Key skills
Burp SuiteRustGolangPythonVulnerability ManagementBug Bounty ProgramsPenetration TestingCode Analysis Tooling
About this role
1Password is a leading cybersecurity company focused on building a secure digital future. They are seeking a Security Engineer Intern to support their Application Security team by validating security findings, collaborating with engineering teams, and enhancing security tooling and workflows.
Responsibilities:
- Validate incoming security findings from the broader research community using code analysis tooling or other industry standard pentesting tooling e.g. burpsuite
- Work with engineering teams to remediate valid findings in our codebase (product). Respond to security researchers, help with public disclosure
- Build or improve upon new automated workflows and tooling, leveraging LLMs for vulnerability triage, validation, remediation in any of rust, golang, python, etc
Requirements:
- Confidence: A willingness to take on new challenges, and see them through to completion
- Humility: You're not afraid to ask 'stupid' questions and make mistakes (as long as you learn from them)
- Curiosity: You look for better ways of doing things, even if everyone seems happy with how they are
- Teamwork: We work together, and succeed as a team!
- Validate incoming security findings from the broader research community using code analysis tooling or other industry standard pentesting tooling e.g. burpsuite
- Work with engineering teams to remediate valid findings in our codebase (product). Respond to security researchers, help with public disclosure
- Build or improve upon new automated workflows and tooling, leveraging LLMs for vulnerability triage, validation, remediation in any of rust, golang, python, etc
- Software development experience in general, bonus points for rust, golang experience
- Previous experience working with any of Bug Bounty, Vulnerability Management or Pentesting programs at a Software Development or Software Security organization