About Bugcrowd
The crowdsourced security platform for proactive protection
Key Highlights
- Headquartered in San Francisco, CA
- Raised $230.7 million in Series E funding
- Over 1,000 employees dedicated to cybersecurity
- Prevented $27 billion in cybercrime since 2020
Bugcrowd is a leading crowdsourced security platform headquartered in San Francisco, CA, that connects organizations with ethical hackers to identify vulnerabilities before cybercriminals can exploit them. With over 1,000 employees and $230.7 million raised in funding, Bugcrowd has served high-profi...
🎁 Benefits
Bugcrowd offers comprehensive medical, dental, and vision insurance, a 401(k) plan with matching, stock options, flexible vacation time, pre-tax commu...
🌟 Culture
Bugcrowd fosters a remote-friendly culture that emphasizes proactive security measures through collaboration with a diverse pool of ethical hackers. T...
Overview
Bugcrowd is hiring an Application Security Engineer to manage security vulnerability submissions for major bug bounty programs. You'll work with cutting-edge security testing methodologies and collaborate with elite hackers. This role requires expertise in various security vulnerabilities.
Job Description
Who you are
You have a strong background in application security, with experience in managing security vulnerability submissions and a deep understanding of various security testing methodologies. You are familiar with common vulnerabilities such as XSS, SQLi, XXE, IDOR, SSTI, and SSRF, and you understand how to assess and mitigate these risks effectively. Your technical fluency allows you to communicate complex security concepts clearly to both technical and non-technical stakeholders. You thrive in a collaborative environment, working alongside elite security researchers and hackers to enhance security programs for some of the world's largest companies. You are detail-oriented and possess a proactive mindset, always looking for ways to improve security processes and outcomes.
Desirable
Experience with bug bounty programs or crowdsourced security initiatives is a plus. Familiarity with security tools such as Burp Suite and knowledge of OWASP guidelines will enhance your effectiveness in this role. You are adaptable and eager to learn, keeping up with the latest trends and threats in the cybersecurity landscape.
What you'll do
As an Application Security Engineer at Bugcrowd, you will curate and manage incoming security vulnerability submissions, ensuring they are assessed and addressed promptly. You will collaborate with a diverse team of security experts and hackers, leveraging their insights to improve security assessments and methodologies. Your role will involve analyzing vulnerabilities, providing actionable feedback to clients, and helping to shape the security posture of major organizations. You will also participate in the development of security testing frameworks and contribute to the continuous improvement of Bugcrowd's security knowledge platform. Your work will directly impact the effectiveness of security programs and the safety of client applications.
What we offer
At Bugcrowd, you will be part of a mission-driven team that is redefining the landscape of application security. We offer a flexible remote work environment, competitive compensation, and opportunities for professional growth. You will have access to cutting-edge tools and resources, enabling you to stay at the forefront of the cybersecurity field. Join us in our mission to empower organizations to take control of their security and outpace threat actors.
Interested in this role?
Apply now or save it for later. Get alerts for similar jobs at Bugcrowd.
Similar Jobs You Might Like
Based on your interests and this role
Security Engineer
Twilio is hiring a Senior Application Security Engineer to enhance their Application Security capabilities and improve secure engineering practices. You'll work with teams to reduce vulnerabilities and improve visibility in a remote role based in India.
Security Engineer
MoonPay is hiring an Application Security Engineer to enhance security measures across their digital currency platform. You'll work with OWASP and Burp Suite to identify and mitigate security threats. This role requires experience in application security and a passion for building secure systems.
Application Security Engineer
Nebius AI is seeking an Application Security Engineer to enhance the security of their software by identifying vulnerabilities and implementing best practices. You'll work with secure coding, vulnerability assessment, and penetration testing in a collaborative environment.
Security Engineer
Anthropic is hiring an Application Security Engineer to enhance security in AI systems. You'll collaborate with engineers to integrate security practices throughout the software development lifecycle. This role requires expertise in OWASP and programming languages like Python and Java.
Security Engineer
Thumbtack is hiring a Staff Application Security Engineer to enhance security measures while enabling innovation. You'll collaborate with various teams to shape system design and guide architectural decisions. This role requires expertise in security practices and a strong understanding of application security.