Project Objective

• Design a comprehensive security framework for VisShop AI covering the web platform, data pipelines, and backend services.
• Analyze vulnerabilities, define a secure architecture, implement data protection measures, and set up continuous monitoring to prevent unauthorized access and strengthen overall system security.

Main Responsibilities

• Perform threat modeling and vulnerability assessments for web applications, APIs, data pipelines and backend components.
• Propose and implement secure architecture patterns (network segmentation, least privilege, secure service-to-service communication).
• Implement authentication and authorization solutions using JWT or OAuth2 and apply OWASP best practices for web security.
• Configure and harden database access and security features for MongoDB or SQL and secure Nginx configurations for reverse proxying and TLS termination.

Required Skills & Technologies

• Basic programming skills in Python or JavaScript (Node.js) and familiarity with backend stacks mentioned.
• Cybersecurity fundamentals, network/web security concepts, and authentication/encryption basics.
• Familiarity with MongoDB or SQL security features (optional but recommended).
• Experience or willingness to use OWASP guidelines, JWT/OAuth2, Nginx, and basic penetration testing tools.

Deliverables & Expectations

• A documented secure architecture for VisShop AI including diagrams and recommended controls for web, data pipelines and backend services.
• Implemented security measures (authentication, encryption at rest/in transit, secure DB access, hardened Nginx) and a plan for continuous monitoring (logging, alerts, periodic scans).
• A report of findings from penetration testing and a prioritized remediation plan.

Practical Details & Application

• Level: Bac+5
• Number of interns: 1
• Duration: 4 to 6 months
• To apply, use the online application form: https://lnkd.in/duKj9p6S or send your application by email to jobs@visshopai.com .