Intern-Web Application Penetration Tester

Unqork empowers enterprises to accelerate growth by rapidly building, testing, and running AI-powered applications that embody the future of enterprise development. Trusted by the world’s largest organizations in highly regulated industries, these applications become more secure over time while significantly reducing technical debt—allowing businesses to focus on innovation rather than maintenance. Unqork’s customers include Goldman Sachs, Marsh, BlackRock, and the U.S. Department of Health and Human Services.

At Unqork, we value inclusive and innovative thinkers who boldly challenge the status quo. We encourage you to apply!

We are looking to hire an Intern to join our Product Security team .

Title: Intern-Web Application Penetration Tester

Department: Product Security

Reports to: Director, Product Security

Type: Paid Internship $30/hr

We are looking to hire an Intern- Web Application Penetration Tester to join our product security team. This role is designed for rising seniors or a recent college graduate with a strong foundational background in Computer Science or Cybersecurity who wants to transition theoretical knowledge into real-world ethical hacking. In this role, you won't just run automated scanners. You will actively dissect complex web applications, hunt for business logic flaws, and evaluate the security posture of our emerging AI and Large Language Model (LLM) integrations.

What Impact U would make

• Vulnerability Assessment & Pentesting: Assist in conducting manual and automated penetration tests on web application and APIs to identify security vulnerabilities (OWASP Top 10).
• AI/LLM Security Evaluation: Help assess the security of AI-driven features and LLM implementations, checking for vulnerabilities like prompt injection, data poisoning, insecure output handling, and model denial of service (OWASP Top 10 for LLMs).
• Exploitation & PoC Development: Safely demonstrate the impact of discovered vulnerabilities by creating clear Proof-of-Concept (PoC) exploits.
• Documentation & Reporting: Write comprehensive, technical security reports detailing findings, exploitation paths, risk ratings, and actionable remediation steps for development teams.
• Collaboration: Work closely with software engineers to explain security flaws and guide them on secure coding best practices and remediation verification.

What U bring:

• Currently pursuing an undergraduate or graduate degree in Computer Science, Cybersecurity, or a related field.
• Demonstrates a strong interest in cybersecurity and a commitment to staying current on emerging threats, security risks, attack vectors, and industry best practices.
• Possesses exceptional attention to detail and strong organizational skills.
• Excellent written and verbal communication abilities, with the capacity to convey technical information clearly and effectively.
• Confident and comfortable collaborating with peers, cross-functional teams, and management-level stakeholders.
• Proven ability to prioritize and manage multiple responsibilities while working independently in a fast-paced, dynamic environment.

Preferred Traits:

• Curious and proactive problem solver
• Process-oriented with a continuous improvement mindset
• Comfortable working with ambiguity and learning new systems quickly
• Collaborative team player with a strong sense of ownership

Unqork embraces a culture of security and privacy awareness by consistently safeguarding sensitive information, adhering to company policies, and actively participating in training and initiatives to protect our data and the privacy of our stakeholders.

Unqork is an equal opportunity employer. We will consider all qualified applicants without regard to race, color, nationality, gender, gender identity or expression, sexual orientation, religion, disability or age.