Security Analyst, Technical Services
HackerOne is seeking a dynamic individual with a passion for Information Security to join our Technical Services team. As a Security Analyst, you will gain hands-on technical experience and exposure to some of the world’s best hackers while delivering high-impact vulnerabilities to the top bug bounty programs in the industry.
This role requires excellent communication skills, intellectual curiosity and drive to acquire the technical skills you’ll need to ensure every valid bug report is reproducible and provides value to HackerOne customers.
For AMER: This job reports to a Manager in-region and can be based anywhere within the United States or Canada.
Your Journey at HackerOne
- Evaluate assigned vulnerability reports submitted by hackers to determine the validity, risk and severity to HackerOne customers
- Collaborate with hackers to address missing information from reports as well as educate the HackerOne community members when reports are invalid
- Compose a technical summary for each valid report that includes clear and concise details regarding the impact, steps to reproduce and remediation advice
- Ensure clear and efficient communication between hackers and customers
- Proactively identify and solve issues, as well as accept and quickly respond to delegated work; as we are distributed, being able to win as a team to solve problems is critical to our success
Who You Are
- Proven experience with vulnerability disclosure and bug bounty (experience managing a bug bounty program is a plus but not required)
- Strong technical knowledge of OWASP top 10
- Comfortable using security testing tools including Burpsuite
- Excellent written and verbal communication skills
- Experience using frameworks such as CVSS
- Self-motivated and able to manage your time and energy output while maintaining a consistent and sustainable operational rhythm
- English fluency
- HackerOne is a digital first company, and all employees must be able to work and excel in a remote environment.
Employment at HackerOne is contingent on a background check.
HackerOne is committed to equal opportunity in the terms and conditions of employment for all employees and job applicants without regard to race, color, religion, sex, sexual orientation, age, gender identity or gender expression, national origin, pregnancy, disability or veteran status, or any other protected characteristic as outlined by international, federal, state, or local laws.
This policy applies to all HackerOne employment practices, including hiring, recruiting, promotion, termination, layoff, recall, leave of absence, compensation, benefits, training, and apprenticeship. HackerOne makes hiring decisions based solely on qualifications, merit, and business needs at the time.
Pursuant to the San Francisco Fair Chance Ordinance, all qualified applicants with arrest and conviction records will be considered for the position.
HackerOne Values
HackerOne commits to maintaining a strong, inclusive culture built for our employees and our community of hackers. We are driven by our five core values. We recognize that our mission is bigger than us, and therefore act with integrity at all times. As a team, we believe that transparency builds trust so we default to disclosure in our communications. Each individual executes with excellence, creating an environment of greater alignment and greater autonomy. We win as a team and respect all people to empower everyone to learn from each other, innovate, and grow.
What We Do
HackerOne is the global leader in human-powered security. We leverage human ingenuity to pinpoint the most critical security flaws across your attack surface to outmatch cybercriminals. HackerOne’s Attack Resistance Platform combines the most creative human intelligence with the latest artificial intelligence to reduce threat exposure at all stages of the software development lifecycle. From meeting compliance requirements with pentesting to finding novel and elusive vulnerabilities through bug bounty, HackerOne’s elite community of ethical hackers helps organizations transform their businesses with confidence. HackerOne has helped find and fix more vulnerabilities than any other vendor for brands including Coinbase, General Motors, GitHub, Goldman Sachs, Hyatt, PayPal, and the U.S Department of Defense. In 2023, HackerOne was named a Best Workplace for Innovators by Fast Company.
HackerOne is Digital First
Our work is optimized for asynchronous collaboration, knowledge management, and decision-making. HackerOne is creating an industry, and to do that, we must employ the most creative, forward-thinking distributed talent in the market. Our remote model allows employees to contribute to our mission while providing time and location flexibility which are core elements to a healthy relationship between professional and personal pursuits.
Note From The Remote JobHunters:
- When you apply, be sure to mention that you heard about this position from The Remote JobHunters!
- Looking for more entry-level remote positions? If so, be sure to join The Remote JobHunters Facebook group, Subreddit, and subscribe to our weekly newsletter!
