IT Security and Governance Intern (Ascend Money)

FINTECH
location_on Bangkok

About the role

To acquire practical experience and in-depth knowledge in the field of cybersecurity through a hands-on internship program, focusing on the implementation of security measures, security assessment, threat mitigation, and incident response, with the goal of enhancing the skills and expertise to contribute effectively to the organization’s security posture and advance the career in the cybersecurity industry.

We will provide the excellent hands-on learning experience, work experience opportunities to intern, and may even help interns clarify their career goals. We provide the internship as a part of an Information security project and have learned a lot about the Information Technology field. In some cases, this has also included programming with people who are in related career fields.

Description

  • Security Testing: The intern will be responsible for conducting comprehensive security testing on various applications, systems, and networks within the organization. This includes performing vulnerability assessments, penetration testing, and identifying potential weaknesses in the security infrastructure to ensure the highest level of protection against potential threats.
  • Security Script Automation Development: The intern will be tasked with developing and implementing automation tools and processes to streamline and enhance the organization’s security operations. This includes the creation of scripts, templates, and custom tools for automating routine security tasks, such as vulnerability scanning, patch management, and incident response.
  • Collaboration with IT  Security  Teams: The intern will work closely with IT Security departments within the organization to ensure a coordinated approach to security to incorporate security best practices into their workflows.
  • Continuous Learning and Skill Development: The intern will be encouraged to stay up-to-date with the latest trends, tools, and techniques in the cybersecurity industry, and to pursue relevant certifications and professional development opportunities to further enhance their skills and expertise.
  • Conduct Security Testing: Perform vulnerability assessments, penetration testing, and security audits on applications, systems, and networks to identify potential weaknesses and recommend appropriate mitigation measures.
  • Develop Security Automation Solutions: Create and implement automation tools, scripts, and templates to streamline and improve the efficiency of the organization’s security operations, including vulnerability scanning, patch management, and incident response. 
  • Develop Comprehensive Reports: Create comprehensive written reports that detail the findings from security testing activities, highlighting key areas of concern, potential impacts, and suggested remediation actions. 
  • Prepare and Deliver Presentations: Develop engaging and informative presentations to communicate security testing findings and recommendations to relevant stakeholders.

Qualifications

  • A positive, can-do attitude, who naturally expresses a high degree of empathy to others.
  • Study in Computer Science or Computer engineering.  We are more interested in passion for technology and what you are capable of, than we are academic qualifications.
  • Knowledge in building mission critical applications from scratch and decomposing monolithic applications into smaller services.
  • An intern with good English skills in reading, writing, and speaking for effective communication in a professional setting
  • Knowledge with a broad mix of technologies, including a strong subset of:
    • Core Java 8,9, Python, Spring Boot, Spring Cloud,
    • MySQL, PostgreSQL, EnterpriseDB
    • API Gateway
    • Linux
    • CI/CD (Jenkins, Git)