Offer summary

Qualifications:

Currently pursuing a degree in Computer Science, Cybersecurity, or a related field., Familiarity with security testing tools such as Burp Suite, Fiddler, or Wireshark., Understanding of cloud networking concepts including VPC, IP, TCP, DNS, and HTTP., Experience with DevSecOps tools and CI/CD pipelines is a plus..

Key responsibilities:

Participate in securing web applications and APIs by identifying vulnerabilities.

Deploy and maintain DevSecOps tools within CI/CD pipelines.

Implement least-privileged access policies using Hashicorp Vault.

Investigate automated security alerts and maintain audit log pipelines.

Job description

About Super.com

We started Super.com to help maximize lives–both the lives of our customers and the lives of our employees– so that everyone can experience all that life has to offer. For our employees, our promise is that Super.com is more than just a job; it’s an opportunity to unlock one’s potential, where learning is celebrated and impact is realized.

We are more than a fast-paced, high-growth tech company; we care about our people and take career progression seriously. This is your career and our aim is to supercharge it through the people, the work, and the programs that fuel who we are.

About the Role

We are looking for a Security Engineering Intern to join our team. Duties and responsibilities include:

- Participate in securing our product by catching application-level vulnerabilities in our web apps and APIs

- Deploy and maintain DevSecOps tools such as Trivy, Bandit, or GitLeaks as part of our CI/CD pipelines

- Implement least-privileged access policies for our secrets using Hashicorp Vault

- Help investigate automated security alerts

- Implement and maintain audit log pipelines from our internal tools and external vendors

- Work with cutting edge infrastructure tools like AWS, Docker, Kubernetes, Terraform, and Helm

About You

You’ve seen how to take advantage of vulnerable web apps and APIs, and you would like to patch them

You’ve performed testing with some variation of security tooling (whether it be Burp Suite, Fiddler, Wireshark, etc.)

You have excellent knowledge of how networked services in the cloud work: VPC, IP, TCP, DNS, HTTP, etc.

You can use critical thinking skills to determine the impact and severity of the identified vulnerability to our organization

Terraform and Helm

Datadog for logging, monitoring, and alerting

Postgres for storage and Redis for caching

Gitlab for version control and CI/CD

Python, Bash, and Docker for local development workflows and CI/CD jobs

Our Stack

Amazon Web Services

Tens of containerized microservices written in Python and/or JS processing a total of 15k+ requests per second

Kubernetes for deploying services

Infrastructure as Code in Terraform and Helm

Datadog for logging, monitoring, and alerting

Postgres for storage and Redis for caching

Gitlab for version control and CI/CD

Python, Bash, and Docker for local development workflows and CI/CD jobs

We've got you covered

Compensation: we pay our Interns top-of-market

$300 One-time home office set up allowance

$25/Week UberEats allowance on Fridays

$300/Term Learning and Development allowance

$120/Term Fitness/Wellness allowance

Top Talent: work with the best in the world, including Engineers and Leadership from Google, Uber, and more.

Build Something Great: most importantly, build a product used by millions around the world - have ownership, have impact, and do great work.

We Believe in Equal Opportunity

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

Accommodations are available on request for candidates taking part in all aspects of the selection process. If needed, please notify our Talent Acquisition Partner.

Required profile