Offensive Security Intern

You are as unique as your background, experience and point of view. Here, you’ll be encouraged, empowered and challenged to be your best self. You'll work with dynamic colleagues - experts in their fields - who are eager to share their knowledge with you. Your leaders will inspire and help you reach your potential and soar to new heights. Every day, you'll have new and exciting opportunities to make life brighter for our Clients - who are at the heart of everything we do. Discover how you can make a difference in the lives of individuals, families and communities around the world.

Job Description:

Offensive Security / Red Team Internship job description

About Sun Life

Sun Life is a leading, global institution within the financial services and insurance sector, dedicated to safeguarding our clients' assets and data. In an increasingly complex digital landscape, our commitment to robust cybersecurity is paramount. We believe in fostering the next generation of cybersecurity talent and are excited to offer a unique opportunity for aspiring offensive security professionals to gain hands-on experience in a dynamic, high-impact environment.

The Opportunity: Offensive Security / Red Team Intern

Are you a passionate and curious student with a keen interest in how systems can be exploited and secured? Do you thrive on understanding vulnerabilities and thinking like an adversary? Our Offensive Security / Red Team internship offers an unparalleled chance to immerse yourself in the world of ethical hacking, working alongside seasoned experts to test and strengthen our defences.

This isn't just about finding flaws; it's about understanding the entire attack lifecycle, developing sophisticated attack simulations, and contributing directly to the resilience of critical financial infrastructure. You'll gain invaluable practical experience, bridging the gap between academic knowledge and real-world application.

Key Responsibilities

As an Offensive Security / Red Team Intern, you will be actively involved in:

Vulnerability Research & Analysis: Assisting in identifying, analysing, and documenting security vulnerabilities in applications, networks, and systems.

Penetration Testing Support: Contributing to various types of penetration tests (web, mobile, network, cloud) under the guidance of senior team members.

Red Team Operations: Participating in simulated attacks designed to test the effectiveness of our security controls and incident response capabilities.

Tool Development & Scripting: Assisting in the development and enhancement of custom tools and scripts to automate offensive security tasks.

Reporting & Remediation: Helping to document findings clearly and concisely, including working with business partners on recommendations for remediation.

Threat Emulation: Researching and emulating real-world threat actor techniques, tactics, and procedures (TTPs).

Security Awareness: Learning about the latest attack vectors and contributing to internal security awareness initiatives.

What We're Looking For

Currently enrolled in a Bachelor's or Master's degree program in Cybersecurity, Computer Science, Information Technology, or a related field.

A strong foundational understanding of networking protocols (TCP/IP, HTTP/S), operating systems (Windows, Linux), and common web technologies.

Familiarity with at least one scripting language (e.g., Python, PowerShell, Bash).

Familiarity with at least one general purpose programming language (e.g. C, C++)

Demonstrable interest in offensive security, evidenced by personal projects, CTF participation, relevant coursework, or security certifications (e.g., CompTIA Security+, eJPT, OSCP in progress).

Basic understanding of common cybersecurity concepts such as cryptography, authentication, authorization, and secure coding principles.

Eagerness to learn, a proactive attitude, and excellent problem-solving skills.

Strong communication skills, both written and verbal, with the ability to articulate technical concepts clearly.

High ethical standards and a commitment to responsible disclosure.

What You'll Gain

Hands-on Experience: Work directly on real-world systems in a critical industry.

Mentorship: Learn from experienced offensive security professionals and red team operators.

Exposure: Gain insight into the unique cybersecurity challenges and regulatory landscape of the financial services and insurance sector.

Skill Development: Enhance your technical skills in penetration testing, vulnerability analysis, and red teaming.

Networking: Build connections within our cybersecurity team and the broader industry.

Career Foundation: Lay a strong foundation for a successful career in offensive security.

Job Category:

Administrative Services

Posting End Date:

30/09/2025