Senior Bug Bounty Security Engineer

Client of RecruitMe Plus

نشرت قبل أكثر من 30 يومًا

الخبرة

5 - 7 سنوات

موقع العمل

Dubai - United Arab Emirates

التعليم

بكالوريوس في العلوم(أجهزة الكمبيوتر)

الجنسية

أي جنسية

جنس

غير مذكور

عدد الشواغر

1 عدد الشواغر

الوصف الوظيفي

الأدوار والمسؤوليات

Key Responsibilities:

  • Bug Bounty Program Management:
    • Oversee the organization's bug bounty program, including defining scope, rules, and rewards.
    • Review and validate vulnerability reports submitted by external researchers.
    • Ensure timely triaging, prioritization, and resolution of reported vulnerabilities.
  • Vulnerability Assessment and Remediation:
    • Analyze reported vulnerabilities and assess their impact on the organizations systems.
    • Collaborate with development and infrastructure teams to implement fixes and security patches.
    • Conduct root cause analysis to prevent recurrence of vulnerabilities.
  • Collaboration with Security Researchers:
    • Build and maintain strong relationships with external security researchers and ethical hackers.
    • Provide clear communication and feedback to researchers regarding their submissions.
  • Security Testing and Analysis:
    • Perform penetration testing and security assessments to proactively identify vulnerabilities.
    • Utilize automated tools and manual techniques to uncover security weaknesses.
  • Program Optimization:
    • Continuously improve the bug bounty program by expanding scope and refining processes.
    • Monitor industry trends and adopt best practices in vulnerability disclosure and bug bounty management.
  • Documentation and Reporting:
    • Maintain detailed records of vulnerability reports, remediation efforts, and program metrics.
    • Prepare regular reports for management on program performance and security posture.
  • Training and Awareness:
    • Educate internal teams on security best practices and the importance of vulnerability management.
    • Conduct workshops or training sessions to improve security awareness across the organization.

الملف الشخصي المطلوب للمرشحين

Qualifications:

  • Bachelors degree in Computer Science, Cybersecurity, or a related field.
  • Proven experience in vulnerability management, penetration testing, or security engineering.
  • Strong knowledge of web application security, network security, and secure coding practices.
  • Familiarity with bug bounty platforms such as HackerOne, Bugcrowd, or similar.
  • Proficiency in tools like Burp Suite, Metasploit, Nessus, and other security testing tools.
  • Understanding of common vulnerabilities (e.g., OWASP Top 10) and their remediation techniques.
  • Excellent analytical, problem-solving, and communication skills.
  • Relevant certifications such as CEH, OSCP, CISSP, or similar are a plus.

Preferred Skills:

  • Experience managing bug bounty programs or vulnerability disclosure initiatives.
  • Knowledge of cloud security and containerized environments (e.g., AWS, Azure, Kubernetes).
  • Ability to work in a fast-paced environment and handle multiple priorities effectively.

القطاع المهني للشركة

المجال الوظيفي / القسم

الكلمات الرئيسية

  • Senior Bug Bounty Security Engineer

تنويه: نوكري غلف هو مجرد منصة لجمع الباحثين عن عمل وأصحاب العمل معا. وينصح المتقدمون بالبحث في حسن نية صاحب العمل المحتمل بشكل مستقل. نحن لا نؤيد أي طلبات لدفع الأموال وننصح بشدة ضد تبادل المعلومات الشخصية أو المصرفية ذات الصلة. نوصي أيضا زيارة نصائح أمنية للمزيد من المعلومات. إذا كنت تشك في أي احتيال أو سوء تصرف ، راسلنا عبر البريد الإلكتروني abuse@naukrigulf.com

Client of RecruitMe Plus

https://www.careers-page.com/recruitme-plus/job/X965XV93

وظائف مماثلة

مهندس أمن التطبيق

Byte Guard

  • 1 - 5 سنوات
  • جدة، المملكة العربية السعودية

اختبار اختراق كبار

مهندس أمان التطبيقات العليا

اختبار اختراق كبار

اختبار اختراق كبار

عرض الكل