Internship
Veracode
501-1,000 employees
Cloud platform for application security assessments
No salary listed
Burlington, MA, USA
The intern must be able to work a 40-hour work week (Monday-Friday) between May 29th- August 23rd, 2024 and reside in a commutable distance to Burlington, MA. They must be legally authorized to work in the United States for any employer without sponsorship now or in the future.
Upload your resume to see how it matches 10 keywords from the job description.
PDF, DOC, DOCX, up to 4 MB
- Familiarity with Java/J2EE language and/or modern web development including JavaScript, AngularJS, Node.js, etc.
- Familiarity with git, modern CI/CD pipelines, python, or .NET
- Actively enrolled in an accredited college/university with an anticipated graduation date between December 2024-May 2026
- Legally authorized to work in the United States for any employer without sponsorship now or in the future
- Assisting development teams with adding and updating automated application security testing (AST) in their CI/CD pipelines
- Tracking and addressing security issues revealed by various forms of application security testing
- Investigating AST policy failures to determine root cause and assisting teams with regaining policy compliance
- Documenting common patterns for sharing with Security Champions and development teams
- Developing, maintaining, and documenting internal libraries that provide common implementations of critical security controls
- Reviewing internally developed code for basic security issues as part of an agile development process
- Working with engineering teams to understand and respond to security advisories in third-party components as part of a Product Security Incidence Response Team
- Completing and evaluating security training materials, including capture the flag style hacking exercises
- Exposure to corporate culture
- Ability to develop skills in a unique industry and gain valuable work experience
Veracode provides application security solutions that help businesses ensure their software is secure from the beginning. Their cloud-based platform has analyzed over 14 trillion lines of code and fixed more than 46 million security issues. Veracode's goal is to integrate security into the software development lifecycle, making it a key part of the development process. They serve over 2,500 clients, including both small startups and large enterprises, by offering tools that scan code for vulnerabilities and provide guidance on how to fix them. Unlike many competitors, Veracode's platform works seamlessly with existing development tools, allowing for security checks to happen at critical stages of development. Their business model is based on subscription fees for access to their platform and consulting services that help organizations build effective security programs.
Company Size
501-1,000
Company Stage
Acquired
Total Funding
$1.7B
Headquarters
New York City, New York
Founded
2006
Simplify's Take
What believers are saying
- Acquisition of Phylum enhances Veracode's capabilities in software supply chain security.
- Growing demand for cloud-based security solutions aligns with Veracode's cloud-native platform.
- Rise of DevSecOps practices supports Veracode's mission to integrate security into development.
What critics are saying
- Integration challenges from Phylum acquisition may disrupt Veracode's platform operations.
- Focus on open-source security might divert resources from other critical security areas.
- New tools like Universal Connector may face adoption challenges, affecting customer satisfaction.
What makes Veracode unique
- Veracode is the only independent provider of cloud-based application security verification services.
- The platform has assessed over 14 trillion lines of code, fixing 46 million flaws.
- Veracode integrates seamlessly with existing development tools, embedding security into the software lifecycle.
Help us improve and share your feedback! Did you find this helpful?
Benefits
Health Insurance
Dental Insurance
Vision Insurance
Wellness Program
Unlimited Paid Time Off
401(k) Company Match
401(k) Retirement Plan
Professional Development Budget
Growth & Insights and Company News
6 month growth
↓ -3%1 year growth
↓ -2%2 year growth
↓ -2%Veracode purchased Denver-area software supply chain startup Phylum, led by a former Air Force computer scientist, to help detect malicious packages in real time.
Veracode has acquired software supply chain security startup Phylum to enhance its protection against malicious open-source code. The acquisition, whose terms were not disclosed, will integrate Phylum's technology to provide comprehensive visibility into open-source code risks. This move aligns with the ongoing trend of cybersecurity vendor consolidation and addresses the growing concern over code security risks from open-source usage.
Veracode acquires Phylum, Inc. technology to transform Software Supply Chain Security.
Veracode, a cloud-based application security platform, has acquired certain Phylum technology assets, including its malicious package analysis, detection and mitigation technology.
Skynet, a decentralised protocol that enables AI agents to access and pay for products and services around the world, announced that it has raised $1.2 million in pre-seed funding with contributions from angel investors from Github, Polygon, Veracode, and Monotype.