Internship Security Researcher (Unpaid/LIA)

at  Detectify AB

We have entered the summer holiday period which means that many of us are away on vacation and we will therefore be a bit slower to get feedback on your application
The Security Research team
This team is currently composed of security researchers with a focus to make sure that the members of Detectify Crowdsource - our network of ethical hackers - are engaged and enjoying the best possible experience when collaborating with Detectify.
When our hackers submit a vulnerability through our Crowdsource platform, our team builds a module for it and adds it into the Detectify service. By reporting the vulnerability to us, it becomes a security test which is then made available to all our customers – this is how Detectify combines automation and crowdsourcing.
These tests come in various, unique flavors, and are driven by crowdsourced security knowledge. We in the Module development team team are responsible for validating, configuring and executing such tests on our customer’s web applications.
We aim for the best possible scanning performance with comprehensive coverage of possible security issues optimizing for flow, fast feedback and quality. We follow lean and DevOps concepts, aiming to be innovative, helpful, and have a strong sense of ownership for all the things we build.
What you’ll get to do
As a Security researcher, your main responsibility will be to validate and implement proof of concepts, uploaded by our Crowdsource and internal researchers, into our scanners. This is a great opportunity to boost you knowledge around hacking and vulnerabilities

-
Communicate with our internal security researchers in order to gather all necessary information to understand the submitted vulnerabilities.
-
Develop modules from vulnerability reports using JSON-based DSL or Go.
-
Perform code reviews to ensure accuracy and reduce false positives.
-
Consistently review behavior of implemented modules to identify false positives or negatives.
-
Work with continuous automation of module development.
Who you are
We believe that you are a student finishing your last year or maybe even finished, and want to do your learning in practice (LIA) with us here at Detectify for a period of 6 months. You are a highly versatile and self-motivated individual who can create and drive change. You are involved with the security community and understand how vulnerabilities work. You have a strong interest for internet security and you want to engage with an international network of security researchers. Ideally you have some hands on experience of bug bounty or CTF (Capture the flag) or similliar.
So, what do you think?
We are proud to foster an inclusive workplace free from discrimination. We strongly believe that diversity of experience, perspectives, and background will lead to a better environment for our employees and a better product. This is something we value deeply and we encourage everyone to be a part of changing the way the world thinks about security! Go hack yourself!
Location and start date
This position is for the Stockholm office. We offer remote working, with access to our office in central Stockholm. We think you should be able to work from anywhere but for tax reasons we need you to be located in Sweden. We would like you to start in August 2024
Started by a group of ethical hackers, Detectify offers cybersecurity solutions that combine human ingenuity with automation. We believe that the fear of cyber threats should never stand in the way of digital greatness.
At Detectify, your opinion and ideas matter. You’ll belong to a diverse, dedicated, and forever curious team that recognizes the power of knowledge sharing and challenging the status quo.
Want to know more about what it is like working at Detectify? Visit our career site