White-box Vulnerability Assessment for Web Services by LY Corporation

JD Code: SEC-6-94

Course Name

Security Engineer course

*You can choose from the above courses as the department (position) in which you would like to work.

domain

Security

Job Description

You will engage in practical security engineering tasks through security testing and threat analysis.

• Security Testing: Utilize techniques such as Black Box testing, White Box testing, and Code Auditing to identify vulnerabilities in the services provided.
• Vulnerability and Threat Analysis: Identify weaknesses in internally developed services using various methods, collaborate with the development team to apply appropriate patches, and evaluate and address potential threats from externally obtained vulnerability information.
• Research on Emerging Threats: Conduct research activities to explore new threats to the company and contribute to enhancing security.

Required Experience / Skills

• Understanding of vulnerabilities related to the OWASP Top 10
• Basic knowledge of the following programming languages: Examples: Python, Java, JavaScript, C/C++, Go, Ajax

Desired Experience / Skills

• Basic understanding of web and network-related technologies (e.g., HTTP, TLS, REST API, authentication/authorization)
• Experience in security-related activities (e.g., CTF competitions, personal projects, research, study for certifications)
• Basic knowledge of cloud and container technologies (Basic knowledge of cloud security in AWS, Azure, GCP, and basic knowledge of Docker or Kubernetes environments)

Duration of the Internship

3/8/2026 ~ 11/9/2026 (6weeks)

*In principle, 4 days a week, excluding Saturdays, Sundays, and public holidays.
*The standard working hours are from 10:00 to 18:45, including a 1-hour break.
*Details will be discussed and determined upon join.

Internship Format & Location

Hybrid

*In principle, 3 days of office attendance per week is standard (negotiable).
*The frequency of office attendance may change depending on your residential area (e.g., if commuting expenses exceed the payment limit, etc.).
*Details will be discussed with the host organization upon passing the selection process.

Office Location

Akasaka Office (Tokyo)

*If more than one office is listed, the location will be determined based on the job description, your residential area, etc.
*Details will be discussed with the host organization upon passing the selection process.

Benefits

• Hourly wage: 2,600 JPY
• PC lending
• Commuting and accommodation expenses for office visits provided (Subject to conditions/limits)

Requirements for Application

• Currently enrolled in school and have no experience working as a full-time employee (excluding high school students)
• Possess eligibility to work in Japan
• Have a network environment at home suitable for performing work
• Residing in Japan during the internship period

Selection Process

• Step1

  Course selection

  April 15 (Wed) – May 25 (Mon), 10:00
• Step2

  Coding test

  May 25 (Mon) – June 1 (Mon), 10:00
• Step3

  Interview

  From early June
• Step4

  Notification of results

  Mid-June – Early July

*Your preferred position(s) will be confirmed at the time of the Web Test.
*Interviews will be arranged for the designated position(s) based on the Web Test results and your preferences.

Application Deadline

May 25, 2026, 10:00 AM

※The Web Test will be distributed after the deadline (Examination period: 1 week).

Notes

• When submitting the Web Test, you will be asked to select and answer for multiple preferred positions.
• You may apply for multiple positions only within the same course.
• You can update your survey responses via My Page until 10:00 AM on Monday, May 25.