SunnyvaleRecruiter Since 2001
the smart solution for Sunnyvale jobs

Vulnerability Research Intern

Company: Yahoo!
Location: Sunnyvale
Posted on: November 17, 2022

Job Description:

It takes powerful technology to connect our brands and partners with an audience of nearly 900 million. Whether you're looking to write mobile app code, engineer the servers behind our massive ad tech stacks, or develop algorithms to help us process trillions of data points a day, what you do here will have a huge impact on our business-and the world. Want in?About YahooIt takes powerful technology to connect our brands and partners with an audience of 1 billion. Nearly half of Yahoo employees are building the code and platforms that help us achieve that. Whether you're looking to write mobile app code, engineer the servers behind our massive ad tech stacks, or develop algorithms to help us process 4 trillion data points a day, what you do here will have a huge impact on our business-and the world.Yahoo is looking for an offensive engineer to become a member of the Offensive Engineering team.
About the TeamThe Offensive Engineering team encompasses the Red Team and Vulnerability Research. Our job is to identify critical vulnerabilities and demonstrate their real world impact through scenario based operations we conduct against the company. Our goal is to catalyze change and improve the security posture of Yahoo to protect our employees and customers.About YouYou've worked with common vulnerability classes and understand how to exploit them whether in CTFs, bug bounties, course work, or your own projects. You should understand common engineering practices and understand common mistakes engineers make. You thrive in open ended projects, enjoy creative problem solving, and are always looking for ways to exploit the assumptions others have made.What you'll do day-to-day

  • Help develop tooling to perform static and dynamic analysis at scale across the entirety of Yahoo's code
  • Design and execute campaigns aimed at discovering vulnerabilities
  • Develop code to prove exploitability of flaws
  • Work with stakeholders to ensure vulnerabilities are remediated by product owners
  • Work with the Product Security team to integrate security analysis into the CI process to stop vulnerabilities from being committed to code basesJob Requirements
    • Experience with reading and writing multiple programming languages (Java, Go, Javascript preferred)
    • Solid understanding of common vulnerability classes with a focus on web, cryptography, logic flaws, and/or memory corruption
    • Ability to identify vulnerabilities and develop exploits against them
    • Ability to clearly explain vulnerability impact and root cause
    • Experience working in Linux and MacOS environmentsBonus Points For
      • Experience building and/or using fuzzers to identify vulnerabilities
      • Experience with SAST tools such as CodeQL and/or Semgrep including writing rules
      • Experience with Docker, Kubernetes, and/or cloud native environments (AWS preferred)Yahoo is proud to be an equal opportunity workplace. All qualified applicants will receive consideration for employment without regard to, and will not be discriminated against based on age, race, gender, color, religion, national origin, sexual orientation, gender identity, veteran status, disability or any other protected category. Yahoo is dedicated to providing an accessible environment for all candidates during the application process and for employees during their employment. If you need accessibility assistance and/or a reasonable accommodation due to a disability, please submit a request via the Accommodation Request Form (www.yahooinc.com/careers/contact-us.html) or call 408-336-1409. Requests and calls received for non-disability related issues, such as following up on an application, will not receive a response.At Yahoo, we know that diversity makes us stronger. We are committed to a collaborative, inclusive environment that encourages authenticity and fosters a sense of belonging. We strive for everyone to feel valued, connected, and empowered to reach their potential and contribute their best. Check out our diversity and inclusion (www.yahooinc.com/diversity/) page to learn more.US Only: Please be aware that Yahoo requires all employees entering a U.S. Yahoo office and/or attending a company event (including client events) are required to be vaccinated for COVID-19. This position will require the successful candidate to obtain and show proof of a vaccination to enter a U.S. Yahoo office and/or attending a company event (including client events). Yahoo is an equal opportunity employer, and will provide reasonable accommodation to those individuals who are unable to be vaccinated consistent with federal, state, and local law.The compensation for this position ranges from $0.00 - $0.00/yr and will vary depending on factors such as your location, skills and experience. The compensation package may also include incentive compensation opportunities in the form of discretionary annual bonus or commissions, in addition to equity incentives. Yahoo provides industry-leading benefits including healthcare, 401K savings plan, company holidays, vacation, sick time, parental leave and an employee assistance program.Currently work for Yahoo? Please apply on our internal career site.

Keywords: Yahoo!, Sunnyvale , Vulnerability Research Intern, Other , Sunnyvale, California

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category
within


Log In or Create An Account

Get the latest California jobs by following @recnetCA on Twitter!

Sunnyvale RSS job feeds