HackerOne is seeking a dynamic individual with a passion for Information Security to join our Technical Services team. As a Security Analyst, you will gain hands-on technical experience and exposure to some of the world s best hackers while delivering high-impact vulnerabilities to the top bug bounty programs in the industry.
This role requires excellent communication skills, intellectual curiosity and drive to acquire the technical skills you ll need to ensure every valid bug report is reproducible and provides value to HackerOne customers.
What You Will Do
Evaluate assigned vulnerability reports submitted by hackers to determine the validity, risk and severity to HackerOne customers
Collaborate with hackers to address missing information from reports as well as educate the HackerOne community members when reports are invalid
Compose a technical summary for each valid report that includes clear and concise details regarding the impact, steps to reproduce and remediation advice
Ensure clear and efficient communication between hackers and customers
Proactively identify and solve issues, as well as accept and quickly respond to delegated work; as we are distributed, being able to win as a team to solve problems is critical to our success
Minimum Qualifications
3+ years of professional manual web app testing experience
Proven experience with vulnerability disclosure and bug bounty (experience managing a bug bounty program is a plus but not required)
Strong technical knowledge of OWASP top 10
Comfortable using security testing tools including Burpsuite
Excellent written and verbal communication skills
Experience using frameworks such as CVSS
Self-motivated and able to manage your time and energy output while maintaining a consistent and sustainable operational rhythm
English fluency - both written and verbal
Candidates must already based in Pune, India and willing to work hybrid from an office/WeWork