Application Security Intern

Aspire is the leading all-in-one finance operating system for growing businesses in APAC We are on a mission to reinvent business finance for a new generation of entrepreneurs and business owners empowering startups and MSME to realise their full potential Founded in 2018 Aspire has raised over USD 300M across equity and debt from world-class investors In 2023 we successfully closed an oversubscribed USD 100 million Series C equity round led by Sequoia Capital and Lightspeed Ventures with participation of Tencent Paypal Ventures LGT Capital Partners Picus Capital and MassMutual Ventures To power our solutions we have partnered with some of the best companies in the world such as Visa and Wise and helped more than 50 000 businesses using our suite of products For 2 consecutive years in 2022 2023 Aspire has been awarded Best Employer of the Year and Startup of the year by Asia FinTech Awards and also LinkedIn s Top Startup in Singapore In 2023 we also made it to CB Insights Top 100 Global Fintech List You will be amazed by the energy and experience of our team Aspire serves as an environment for you to innovate and drive change with our team of ex-entrepreneurs ex-founders and high-achievers with international and diverse backgrounds Are you a top talent who is passionate about entrepreneurship Join our rapidly growing team to make an impact in the fintech space About the team At Aspire we recognize that data and infrastructure security are paramount to the success and trust of our customers Our Security Team is at the forefront of protecting and securing our systems ensuring compliance with industry best practices and continuously learning and evolving to stay ahead of emerging threats Our emphasis extends to data privacy seamlessly integrating it into our security initiatives About the role Assist development teams in implementing penetration tests as part of the Secure Software Development Life Cycle Secure SDLC Conduct security assessments for both web and mobile applications using tools such as Burp Suite Work closely with the Engineering team to identify and resolve security issues and suggest appropriate fixes Minimum qualifications Proficiency with penetration testing tools and frameworks e g Burp Suite SQLMap Strong understanding of common attack vectors network protocols and web application security principles Solid background in penetration testing and offensive security Good understanding of the Software Development Life Cycle SDLC and the ability to embed security early in the development process Expertise in bug bounties and Capture The Flag CTF competitions is a must Preferred qualifications Relevant certifications such as OSCP OSCE OSWE or OSEP are highly preferred A good understanding of Git and mobile application testing tools like Drozer MobSF Frida apktool dex2jar and jadx Communicate effectively with a variety of internal teams be self-driven and take the initiative What we offer Uncapped flexible annual leave Hybrid work arrangement Training subsidy for your professional growth Wellness benefit Team bonding budget to foster collaboration and sense of belonging Flexibility to work from anywhere for up to 90 days per annum Culture is Key We always strive to cultivate a special culture that brings special talents together - You can learn more about our culture on our and Equal Opportunity StatementAspire is an equal opportunity employer and is committed to providing equal employment opportunities to all qualified individuals without regard to race color religion sex sexual orientation gender identity national origin age disability or any other protected characteristic as outlined by applicable laws Please note by submitting your application you acknowledge that you have read and understood Aspire s and consent to the collection use and disclosure of your personal data by Aspire for the purposes set out in the Policy You may withdraw consent for such collection use and disclosure and make an access or correction request in respect of your personal data in accordance with the Policy by emailing