Oh oh! Awesome! {$ msg.text $} ({$ msg.count $})

Internship Security Researcher (Unpaid/LIA)

  • Application Deadline: Aug. 31, 2024
  • Stockholm
  • Hybrid
  • Application Deadline: Aug. 31, 2024
  • Stockholm
  • Hybrid

We have entered the summer holiday period which means that many of us are away on vacation and we will therefore be a bit slower to get feedback on your application

The Security Research team

This team is currently composed of security researchers with a focus to make sure that the members of Detectify Crowdsource - our network of ethical hackers - are engaged and enjoying the best possible experience when collaborating with Detectify.

When our hackers submit a vulnerability through our Crowdsource platform, our team builds a module for it and adds it into the Detectify service. By reporting the vulnerability to us, it becomes a security test which is then made available to all our customers – this is how Detectify combines automation and crowdsourcing.

These tests come in various, unique flavors, and are driven by crowdsourced security knowledge. We in the Module development team team are responsible for validating, configuring and executing such tests on our customer’s web applications.

We aim for the best possible scanning performance with comprehensive coverage of possible security issues optimizing for flow, fast feedback and quality. We follow lean and DevOps concepts, aiming to be innovative, helpful, and have a strong sense of ownership for all the things we build.

What you'll get to do

As a Security researcher, your main responsibility will be to validate and implement proof of concepts, uploaded by our Crowdsource and internal researchers, into our scanners. This is a great opportunity to boost you knowledge around hacking and vulnerabilities

Other responsibilities include:

  • Communicate with our internal security researchers in order to gather all necessary information to understand the submitted vulnerabilities.
  • Develop modules from vulnerability reports using JSON-based DSL or Go.
  • Perform code reviews to ensure accuracy and reduce false positives.
  • Consistently review behavior of implemented modules to identify false positives or negatives.
  • Work with continuous automation of module development.

Skills & Requirements

Who you are

We believe that you are a student finishing your last year or maybe even finished, and want to do your learning in practice (LIA) with us here at Detectify for a period of 6 months. You are a highly versatile and self-motivated individual who can create and drive change. You are involved with the security community and understand how vulnerabilities work. You have a strong interest for internet security and you want to engage with an international network of security researchers. Ideally you have some hands on experience of bug bounty or CTF (Capture the flag) or similliar.

So, what do you think?

We are proud to foster an inclusive workplace free from discrimination. We strongly believe that diversity of experience, perspectives, and background will lead to a better environment for our employees and a better product. This is something we value deeply and we encourage everyone to be a part of changing the way the world thinks about security! Go hack yourself!

Location and start date

This position is for the Stockholm office. We offer remote working, with access to our office in central Stockholm. We think you should be able to work from anywhere but for tax reasons we need you to be located in Sweden. We would like you to start in August 2024

Great Place to Work

  • Pension plan

  • 30 days of vacation

  • Wellness grant

  • Paid first sick day (no “karensdag”)

  • Insurance protection in case of long term sickness

  • Gross salary purchases of “work related hardware”

  • Paid phone plan

  • Paid workstation glasses

  • Therapist support

  • Potential for equity

  • Some extra fun! Off sites, afterworks, movie night

  • Parental leave pay

  • One paid workday a year for volunteering

About the company

Started by a group of ethical hackers, Detectify offers cybersecurity solutions that combine human ingenuity with automation. We believe that the fear of cyber threats should never stand in the way of digital greatness.

At Detectify, your opinion and ideas matter. You'll belong to a diverse, dedicated, and forever curious team that recognizes the power of knowledge sharing and challenging the status quo.

Want to know more about what it is like working at Detectify? Visit our career site.

ScreeningWe screen all applications as soon as possible and contact those candidates that are most relevant for the position. We aim to give you feedback on your application as soon as possible.

InterviewOur recruitment process consists of 3 interviews: Recruiter interview is all about getting to know each other! Culture interview: here we focus on two of our core skills, drive & informal leadership. In the skills interview we go deeper on the skills and attributes needed to succeed in the role. For this interview we have some kind of challenge or case study. Final interview will be with someone from our Management team.

OfferFinally it's time to sign the contract and become a Detectifier!

Kristoffer Jaworska Persson | Contact Person

I'm interested

Stockholm | Hybrid
Visit website