Remote Security Engineer

Description:

• The Security Engineer’s role is to aid the security efforts of Bugcrowd while proactively making changes to improve the security posture.
• This position requires a motivated team member willing to push their boundaries and step out of their comfort zone.
• The Security Engineer will be challenged regularly as they serve as the last line of defense for one of the largest crowdsourced security platforms.
• Responsibilities include aiding within the Incident Response process, threat hunting, and developing patches and security controls within Ruby on Rails, Golang, and Kotlin applications.
• The role involves communicating across multiple teams and converting technical knowledge into understandable terms for various audiences.
• Significant familiarity with AWS and network security controls is required.
• The Security Engineer will identify vulnerability root causes, perform basic risk assessments, educate developers on security best practices, and architect solutions to remediate security concerns.
• Additional duties include performing basic red team assessments, testing new features, automating security tasks, and mentoring junior security engineers.
• The position requires working PST business hours and is fully remote.

Requirements:

• A Bachelor's Degree in a relevant field or commensurate experience is required.
• Candidates should have 3 to 5+ years of professional experience in a similar role or its equivalent.
• Experience with writing Incident Response plans and operating within an Incident Response practice is necessary.
• A working knowledge of Threat Intelligence and its application in creating proactive security controls is required.
• Familiarity with Pentesting techniques and the OWASP Top 10 is essential.
• Candidates must have the ability to understand vulnerabilities and collaborate with developers to patch them.
• Scripting knowledge in at least one of the following languages: Bash, Python, JavaScript, or Ruby is required.
• Self-motivation and organizational skills are necessary, as the candidate must operate from a calendar and be punctual.
• Cloud security experience or cloud certifications, particularly in AWS, is strongly preferred.
• Experience with Identity and Access Management (IAM) controls is required.
• The ability to work autonomously within a global company and think critically without intervention is essential.
• Familiarity with git and a ticketing/issue tracking system (e.g., Jira) is a must.

Benefits:

• The base pay range for this role is between $97,000 and $106,000, depending on various factors such as qualifications and experience.
• This position may be eligible for a discretionary bonus program or commission plan based on individual and organizational performance.
• Bugcrowd is committed to diversity and inclusion, fostering a workplace that values different backgrounds and perspectives.
• The company offers a fully remote work environment, allowing for flexibility in work arrangements.
• Bugcrowd provides reasonable accommodations for individuals with disabilities during the application and interview process.
• Employees are part of a culture that values collaboration and a sense of family within the team.