Security Research Intern

At F5, we strive to bring a better digital world to life. Our teams empower organizations across the globe to create, secure, and run applications that enhance how we experience our evolving digital world. We are passionate about cybersecurity, from protecting consumers from fraud to enabling companies to focus on innovation. 
 

Everything we do centers around people. That means we obsess over how to make the lives of our customers, and their customers, better. And it means we prioritize a diverse F5 community where each individual can thrive.

At F5, we make apps faster, smarter, and safer. Come work within the security threat research group in an exciting, fast paced environment. Our team is performing the analysis of the latest security threats, detection and mitigation of our security solutions, as well as pen testing of F5 products. The team works in an intensive environment, and is constantly updated with the latest modern technologies. Come and join the best in their field!

Position Summary:
Being a part of a highly experienced Security Research team, while specializing in web vulnerabilities analysis, threat intelligence and Honeynet projects. The team is handling the research of vulnerabilities and malware, evolving threats analysis, development and updates of attack signatures and product-hacking.

Responsibilities:
•  Conduct research on web frameworks and servers to identify emerging threats.
•  Assist in analyzing newly published web application vulnerabilities and attempting their reproduction.
•  Learn and contribute to WAF (Web Application Firewall) evasion techniques.
•  Participate in innovating proof of concept solutions for sophisticated threats.
•  Collaborate with development teams to enhance the WAF product based on research findings.
•  Gather intelligence from blogs, forums, conferences, and academic papers related to web security.
•  Support the development of tools and infrastructure for attack analysis.
•  Assist in creating content for blogs and reports on security research findings.

Knowledge, Skills, and Abilities:
•  Intermediate knowledge of web exploitation, web attacks, and their analysis.
•  Fundamental understanding of networking, HTTP protocol, web servers, and web applications.

•  Fundamental understanding of Regular Expressions.
•  Interest in monitoring and understanding web vulnerabilities.
•  Familiarity with security principles, theories, and attack vectors.
•  Experience in developing research infrastructure and tools in Python - Advantage.
•  Experience in attack signatures crafting (e.g. SNORT) - Advantage.
•  Experience in binary malware and analysis of malicious scripts - Advantage.
•  Experience in web development (front/back end) - Advantage.

Qualifications:
•  3rd / 4th-year students toward an academic degree in computer/engineering related field or equivalent work experience.
•  The duration of the internship is 1,040 hours. The candidate must be available to start immediately and should be able to work a minimum of 20 hours per week up to 100 hours per month.

#LI-SS5

#LI-Hybrid

The Job Description is intended to be a general representation of the responsibilities and requirements of the job. However, the description may not be all-inclusive, and responsibilities and requirements are subject to change.

Please note that F5 only contacts candidates through F5 email address (ending with @f5.com) or auto email notification from Workday (ending with f5.com or @myworkday.com).

Equal Employment Opportunity

It is the policy of F5 to provide equal employment opportunities to all employees and employment applicants without regard to unlawful considerations of race, religion, color, national origin, sex, sexual orientation, gender identity or expression, age, sensory, physical, or mental disability, marital status, veteran or military status, genetic information, or any other classification protected by applicable local, state, or federal laws. This policy applies to all aspects of employment, including, but not limited to, hiring, job assignment, compensation, promotion, benefits, training, discipline, and termination.  F5 offers a variety of reasonable accommodations for candidates. Requesting an accommodation is completely voluntary. F5 will assess the need for accommodations in the application process separately from those that may be needed to perform the job. Request by contacting accommodations@f5.com.