White-box Vulnerability Assessment for Web Services by LY Corporation

JD Code: SEC-4-2

Course Name

Security Engineer course

*You can choose from the above courses as the department (position) in which you would like to work.

Job Details

You will engage in practical security engineering tasks through security testing and threat analysis.

• Security Testing: Utilize techniques such as Black Box testing, White Box testing, and Code Auditing to identify vulnerabilities in the services provided.

• Vulnerability and Threat Analysis: Identify weaknesses in internally developed services using various methods, collaborate with the development team to apply appropriate patches, and evaluate and address potential threats from externally obtained vulnerability information.

• Research on Emerging Threats: Conduct research activities to explore new threats to the company and contribute to enhancing security.

Required Experience/Skills

• Understanding of vulnerabilities related to the OWASP Top 10
• Basic knowledge of the following programming languages:
  • Examples: Python, Java, JavaScript, C/C++, Go, Ajax

Preferred Experience/Skills

• Basic understanding of web and network-related technologies (e.g., HTTP, TLS, REST API, authentication/authorization)
• Experience in security-related activities (e.g., CTF competitions, personal projects, research, study for certifications)
• Basic knowledge of cloud and container technologies
  • Examples: Basic knowledge of cloud security in AWS, Azure, GCP, and basic knowledge of Docker or Kubernetes environments

Duration of the Internship

18/8/2025 ~ 12/9/2025 (4weeks)

*The duration is negotiable.
*In principle, 5 days a week, excluding Saturdays, Sundays, and public holidays.
*The standard working hours are from 10:00 to 18:45, including a 1-hour break.
*Details will be discussed and determined upon join.

Internship Format & Location

Hybrid

*This internship will follow a hybrid working style, primarily remote with some in-office work.
*Details will be discussed with the host organization (position) upon join.
*The office location for in-office attendance for this position is the Kioicho Office.

Compensation

• Hourly wage of 2,600 yen
  
• Provision of a PC
• Reimbursement for transportation and accommodation costs when commuting to the office (with a cap)*

*If eligibility criteria are met

Application Requirements

• Currently enrolled students without any full-time employment experience (excluding high school students)
• Individuals who already possess a work visa for Japan
• Those with a network environment at home suitable for work
• Individuals residing in Japan during the internship period

Selection Steps

• Step1

  Course selection

  From April 15th（Monday）to May 19th（Monday）10:00
• Step2

  Coding test

  From May 19th（Monday）to May 26th（Monday）10:00
• Step3

  Interview

  Mid-June
• Step4

  Notification of results

  Mid-July

*Your preferred department (position) will be confirmed at the time of the test.
*Interviews at the desired department (position) will be arranged based on the test results and your preferences.

Application Deadline

19/5/2025 10:00

*The coding test will be distributed after the deadline.

Notes

• When submitting the web test, you will be asked to provide multiple answers for your desired JD (position).
• You can only apply for multiple positions within the same course.
• If you wish to change the course you have selected, please contact us via My Page by 10:00 on May 20th (Monday).