Cybersecurity & AI Research Intern: AI-Assisted Vulnerability Validation and Prioritization

Job Description:

Cybersecurity & AI Research Intern: AI-Assisted Vulnerability Validation and Prioritization
Here at Siemens, we take pride in enabling sustainable progress through technology. We do this through empowering customers by combining the real and digital worlds. Improving how we live, work, and move today and for the next generation! We know that the only way a business thrives is if our people are thriving. That's why we always put our people first. Our global, diverse team would be happy to support you and challenge you to grow in new ways. Who knows where our shared journey will take you?
Transform the Everyday with us!
This role will be on-site in Princeton, NJ
Start Time & Duration: 1 June 2026/ASAP to 30 Sep 2026 (flexible start + end dates)
We are seeking multiple Research Interns who are currently pursuing a Bachelor's or Master's degree and are interested in cybersecurity, software engineering, and applied AI. The interns will support a research effort focused on building a benchmark and evaluation workflow for vulnerability analysis, validation, and prioritization in software dependency chains. A key focus of this role is to help analyze chains of vulnerabilities in software projects in order to establish ground-truth data showing whether and how a project is affected by vulnerabilities in its dependencies. The interns will also support the use of advanced LLMs to identify, validate, and confirm the presence of vulnerabilities, evaluate model performance against the benchmark, and use AI-assisted validation results to help build improved vulnerability prioritization methods.
This internship is offered as an on-site internship in our office in Princeton, NJ, USA. It is not offered as a remote position. Siemens benefits for interns include, beyond a competitive salary, relocation and housing allowances, among others (subject to eligibility).

The challenges and responsibilities

* Support the design and development of a benchmark for dependency-related vulnerability analysis and validation.
* Help prepare benchmark assets, including vulnerable projects, dependency configurations, test cases, validation criteria, and supporting documentation.
* Use advanced LLMs and AI-assisted workflows to identify, assess, and validate vulnerabilities in software projects and dependencies.
* Contribute to the development of prioritization methods that leverage AI-assisted validation results, technical context, and dependency analysis.
* Help identify signals that improve prioritization beyond severity scores alone, such as exploitability, reachability, dependency usage, exposure, and remediation complexity.
* Document methods, findings, experimental setup, benchmark assumptions, and evaluation results for internal use and future research activities
* Present status reports and results in internal reviews and contribute to publications

Required Knowledge/Skills, Education, and Experience

* Currently enrolled full-time as a Bachelor's or Master's student in Cybersecurity, Computer Science, Software Engineering, Data Science, or a related STEM field.
* Strong interest in software security, vulnerability management, software supply chain security, and applied AI including experience with open-source LLM tooling and evaluation frameworks.
* Understanding of CVEs, security advisories, dependency-related vulnerabilities, vulnerability validation, software dependencies, and build processes.
* Familiarity with package managers and tools such as pip, npm, Maven, Gradle, Poetry, or similar.
* Exposure to vulnerability data sources or tools such as NVD, GitHub Security Advisories, OSV, Snyk, or similar.
* Ability to read and analyze source code in languages such as Python, Java, JavaScript, or C/C++.
* Experience with Linux, Git, Docker, and scripting or reproducible test environments.
* Proficient in English both written and verbal
* Authorized to work in the United States without company sponsorship for the duration of the internship
Preferred Qualifications:
* Strong analytical, problem-solving, and communication skills.
Successful candidates must be able to work with controlled technology in accordance with US Export Control Law. US Export Control laws and applicable regulations govern the distribution of strategically important technology, services and information to foreign nationals and foreign countries. Siemens may require candidates under consideration for employment opportunities to submit information regarding citizenship status to allow the organization to comply with specific US Export Control laws and regulations. Additional information on the US Export Control laws & regulations can be found on https://www.bis.doc.gov/index.php/policy-guidance/deemed-exports/deemed-exports-faqs

What do we offer?

Our team is part of Siemens Research and Predevelopment, which is Siemens' central R&D department. The team is composed of consultants, innovators, engineers, and researchers that unite a passion about cybersecurity and securing our customers' assets and networks - in domains such as control systems used in energy utilities that are part of the nation's critical infrastructure, smart factories, building automation systems, intelligent transportation systems, healthcare, and innovative new products and solutions developed by Siemens. Our close contact to all our business units in Siemens provides the opportunity to contribute to and gain experience in real industrial applications.
Our research team is located in beautiful Princeton, NJ, a university town packed with exceptional international talent that provides a unique feel of this true cultural gem in the state. The town has plenty of activities to offer, but for those looking for more, at just about 1h drive we have NYC or Philadelphia. We have the best public schools in the country and all of the above glued together by a very active and welcoming community.
As Siemens' central Research & Development department, we embrace this community. Our core mission is to support our Siemens business units as a central knowledge hub for all cybersecurity capabilities globally. We research and develop new and innovative solutions, based on much-needed deep technical expertise, and our network with internal and external experts and academia. This allows us to invent new solutions and approaches, and verify their feasibility in the "real world" together with the product development teams of our business units - creating a stimulating setup for quick innovation cycles and rapid prototyping.
As an intern in our team, you have the opportunity to experience a professional industrial research team, and learn about the unique challenges and opportunities of a career in industrial cybersecurity.
About Siemens:
We are a global technology company focused on industry, infrastructure, transport, and healthcare. From more resource efficient factories, resilient supply chains, and smarter buildings and grids, to sustainable transportation as well as advanced healthcare, we create technology with purpose adding real value for customers. Learn more about Siemens here.
Our Commitment to Equity and Inclusion in our Diverse Global Workforce:
We value your unique identity and perspective. We are fully committed to providing equitable opportunities and building a workplace that reflects the diversity of society, while ensuring that we attract the best talent based on qualifications, skills, and experiences. We welcome you to bring your authentic self and transform the everyday with us.
LI-JS
LI-Onsite