Key Responsibilities:
1. Autonomous AI Agent Development
- Research existing frameworks, models, and agents related to automated penetration testing.
- Develop a proofofconcept AI agent capable of:
- Application reconnaissance
- Vulnerability discovery
- Exploit simulation (non-destructive)
- Reporting and evidence collection
- Evaluate relevant Large Language Models that could be utilized for developing the agent
- Implement guardrails to ensure safe, controlled, and compliant agent execution.
- Produce/Generate documentation and technical writeups suitable for internal security engineering audiences.
2. Security Automation & Orchestration (Blue Team Exposure)
- Work with the internal SecOps Team to explore integration opportunities with SIEM/SOAR platforms.
- Develop scripts, workflows, or miniplaybooks to automate:
- Threat detection response
- Alert triage
- Endpoint or application containment steps
- Experiment with integrating the autonomous agent into response workflows (stretch goal).
3. Research & Innovation
- Conduct comparative studies on AIaugmented VAPT methodologies.
- Explore integration of autonomous agents with Wilmar's internal applications.
- Evaluate potential risks, limitations, and ethical considerations of automated offensive security tools.
4. Engineering & Operational Exposure
Depending on ongoing projects, the intern may support or observe:
- Cloud architecture security reviews
- Penetration test processes
- Zeroday vulnerability response workflows
- Internal application security testing
- Automation of security reporting dashboards
Learning Outcomes:
By the end of the internship, the student will gain:
- Handson experience with AIdriven security automation
- Understanding of enterpriselevel VAPT workflows
- Knowledge of detection engineering and response orchestration
- Exposure to real operational security challenges in a multinational enterprise
- Experience developing productionoriented prototypes and documentation
Preferred Skills & Requirements:
We welcome candidates from Computer Science, Computer Engineering, AI/ML, Cybersecurity, or related disciplines.
Technical Competencies (Preferred, Not Mandatory)
- Basic understanding of cybersecurity concepts (OWASP Top 10, CVEs, attack surface)
- Familiarity with Python
- Experience with LLM frameworks (LangChain, OpenAI API, local models)
- Knowledge of web application architectures
- Exposure to penetration testing tools (Burp Suite, Nmap, etc.) is a bonus
- Experience with automation workflows or scripting (PowerShell, Bash)
Soft Skills
- Selfdriven, curious, and passionate about problem-solving
- Strong research and analytical thinking
- Able to work independently while collaborating with technical teams
- Good communication skills, especially in documenting technical work
