Description:

Bugcrowd is seeking an Application Security Engineer (ASE) to manage security vulnerability submissions for major companies' bug bounty programs.
The role offers exposure to a wide range of security programs, including those for cars, IoT devices, and mobile applications.
ASEs will gain technical fluency in various vulnerability types such as XSS, SQLi, and SSRF.
The position involves triaging and validating incoming submission data for accuracy and severity, and communicating with clients or researchers for additional information.
ASEs will handle incident response for high-severity bugs and require strong knowledge of OWASP Top Ten vulnerabilities.
The role is remote and only open to candidates residing in Brazil.

Requirements:

A Bachelor’s degree or previous security consulting experience is required.
Candidates must have a published and demonstrated passion for security assessment research.
High proficiency with Burp Suite or similar tools is essential, along with experience using industry-standard tools like nmap and sqlmap.
The ability to execute individual projects while contributing to team efforts is necessary.
Strong organizational, influencing, and communication skills are required.
Candidates must be able to meet the physical requirements of the job, including the ability to remain stationary for 50% of the time and carry/move a laptop as needed.

Bugcrowd offers a diverse and inclusive workplace culture that values different backgrounds and perspectives.
Employees enjoy a remote work environment, allowing for flexibility and work-life balance.
The company fosters a family-like atmosphere among its team members, promoting collaboration and support.
Bugcrowd is recognized as one of the "10 Coolest Security Startups Of 2016" by crn.com, highlighting its innovative approach to security.