RemoteLeaf Logo
Log in Sign up

Application Security Intern

1 week, 2 days ago
United States
Internship
Entry Level
Application Security Engineer
Software Development
Burp Suite CI/CD Docker Git Go Java JavaScript Kubernetes LLM Python
Apply Now
Very Good Security

Very Good Security

VGS is the global leader in payment tokenization, providing security and compliance infrastructure for banks, fintechs, and merchants to manage payment data complexities and accelerate PCI, SOC2, and more compliances.

Internet Software & Services
51-250
Founded 2015
$45M raised
View All Jobs 4

Description

  • Support application security reviews for services, APIs, and new product features across the VGS platform.
  • Identify, validate, and track findings from static analysis, dependency scanning, container scanning, and other security testing tools.
  • Participate in threat modeling and secure design discussions with engineering teams during feature development.
  • Evaluate the security of AI-enabled development workflows and internal AI systems integrated into the SDLC.
  • Manually test and validate web application and API security issues, including access control, authentication, input validation, and secrets handling.
  • Help improve secure SDLC processes by contributing to developer guidance, secure coding resources, and review checklists.
  • Work with engineers to understand remediation options and document security risks and recommendations.
  • Contribute to improving security tooling and guardrails in CI/CD and development workflows.
  • Provide proactive feedback to help build secure products and development practices.

Requirements

  • Currently pursuing a degree in Computer Science, Cybersecurity, Software Engineering, or a related field, or equivalent practical experience.
  • Foundational understanding of application security concepts such as the OWASP Top 10, API security, authentication and authorization, secure coding, and common software vulnerabilities.
  • Ability to read and reason about code in one or more programming languages such as Java, Python, JavaScript, or Go.
  • Familiarity with Git, the software development lifecycle, and basic testing or debugging workflows.
  • Strong interest in secure software design, cloud-native architectures, and automation.
  • Strong written and verbal communication skills for explaining technical issues to security and engineering stakeholders.
  • Curious, collaborative, and eager to learn how security can enable developers.
  • Exposure to LLMs, threat modeling, Burp Suite, SAST/DAST tools, CI/CD pipelines, Docker/Kubernetes, or cloud environments is a plus.
  • Must be legally authorized to work in the United States at the time of hire and throughout employment.
  • Candidates must be located in one of the following states: California, Colorado, Connecticut, Florida, Illinois, New York, North Carolina, Oregon, Texas, Virginia, or Washington.

Benefits

  • $20 per hour compensation.
  • Remote-first work environment.
  • Hybrid schedule available for candidates living within 30 miles of an office location.
  • Flexible work approach that supports work-life balance.
  • Consideration of applicants with arrest and conviction records in accordance with the San Francisco Fair Chance Ordinance.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Bugcrowd

Product Security Engineering Manager

Bugcrowd 1K-5K Internet Software & Services

Bugcrowd is hiring a Product Security Engineering Manager to lead application, platform, and FedRAMP security programs while guiding a distributed team and advancing secure-by-default engineering across the company.

United States Full-time Senior Application Security Engineer
$176k-$242k
AWS Azure CI/CD Cybersecurity Docker GCP Go Java Kubernetes Linux Python Ruby Terraform
17 hours, 9 minutes ago
MongoDB

Senior Product Security Engineer, Server

MongoDB 1K-5K Internet Software & Services

MongoDB is hiring a Product Security professional to strengthen the security of its core database products and customer-facing security features for its Database Server team in Dublin or remotely in Ireland.

Ireland Full-time Senior Application Security Engineer
AWS Azure C++ Encryption GCP MongoDB Penetration Testing Secrets Management
21 hours, 51 minutes ago
MongoDB

Director, Identity & Security Product Management

MongoDB 1K-5K Internet Software & Services

MongoDB is hiring a Director of Identity and Security Product Management in Canada to lead the strategy and roadmap for IAM and security across its Atlas platform, core database, and related services.

Canada Full-time Executive Application Security Engineer Product Manager
$87k-$110k
AWS Azure GCP JIRA Microservices MongoDB Network Security
23 hours, 18 minutes ago
Backblaze

Sr. Software Engineer - Application Security

Backblaze 251-1K IT Services

Backblaze is hiring an Application Security Engineer to strengthen the security of its cloud storage and backup products by embedding application security into new and existing software across a large, distributed stack.

Mexico Colombia Argentina Costa Rica Full-time Senior Application Security Engineer Software Engineer
C C++ Encryption Go HTTP Java JavaScript Linux Node.js Python REST API TypeScript
23 hours, 30 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers