Security Analyst, Technical Services, EMEA

HackerOne is seeking a dynamic individual with a passion for Information Security to join our Technical Services team. As a Security Analyst, you will gain hands-on technical experience and exposure to some of the world’s best hackers while delivering high-impact vulnerabilities to the top bug bounty programs in the industry.  

This role requires excellent communication skills, intellectual curiosity, and drive to acquire the technical skills you’ll need to ensure every valid bug report is reproducible and provides value to HackerOne customers. 

For EMEA:  This job reports to a Manager in-region and can be based anywhere within UK and Poland.

What You Will Do

Evaluate assigned vulnerability reports submitted by hackers to determine the validity, risk and severity to HackerOne customers

Collaborate with hackers to address missing information from reports as well as educate the HackerOne community members when reports are invalid

Compose a technical summary for each valid report that includes clear and concise details regarding the impact, steps to reproduce and remediation advice

Ensure clear and efficient communication between hackers and customers

Proactively identify and solve issues, as well as accept and quickly respond to delegated work; as we are distributed, being able to win as a team to solve problems is critical to our success

Minimum Qualifications  

Proven experience with vulnerability disclosure and bug bounty (experience managing a bug bounty program is a plus but not required)

Strong technical knowledge of OWASP top 10

Comfortable using security testing tools including Burpsuite 

Excellent written and verbal communication skills

Experience using frameworks such as CVSS

Self-motivated and able to manage your time and energy output while maintaining a consistent and sustainable operational rhythm

English fluency

Must be based remotely in the UK or Poland. HackerOne is a digital-first company. This model offers our employees flexibility in time and location. All employees must be able to work and excel in a remote environment.