Description:

The Security Engineer’s role is to aid the security efforts of Bugcrowd while proactively making changes to improve the security posture.
This position requires a motivated team member willing to push their boundaries and step out of their comfort zone.
The Security Engineer will be challenged regularly as they serve as the last line of defense for one of the largest crowdsourced security platforms.
Responsibilities include aiding within the Incident Response process, threat hunting, and developing patches and security controls within Ruby on Rails, Golang, and Kotlin applications.
The role involves communicating across multiple teams and converting technical knowledge into understandable terms for various audiences.
Significant familiarity with AWS and network security controls is required.
The Security Engineer will identify vulnerability root causes, perform basic risk assessments, educate developers on security best practices, and architect solutions to remediate security concerns.
Additional duties include performing basic red team assessments, testing new features, automating security tasks, and mentoring junior team members.

Requirements:

A Bachelor's Degree in a relevant field or commensurate experience is required.
Candidates should have 3 to 5+ years of professional experience in a similar role or its equivalent.
Experience with writing Incident Response plans and operating within an Incident Response practice is necessary.
A working knowledge of Threat Intelligence and its application in creating proactive security controls is essential.
Familiarity with Pentesting techniques and the OWASP Top 10 is required.
Candidates must have the ability to understand vulnerabilities and work with developers to patch them.
Scripting knowledge in at least one of the following languages: Bash, Python, JavaScript, or Ruby is needed.
Self-motivation and organizational skills are crucial, as the candidate must operate from a calendar and be punctual.
Cloud security experience or cloud certifications, particularly in AWS, is strongly preferred.
Experience with Identity and Access Management (IAM) controls is required.
The ability to work autonomously within a global company and think critically without intervention is necessary.
Familiarity with git and a ticketing/issue tracking system (e.g., Jira) is a must.

The base pay range for this role is between $97,000 and $106,000, depending on various factors such as qualifications and experience.
This position may also be eligible for a discretionary bonus program or commission plan based on individual and organizational performance.
Bugcrowd is committed to diversity and inclusion, creating a workplace that values different backgrounds and perspectives.
The company offers a remote work environment, allowing employees to work from home 100% of the time.
Bugcrowd provides reasonable accommodations for individuals with disabilities during the application and interview process.