about 2 hours ago
Remote, United StatesEntry Level / Mid Level
H1B Sponsor
Responsibilities
- Analyze, assess, reproduce, and triage incoming security vulnerability reports from the bug bounty program.
- Communicate clearly and effectively with security researchers to clarify reports and increase engagement.
- Understand the root cause of vulnerabilities to advise product and engineering teams on mitigation strategies.
- Drive the lifecycle of submissions through to resolution, coordinating with stakeholders.
- Act as the security bridge between external researchers and internal teams for effective remediation.
- Conduct in-depth data analysis on bug reports to identify systemic risks.
- Provide tactical support for vulnerability management triage processes.
- Prepare and implement improvements to the overall bug bounty program.
- Provide feedback for tool development to enhance triage and security workflows.
Requirements
- Proven ability to follow bug reports, reproduce, and accurately triage security vulnerabilities.
- Deep familiarity with web security issues, attack vectors, and exploit methodologies.
- Competent in offensive security tools to reproduce issues.
- Ability to think like an attacker to understand the impact of vulnerabilities.
- Proficient in clear and concise written and verbal communication.
- Experience in a bug bounty program or deep knowledge of Stripe products and assets.