Security Engineer - Remote

Overview

The Security Engineer’s role is to aid the security efforts of Bugcrowd, while proactively making changes to further improve our security posture.

In Short

• Aiding within the Incident Response process
• Threat hunting
• Developing patches and security controls within a Ruby on Rails application, Golang application, and Kotlin application
• Communicating across multiple teams converting technical knowledge into palatable words for multiple audiences.
• Significant familiarity with AWS and network security controls
• Identifying vulnerability root causes
• Performing basic risk assessments and triaging
• Educating developers on security best practices
• Architecting solutions with developers to remediate any security concerns
• Performing basic red team assessments

Requirements

• Bachelor's Degree in a relevant field or commensurate experience
• 3 - 5+ years of professional experience in a similar role or its equivalent.
• Experience with writing IR plans and operating within an IR practice
• Working knowledge of Threat Intelligence
• Familiarity with Pentesting techniques and OWASP Top 10
• Scripting knowledge in at least one of: Bash, Python, JavaScript, Ruby
• Cloud security experience or holds cloud certifications (AWS strongly preferred)
• Experience with Identity and Access Management (IAM) controls
• Ability to work autonomously within a global company
• Familiarity with git and a ticketing system

Benefits

• Remote work-from-home 100% of the time
• Participation in a discretionary bonus program or commission plan
• Diversity and inclusion in the workplace
• Support for individuals with disabilities
• Collaborative and family-like work environment