Intern Infrastructure Security Engineer

At Commerce, our mission is to empower businesses to innovate, grow, and thrive with our open, AI-driven commerce ecosystem. As the parent company of BigCommerce, Feedonomics, and Makeswift, we connect the tools and systems that power growth, enabling businesses to unlock the full potential of their data, deliver seamless and personalized experiences across every channel, and adapt swiftly to an ever-changing market. We believe in harnessing AI responsibly to unlock new possibilities, and we’re looking for individuals who use it intentionally to solve problems, accelerate outcomes, and expand what’s possible in their role. Our purpose is to help businesses confidently solve complex commerce challenges so they can build smarter, adapt faster, and grow on their own terms. If you want to be part of a team of bold builders, sharp thinkers, and technical trailblazers who shape the future of commerce, this is the place for you.

Commerce is seeking an Infrastructure Security Intern to join the Cybersecurity team for an six-week summer internship. This role is designed for a student or early-career candidate interested in infrastructure security, cloud security, vulnerability management, detection engineering, secure automation, and how security teams partner with engineering in a modern SaaS environment.

As an Infrastructure Security Intern, you will work under the guidance of experienced Infrastructure Security engineers to learn how Commerce identifies, evaluates, prioritizes, and helps remediate security risks across cloud environments, infrastructure platforms, internal systems, and operational workflows. You will contribute to practical tooling, documentation, reporting, and process improvements that help the team scale its infrastructure security program while gaining exposure to real-world cloud security, vulnerability management, detection, incident response, and compliance support workflows.

Commerce is seeking an Infrastructure Security Intern to join the Cybersecurity team for a six-week summer internship. This role is designed for a student or early-career candidate interested in cloud security, infrastructure security, secure platform operations, vulnerability management, and how security teams partner with infrastructure, engineering, and operations teams in a modern SaaS environment.

As an Infrastructure Security Intern, you will work under the guidance of experienced Infrastructure Security engineers to learn how BigCommerce identifies, evaluates, and helps remediate security risks across our cloud environments, infrastructure platforms, and supporting systems. You will contribute to practical tooling, documentation, and process improvements that help the team scale its infrastructure security program while gaining exposure to real-world cloud security reviews, vulnerability triage, detection workflows, and risk remediation practices.

This is a six-week hybrid/remote opportunity.

• Learn the structure, goals, and day-to-day operating model of the Commerce Infrastructure Security program.
• Support improvements to infrastructure security tooling, reporting, documentation, dashboards, and team processes.
• Assist with organizing or refining vulnerability management workflows, cloud security findings, intake processes, remediation tracking, or knowledge base materials.
• Shadow Infrastructure Security engineers during cloud security reviews, vulnerability triage, remediation discussions, incident response activities, and engineering partnership meetings.
• Participate in guided hands-on security activities such as researching vulnerabilities, validating findings, reviewing cloud configuration risks, testing remediation outcomes, or improving detection context.
• Observe how the team partners with infrastructure, platform, engineering, GRC, legal, incident response, and business stakeholders.
• Contribute to a guided intern project that helps the team improve how infrastructure security work is measured, communicated, automated, or scaled.
• Present a short summary of learnings, recommendations, and completed work at the end of the internship.

• Current student or early-career candidate pursuing cybersecurity, computer science, information systems, cloud computing, infrastructure, software engineering, or a related field.
• Interest in infrastructure security, cloud security, vulnerability management, detection engineering, security automation, or secure systems operations.
• Familiarity with basic cloud concepts, Linux, networking, identity and access management, Git, scripting, or common security topics.
• Curiosity, good judgment, and willingness to ask questions.
• Strong written communication skills and ability to document findings, evidence, and recommendations clearly.
• Ability to work with a team, follow guidance, and handle sensitive information responsibly.

• Coursework, labs, CTF participation, personal projects, or prior internship experience related to cybersecurity, infrastructure, cloud computing, or systems administration.
• Exposure to tools or concepts such as AWS, GCP, vulnerability management, CSPM, CNAPP, SIEM, runtime security, IAM, Terraform, Linux, containers, or incident response.
• Basic scripting experience in Python, Bash, PowerShell, Go, JavaScript, or a similar language.
• Experience creating documentation, dashboards, scripts, small tools, or workflow improvements.
• Interest in learning how security teams balance risk reduction, engineering partnership, operational impact, and compliance requirements.

• Practical exposure to how an infrastructure security program operates inside a SaaS company.
• Experience with real cloud security, vulnerability management, detection, remediation, and reporting workflows.
• Mentorship from security engineers and exposure to engineering partnership models.
• A clearer understanding of potential career paths in infrastructure security, cloud security, detection engineering, security operations, and cybersecurity.

#LI-TK1
#LI-HYBRID
(Pay Transparency Range: $25.00/Hr.-$35.00/Hr.)

The national base salary range for this role is posted above in this job post.

Final compensation will be determined based on factors such as relevant experience, skills, qualifications and geographic location. We also consider internal equity to help ensure fair and consistent pay practices across our teams.

Where applicable, this role may also be eligible for variable compensation (such as bonus or commission), equity, and benefits in accordance with local policies. Details will be shared during the hiring process. We are committed to equitable and transparent pay practices that align to market data, internal equity, and individual contribution.

At Commerce, we believe that celebrating the unique histories, perspectives and abilities of every employee makes a difference for our company, our customers and our community. We are an equal opportunity employer and the inclusive atmosphere we build together will make room for every person to contribute, grow and thrive.

We are committed to creating an inclusive and accessible hiring experience for all candidates. If you require accommodations or adjustments at any stage of the recruitment process, please let us know and we will work with you to meet your needs.

Learn more about the Commerce team, culture and benefits at https://www.commerce.com/careers/

Commerce, along with many other employers, has become the subject of fraudulent job offers to hopeful prospective job seekers.
Be advised:
Commerce does not offer jobs to individuals who do not go through our formal hiring process.
Commerce will never:

• require payment of recruitment fees from candidates;
• request personally identifiable information through unsanctioned websites or applications;
• attempt to solicit money from you as part of the hiring process or as part of an employment offer;
• solicit money to complete visa requirements as part of a job offer.

If you receive unsolicited offers of employment from Commerce, we urge you to be extremely cautious and avoid engaging or responding.

The national base salary range for this role is posted above in this job post.

Final compensation will be determined based on factors such as relevant experience, skills, qualifications and geographic location. We also consider internal equity to help ensure fair and consistent pay practices across our teams.

Where applicable, this role may also be eligible for variable compensation (such as bonus or commission), equity, and benefits in accordance with local policies. Details will be shared during the hiring process. We are committed to equitable and transparent pay practices that align to market data, internal equity, and individual contribution.

At Commerce, we believe that celebrating the unique histories, perspectives and abilities of every employee makes a difference for our company, our customers and our community. We are an equal opportunity employer and the inclusive atmosphere we build together will make room for every person to contribute, grow and thrive.

We are committed to creating an inclusive and accessible hiring experience for all candidates. If you require accommodations or adjustments at any stage of the recruitment process, please let us know and we will work with you to meet your needs.

Learn more about the Commerce team, culture and benefits at https://www.commerce.com/careers/

Commerce, along with many other employers, has become the subject of fraudulent job offers to hopeful prospective job seekers.
Be advised:
Commerce does not offer jobs to individuals who do not go through our formal hiring process.
Commerce will never:

• require payment of recruitment fees from candidates;

• request personally identifiable information through unsanctioned websites or applications;

• attempt to solicit money from you as part of the hiring process or as part of an employment offer;

• solicit money to complete visa requirements as part of a job offer.

If you receive unsolicited offers of employment from Commerce, we urge you to be extremely cautious and avoid engaging or responding.