About Upstox
Upstox is a leading fintech company that empowers traders and investors through its innovative mobile and web app. We offer a comprehensive suite of asset classes, including Stocks and IPOs, Futures and Options, Commodities, Mutual Funds, Sovereign Gold Bonds, and more upcoming, making us a frontrunner in revolutionizing the trading and investing experience.
Driven by a mission to simplify trading and investing, Upstox aims to make it accessible and affordable for everyone. Through our state-of-the-art, commission-free platform, we empower individuals, from novice investors to seasoned traders, to make informed investment decisions across multiple categories. Our unwavering focus on customer needs and our commitment to providing personalised, powerful tools have fueled our remarkable growth. We've witnessed a surge of 800% in our customer base, from 25,000 in 2017 to 200,000 in 2019, and continued to grow at an exponential rate in 2020, with over 3 million customers entrusting us with their investment decisions. This growth trajectory has propelled us to become an industry leader in India.
Role: Intern - Application Security
Duration - 6 Months
Responsibilities:
- Design, develop, and maintain tools and web applications to automate security tasks and improve security measures across the organization.
- Develop and integrate security automation tools and processes into the CI/CD pipeline to ensure continuous security testing and compliance.
- Review source code for potential security issues
- Develop PoC/exploits for identified vulnerabilities and assist the engineering team in addressing them.
Required skills and experience:
- Development experience in one or more programming languages (e.g., Python, Go, NodeJs)
- Experience in building security tools.
- Good understanding of web application security threats, exploits, prevention (SQL Injection, XSS, CSRF, platform hardening, etc)
- Ability to learn and contribute Application security related activities
- Good communication and presentation skills.
- Ability to influence others without direct managerial authority