Introduction

IBM Quantum is an industry first initiative to build universal quantum computers for business, engineering and science. This effort includes advancing the entire quantum computing technology stack and exploring applications to make quantum broadly usable and accessible. With a worldwide network of Fortune 500 companies, academic institutions, researchers, educators, and enthusiasts, we are committed to driving innovation for our clients in the IBM QuantumNetwork and the Qiskit Community.

Your role and responsibilities

The goal of this internship is to improve our CI/CD pipeline with security scanning tools to support developers adhere to Security Privacy by Design principles. One specific example of such a tool is checkov ([1] [1] [1] https://www.checkov.io/). In case checkov reports problems, this should lead to the pull request build being marked as failed, i.e. it should be a gating check during CI/CD execution.

Alternatively, it can be explored to run checkov in regular intervals and open issues in the respective github repositories, so that the individual teams can plan necessary actions to fix the reported vulnerabilities.

In a second part of the internship, the use of Open Policy Agent ([2] [2] [2] https://www.openpolicyagent.org/) in IBM Quantum should be explored to determine whether this is a viable strategy to enforce certain rules as gating checks prior to the deployment to the staging - and eventually the production - environment. In order to evaluate Open Policy Agent, it should be deployed in our staging environment with a defined set of rules. As deployment is one of the last steps in our CI/CD pipeline, adequate and actionable means to communicate issues should be explored, so that a developer understands how to fix OPA-based problems and unblock deployments.

At the end of the internship, the results should be presented to the team.

Please apply with:

1) Cover Letter incl. your availability (earliest start and latest end date)

2) CV incl. your level of German

3) Certificate of enrollment from you university

4) Current transcript of records and other relevant certificates / references

5.1) Non-EU citizen studying in Germany: copy of passport, residence and work permit

5.2) Non-EU citizen studying elsewhere: prove of identity incl. place of birth

We are looking forward to your application!

References

Visible links

1. https://www.checkov.io/

2. https://www.openpolicyagent.org/

Required technical and professional expertise

• basic Linux knowledge

• basic bash scripting knowledge

• basic github knowledge

Preferred technical and professional experience

• knowledge about tekton

• knowledge about cyber security

• knowledge about python