Apply on Employer Site

Visa · 9 hours ago

Associate Cybersecurity Engineer, Intern - Pen Testing - Summer 2026

Austin, TX, USA

Internship

Hybrid

Intern

$35/hr - $40/hr

Start in 2026 Summer

Visa is a world leader in payments and technology, seeking an Associate Cybersecurity Engineer Intern for Summer 2026. This role involves developing and maintaining cybersecurity tools, conducting ethical penetration testing, and innovating AI-driven workflows to enhance Visa's security posture.

BankingFinanceFinancial ServicesInformation TechnologyMobile PaymentsPayments

Comp. & Benefits

No H1B

Responsibilities

Help develop, maintain, support and innovate on various internal Cybersecurity tools we leverage daily

Innovate and research on AI models and their applications to our cybersecurity world

Develop AI-driven workflows related to all cybersecurity activities we leverage

Research AI models and benchmarking specific use-cases

Perform ethical penetration testing on various Visa mobile and Mac assets to simulate real-life security vulnerabilities and scenarios

Execute successful adaptation of mobile and Mac security assurance across Visa

Identify weaknesses and shortcomings in Visa’s existing security posture of various products and recommend and enhance all necessary controls to effectively protect Visa assets and services from intentional or inadvertent modification

Help build foundational application security capabilities

Develop automated tools and scripts to optimize various testing process and flows

Qualification

PythonAI knowledgePenetration testingOWASP Top 10Burp SuiteAnalytical skillsCollaborationInterpersonal skillsProblem-solving

Required

Students pursuing a Bachelor's or Master's Degree in Computer Science, Computer Engineering, CIS/MIS, Cybersecurity, Business or a related field with a graduation date in December 2026-August 2027

Strong communications skills, specifically, the absence of repeated grammatical or typographical errors, clear and concise written and spoken communications that demonstrate professional judgment

Preferred

Knowledge of AI related fields and how they work (models, vectoring, prompt engineering, agentic methodologies etc.)

Ability to code scripts and small basic applications in Python

Experience with one or more of the following programming languages: Node, Kotlin, Java, Swift is preferred

Understanding of OWASP Top 10 and CWE 25; with proven track record and experience in implementing and integrating remediation strategies

Understand the basics of a mobile application and platform security concepts; deep understanding of those platforms, and advanced concepts related to SDKs and mobile wallets preferred

Knowledge of penetration testing is a plus but not necessary if you're willing to learn with us and are curious. Things like application risk assessment and risk categorization skills, including but not limited to, reverse-engineering, network interception and manipulation, offensive and defensive attacks, as well as database and cross-site scripting injection attacks are all topics that are useful

Understanding of web applications common architectures, basic cryptography, and web protocols

Understanding of the following tools/technologies should apply, and would be strongly preferred: Burp Suite, IDA pro, Metasploit, APKTool, Hopper, Gindra, CheckMarx (Sast/Dast), Cycript, XPosed, Charles, dex2jar, Kali Linux, Wireshark or any mobile security and/or penetration testing tools or frameworks

Strong ability to collaborate

Highly driven, resourceful and results oriented

Good team player and excellent interpersonal skills

Good analytical and problem-solving skills

Demonstrated ability to lead and navigate through ambiguity