Security Analyst (Bug Bounty)

TL;DR

Senior Security Analyst (Bug Bounty): Analyzing and reproducing potential security findings reported by a global researcher community with an accent on communicating triage analysis outcomes and authoring NCC-quality vulnerability reports. Focus on engaging directly with security researchers and improving Bug Bounty Services’ tooling and operational processes.

Location: Remote (United States)

Company

hirify.global is a global leader in cyber and escrow, committed to creating a more secure digital future.

What you will do

• Analyze and fully reproduce potential security findings reported to clients.
• Communicate with the global researcher community regarding triage analysis outcomes.
• Author and deliver NCC-quality vulnerability reports to client specifications.
• Drive or contribute to projects that improve Bug Bounty Services’ tooling, operational processes, and delivery quality.

Requirements

• English: C2 proficiency required (Native speaker or CEFRL C2).
• Proven experience in web application, network, and mobile application security testing.
• Strong knowledge of OWASP Top 10.
• Recent professional experience using a programming scripting language.
• Vulnerability Disclosure and Bug Bounty experience.

Nice to have

• Vulnerability Management experience.
• Software QA experience.
• Experience with SAST and DAST testing tools.

Culture & Benefits

• Inclusive and supportive work environment fostering creativity, collaboration, authenticity, and accountability.
• Comprehensive benefits package, opportunities for learning and development, and career growth.
• Wellness programs and flexible working arrangements to support well-being.
• Work with a global leader in cyber and escrow on groundbreaking research and complex security problems.