect everyone and every point of view

We make objective and data-driven decisions

We believe trust and accountability go hand-in-hand

We invest in each other's growth

We bring our A-game and nothing else

We take charge and get it done

Perks

• The glory. Almost too much responsibility and ownership of projects.
• A ticket on our rocket ship to the moon.