RemoteLeaf Logo
Log in Sign up

Application Security Intern

4 weeks, 1 day ago
United States
Internship
Entry Level
Application Security Engineer
Software Development
Burp Suite CI/CD Docker Git Go Java JavaScript Kubernetes LLM Python
Apply Now
Very Good Security

Very Good Security

VGS is the global leader in payment tokenization, providing security and compliance infrastructure for banks, fintechs, and merchants to manage payment data complexities and accelerate PCI, SOC2, and more compliances.

Internet Software & Services
51-250
Founded 2015
$45M raised
View All Jobs 4

Description

  • Support application security reviews for services, APIs, and new product features across the VGS platform.
  • Identify, validate, and track findings from static analysis, dependency scanning, container scanning, and other security testing tools.
  • Participate in threat modeling and secure design discussions with engineering teams during feature development.
  • Evaluate the security of AI-enabled development workflows and internal AI systems integrated into the SDLC.
  • Manually test and validate web application and API security issues, including access control, authentication, input validation, and secrets handling.
  • Help improve secure SDLC processes by contributing to developer guidance, secure coding resources, and review checklists.
  • Work with engineers to understand remediation options and document security risks and recommendations.
  • Contribute to improving security tooling and guardrails in CI/CD and development workflows.
  • Provide proactive feedback to help build secure products and development practices.

Requirements

  • Currently pursuing a degree in Computer Science, Cybersecurity, Software Engineering, or a related field, or equivalent practical experience.
  • Foundational understanding of application security concepts such as the OWASP Top 10, API security, authentication and authorization, secure coding, and common software vulnerabilities.
  • Ability to read and reason about code in one or more programming languages such as Java, Python, JavaScript, or Go.
  • Familiarity with Git, the software development lifecycle, and basic testing or debugging workflows.
  • Strong interest in secure software design, cloud-native architectures, and automation.
  • Strong written and verbal communication skills for explaining technical issues to security and engineering stakeholders.
  • Curious, collaborative, and eager to learn how security can enable developers.
  • Exposure to LLMs, threat modeling, Burp Suite, SAST/DAST tools, CI/CD pipelines, Docker/Kubernetes, or cloud environments is a plus.
  • Must be legally authorized to work in the United States at the time of hire and throughout employment.
  • Candidates must be located in one of the following states: California, Colorado, Connecticut, Florida, Illinois, New York, North Carolina, Oregon, Texas, Virginia, or Washington.

Benefits

  • $20 per hour compensation.
  • Remote-first work environment.
  • Hybrid schedule available for candidates living within 30 miles of an office location.
  • Flexible work approach that supports work-life balance.
  • Consideration of applicants with arrest and conviction records in accordance with the San Francisco Fair Chance Ordinance.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Smartsheet

Senior Security Engineer II, Application Security (Remote Eligible)

Smartsheet 1K-5K Internet Software & Services

Smartsheet is hiring a Senior Security Engineer II to strengthen application security for its global SaaS platform by securing AI-integrated features, expanding security automation, and leading high-impact security reviews.

United States Full-time Senior Application Security Engineer
$175k-$245k
AWS Azure CI/CD GCP GitLab Go Java JavaScript LLM Penetration Testing Python Ruby TypeScript
22 minutes ago
e.l.f. Beauty

Senior Application Security Engineer

e.l.f. Beauty 251-1K Consumer Goods

Senior Application Security Engineer role at a remote marketing and digital commerce company focused on securing applications across the software development lifecycle.

India Full-time Lead Application Security Engineer
Agile AWS Azure CI/CD Cybersecurity DevSecOps GCP HTML JavaScript Penetration Testing Python REST API
21 hours, 42 minutes ago
Binance

Binance Accelerator Program - Blockchain / Smart Contract Security

Binance 5K-10K Capital Markets

Binance is seeking a Binance Accelerator Program participant to support smart contract and blockchain security work, including audits, vulnerability analysis, and risk detection across Web3 systems.

Asia Hong Kong Taiwan Internship Entry Level Application Security Engineer
Blockchain Git Python VS Code
2 days, 1 hour ago
Evolve Security Academy

Senior Application Security Tester & AI Red Team Subject Matter Expert

Evolve Security Academy 11-50 Internet Software & Services

Evolve Security is seeking a senior offensive security specialist to lead complex web, API, and AI red team engagements while defining the firm’s testing methodology for LLM-enabled and agentic systems.

United States Full-time Senior AI (Artificial Intelligence) Application Security Engineer
Bash GraphQL JavaScript JWT Metasploit Nmap OpenID Connect Penetration Testing Postman PowerShell Python REST API SAML SPA TypeScript
3 days, 11 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers