Internship summary
NVISO is a pure-play cyber security consulting firm: our team is composed of security professionals who each have their specific field of expertise, ranging from Information Security Governance, Risk & Compliance to Incident Response, Penetration Testing, CSIRT/SOC, Software Security, and Training & Awareness. This fantastic blend of skills enables us to help organizations prevent, detect, and respond to complex security challenges.

As an SSA intern, you will be working alongside NVISO’s SSA team and play a crucial role in improving our fat/thick client security assessment methodology. This initiative aims to refine our fat client testing processes and enhance reporting capabilities, directly contributing to the quality and expertise of NVISO's cybersecurity assessments.

Responsibilities
• Collaboration: Collaborate with the team to understand our methodology, reporting requirements, and ensure the quality of the reports.
• Framework Development: You will develop a comprehensive framework or toolkit tailored for assessing the security of fat client applications. This involves automating security tests for applications built with technologies such as .NET, C++, C#, and Java.
• Exploit Development: Create Proof-of-Concept exploits for identified vulnerabilities across different technologies. This task will involve simulating attacks to demonstrate potential security risks and validate the effectiveness of the framework.
• Documentation and Reporting: Develop detailed documentation for each identified vulnerability. This includes providing a clear description, assessing the vulnerability severity, and offering remediation advice. Your work will enhance NVISO's reporting capabilities, providing actionable insights to stakeholders.

Output of Internship:
• Gain hands-on experience with a variety of programming languages and security testing tools, while developing your skills in penetration testing and security assessments.
• Develop skills in exploit development and reverse engineering.
• Enhance your technical writing and data analysis capabilities through documentation and reporting tasks.
• Collaborate with experienced cybersecurity professionals to gain valuable insights into security assessment methodologies and penetration testing within a leading cybersecurity company.

Qualifications and skills
• Currently pursuing a bachelor’s degree in Cybersecurity, Computer Science, or a related field.
• Proficiency in programming languages such as Python, Java, or similar languages for automation.
• Familiarity with programming languages such as C++, C#, Java, and/or .NET.
• Demonstrated ability to approach challenges methodically and develop innovative solutions.
• Excellent attention to detail and the ability to ensure accuracy in reporting.
• Willingness to work collaboratively with team members to enhance methodologies and reporting.
• Self-motivated and able to work independently, with the ability to manage time effectively.
• This internship offers an excellent opportunity for the selected candidate to gain hands-on experience penetration testing, vulnerability exploitation, and reporting processes.