Application Security Engineer - Internship
SeatGeek
New York, NY, USA
USD 55-55 / hour
Posted on Nov 2, 2024
SeatGeek believes live events are powerful experiences that unite humans. With our technological savvy and fan-first attitude we’re simplifying and modernizing the ticketing industry.
SeatGeek is looking for an Application Security Engineering Intern to join our Security team. As an intern in AppSec, you’ll focus on securing our applications by conducting threat assessments, bug hunting, code reviews, and assisting in red teaming activities.
You’ll join a team leading a proactive application security program focused on securing SeatGeek’s development life cycle. Emphasizing early detection, automated remediation, and structured security reviews, we aim to create a secure-by-default environment across our applications. Collaborating closely with developers, you’ll play a key role in future-proofing our security practices by enhancing CI/CD scans, conducting architecture and code reviews, and building tools to integrate security throughout the organization. This role will empower you to drive meaningful impact, strengthening SeatGeek’s overall security posture for the long term.
What you'll do
- Collaborate with engineering teams to provide security guidance on new products and technologies
- Assist in threat modeling and architecture reviews for upcoming features and products
- Participate in regular security assessments through basic penetration testing and code reviews of SeatGeek products
- Learn and promote secure coding practices by working closely with developers.
- Participate in Purple team (Red team / Blue team) exercises
- Actively participate in enhancing the Application Security Program, sharing ideas to shape its future
What you have
- You’re graduating in Spring 2026
- Proficiency in two or more programming languages (Python, C#, Go) and a solid grasp of coding and code review (yes, there’s a coding interview).
- Ability to think like an attacker when securing applications, using that mindset to identify potential vulnerabilities and drive meaningful improvements in code security and defensive measures.
- Understanding of secure software development practices, threat modeling, and knowledge of common security vulnerabilities (like OWASP Top Ten).
- Experience contributing to the security community (public research, blogging, presentations, etc.)
- (Preferred) Experience or strong interest in automating security tasks and scaling security processes through tooling.
- (Preferred) Familiarity with modern architectures, including microservices, Kubernetes, AWS, and other cloud technologies.
- (Preferred) Regularly participate in CTF, bug bounty hunting, and hackathons (bonus points if you share your Bugcrowd/HackerOne/HackTheBox profiles)
Perks
- $120 a month to spend on tickets to live events
- Monthly commuter card for transportation
- Subscription to Headspace
- Free lunch & snacks is provided every day in the office
- Weekly planned events like comedy/broadway shows, sports games, museum visits and more
- Housing stipend
**Please note you are expected to come into the SeatGeek New York City Office at least 3 days a week**
The compensation for this role is $55/hour US (based on a 40 hour work week).
SeatGeek is committed to providing equal employment opportunities to all employees and applicants for employment regardless of race, color, religion, creed, age, national origin or ancestry, ethnicity, sex, sexual orientation, gender identity or expression, disability, military or veteran status, or any other category protected by federal, state, or local law. As an equal opportunities employer, we recognize that diversity is a positive attribute and we welcome the differences and benefits that a diverse culture brings. Come join us!
To review our candidate privacy notice, click here.