About the Role
Ema is looking for a driven undergraduate or recent graduate with a strong passion for cybersecurity to join as an Intern Security Engineer. This role offers hands-on experience in web and API security, participation in red teaming activities, and support for compliance and governance initiatives.
Key Responsibilities
Perform manual web application and API penetration testing to identify vulnerabilities and assist with red teaming activities.
Assist with governance and compliance operations, including audits and reporting.
Support Static Application Security Testing (SAST) and Software Composition Analysis (SCA).
Collaborate on Identity and Access Management (IAM) tasks.
Monitor compliance requirements, triage security alerts, and support remediation.
Required Skills
Experience with reconnaissance and red teaming tools like Amass, Nmap, ffuf, Nuclei, BeEF, etc. and proficiency with Burp Suite or OWASP ZAP for manual testing.
Strong understanding of web and API security concepts, including OWASP Top 10.
Exposure to bug bounty programs, Capture The Flag (CTF) competitions, or similar challenges is highly valued.
Familiarity with penetration testing workflows and security best practices.
Basic exposure to secure coding practices, SAST, and SCA tools.
Analytical mindset with problem-solving abilities.
Basic knowledge of cloud platforms (e.g., GCP, Azure) and IAM concepts.