Security Intern

Описание вакансии

About Sky Mavis

Sky Mavis is building the future of gaming. We’re the creators of Axie Infinity, the most successful Web3 game ever, and Ronin, a purpose-built blockchain that ranked as the 4th most-used chain in 2024, behind Ethereum, Bitcoin, and Solana.

We’ve processed over $4.3 billion in on-chain volume and are backed by more than $170 million from top-tier investors, including a16z, Accel, Libertus Capital, and Paradigm.

Our team moves fast, builds with intention, and believes in a world where players truly own what they earn. If you’re excited by open economies, massive scale, and shaping new digital frontiers, join us.

About the Role

As a Security Intern, you will be on the front lines of our defense strategy. You won't just be watching from the sidelines; you will be integrated into our active monitoring and incident handling workflows. This role is designed for a detail-oriented student or recent graduate eager to apply theoretical security knowledge to real-world threats.

What You’ll Do

• Incident Handling: Acting as the primary on-call for security incidents, detecting alerts, validating their severity, opening incident tickets, and notifying the Incident Commander. They also support Technical Leads with data collection during incidents.
• Monitoring and Triage: Monitoring security alerts from various systems (e.g., #team-security-alert, Wiz, Falcon Complete), triaging security events, and executing basic containment measures.
• Alert Validation: Reviewing triggered alert details from SIEM/EDR/cloud logs, and validating whether the alert is a true positive, false positive, or benign activity. They assess the scope (user, endpoint, app, network) and risk, classify the severity, and escalate as needed.
• Security Incident Response Platform: Utilizing platforms like TheHive to review alerts, convert them into cases, and initiate investigations.

What We Look For

• Education: Currently pursuing or recently completed a degree in Cybersecurity, Computer Science, IT, or a related field.
• Analytical Mindset: Ability to correlate data points from different logs to tell a cohesive story of an attack.
• Technical Familiarity: Basic understanding of networking (TCP/IP), operating system internals (Windows/Linux), and common attack vectors (Phishing, Malware, Credential Stuffing).
• Attitude: Bias for action, driven to learn, top talent.
• Strong communicator and active listener: Clear communication (English) and capable of building trust across diverse teams.
• Bonus: Gamer, active crypto user, does hackathons on weekends.