Security Analyst (Bug Bounty)

TL;DR

Security Analyst (Bug Bounty): Analyzing and reproducing potential security findings for clients, communicating with security researchers, and authoring vulnerability reports with an accent on direct engagement with the global security researcher community and delivering high-quality vulnerability reports. Focus on improving Bug Bounty Services tooling, operational processes, and delivery quality, and solving complex security problems.

Location: USA Remote

Company

hirify.global is a global leader in cyber and escrow, committed to creating a more secure digital future.

What you will do

• Analyze and fully reproduce potential security findings reported to clients.
• Communicate with the global researcher community to gather information and inform them of triage analysis outcomes.
• Author and deliver NCC-quality vulnerability reports to client specifications.
• Drive or contribute to projects that improve Bug Bounty Services’ tooling, operational processes, and delivery quality.

Requirements

• English: C2 proficiency or native speaker required.
• Proven experience in web application, network, and mobile application security testing.
• Strong knowledge of OWASP Top 10.
• Recent professional experience requiring regular use of a programming scripting language.
• Experience in Vulnerability Disclosure and Bug Bounty.

Nice to have

• Vulnerability Management experience.
• Software QA experience.
• Experience with SAST and DAST testing tools.

Culture & Benefits

• Inclusive and supportive work environment fostering creativity, collaboration, authenticity, and accountability.
• Comprehensive benefits package, opportunities for learning and development, and career growth.
• Wellness programs and flexible working arrangements.
• Mission to create a more secure digital future.