Security Engineering Intern (AppSec)

About the Role

As a Security Engineering Intern (AppSec), you will be embedded in the application security team at Upstox, working hands-on to identify, assess, and help remediate security vulnerabilities across our web, mobile, and API surfaces.

Responsibilities

• Perform security testing across Web, Mobile, and API surfaces — identify vulnerabilities, understand application flows end-to-end, and recommend effective mitigations.
• Participate in security architecture reviews and threat modelling sessions alongside engineering and product teams.
• Triage and manage vulnerabilities reported through the bug bounty program — assess impact, validate findings, and coordinate remediation with engineering teams
• Write and maintain automation scripts (Python/Golang) to scale security testing and integrate security checks into CI/CD pipelines.

Requirements

• Currently pursuing or completing a Bachelor's/Master's degree in Computer Science, Information Technology, or a related field, with graduation in 2026.
• Solid understanding of web application, mobile application, and API security fundamentals, including OWASP Top 10 for Web, Mobile, and API.
• Hands-on experience performing security testing across web, mobile, and API surfaces — not just finding bugs, but understanding the full application flow