Intern marketing [h1.location_city]

divh2Software Supply Chain Security Research Intern / h2pSocket helps developers and security teams ship faster by cutting out security busywork. Thousands of organizations use Socket to safely find, audit, and manage open source code. Our customers love Socket. / ppFounded by Feross Aboukhadijeh, a long-time open source maintainer, Socket has raised $65M in funding. / ppAbout the Role : You will collaborate with world-class software engineers to build the next generation of defenses against software supply chain attacks. This internship offers a unique opportunity to translate cutting-edge research ideas into real-world systems that safeguard millions of developers worldwide. You will contribute to the design and implementation of large-scale data collection and analysis pipelines, conduct in-depth investigations of malicious activity in open source ecosystems, and prototype novel techniques for detecting fraud and abuse on platforms such as GitHub. / ppWhat Youll Do : / pulliConduct applied research on emerging threats in the software supply chain (e.g., typosquatting, dependency confusion, malicious maintainers) and translate findings into detection prototypes. / liliDesign and evaluate novel algorithms for identifying malicious or inauthentic activity across ecosystems such as npm, PyPI, and GitHub. / liliLeverage data science and machine learning techniques to model suspicious publishing behaviors, coordinated activity, and fraud campaigns. / liliDevelop automated research tools to collect, transform, and analyze large-scale datasets from third-party APIs (e.g., npm, GitHub, PyPI). / liliPrototype and validate detection systems that can be integrated into Sockets threat intelligence platform, bridging research insights with production impact. / liliCollaborate with engineers and designers to experiment with new ways of surfacing research findings in user-facing interfaces and developer workflows. / liliPublish research outputs internally (dashboards, reports, proofs-of-concept) to influence product strategy and share with the broader community when appropriate. / liliContribute to the early team culture, bringing a research-driven perspective to technical discussions, prioritization, and the companys long-term vision. / li / ulpWhat Youll Bring : / pulliYou are enrolled in a postgraduate or PhD program in computer science (or related field) and eager to apply your research expertise to real-world problems in software supply chain security. / liliStrong background in one or more of the following : program analysis, data mining, applied machine learning, large-scale systems, or security research. / liliProficiency with languages commonly used for prototyping and research (e.g., JavaScript / TypeScript, Python, or similar). / liliFamiliarity with software and systems security concepts, such as threat modeling, malware analysis, or adversarial behavior in open ecosystems. / liliExperience conducting research involving data analysis, statistical methods, or experimental evaluation. / liliStrong analytical and creative problem-solving skills; able to explore novel approaches and rigorously evaluate their effectiveness. / liliSelf-motivated and comfortable driving independent research while collaborating with an interdisciplinary team. / liliStrong written and verbal communication skills for presenting research findings and collaborating across engineering and design. / liliBonus points for prior work in one or more of the following : / liulliStatic / dynamic analysis of software or binaries / liliOpen source security research or published academic work / liliExperience with Socket-supported ecosystems / liliBuilding scalable data pipelines or visualization dashboards / li / ul / ulpAs we know how important clarity is when looking for a new role, weve put together a read-me about the Interview Process at Socket. / ppAt Socket, we : / pulliPursue excellence : We set ourselves apart by consistently delivering work of exceptional quality and distinction. / liliMove with urgency and focus : We prioritize swift, decisive action. / liliThink rigorously : We care about being right and it often takes reasoning from first principles to get there. We value alternative perspectives and have constructive discussions. / liliTrust and amplify : We overtrust, always assume good intent, and give specific feedback to help each other improve. / liliFeel a strong sense of ownership : We wear many hats and feel a strong sense of overall ownership of the company and were non-territorial regarding our nominal domains. / liliAre customer obsessed : We relentlessly prioritize the needs of our customers, striving to exceed their expectations and delight them at every interaction. / li / ul / div