RemoteLeaf Logo
Log in Sign up

Security Analyst, Bug Bounty

6 hours, 17 minutes ago
North America
Mid Level
Security Analyst
Cybersecurity
AWS Burp Suite GCP Python Ruby
Apply Now
Stripe

Stripe

Stripe is a global technology company that provides financial infrastructure for the internet. They offer a suite of APIs and tools for businesses to accept online and in-person payments, automate financial processes, and embed financial services in th...

Diversified Financial Services
5K-10K
Founded 2009
$8700M raised
View All Jobs 214

Description

  • Analyze, assess, reproduce, and triage incoming security vulnerability reports from the bug bounty program.
  • Communicate with security researchers to clarify reports, increase engagement, and improve report quality.
  • Investigate the root cause of vulnerabilities and advise product and engineering teams on mitigation strategies.
  • Drive vulnerability submissions through the full resolution lifecycle with internal stakeholders.
  • Act as a bridge between external researchers and internal teams to support rapid remediation.
  • Conduct data analysis on bug reports and vulnerability patterns to identify systemic risks and inform security initiatives.
  • Provide tactical support for vulnerability management triage processes as needed.
  • Improve the overall bug bounty program through continuous enhancements.
  • Provide feedback and requirements for triage tooling and automation to improve security workflows.

Requirements

  • Proven ability to follow bug reports and accurately triage security vulnerabilities.
  • Familiarity with web security issues and exploit methodologies, including OWASP Top 10 and CWEs.
  • Competence with offensive security tools such as Burp Suite and custom scripting.
  • Ability to think like an attacker to assess the impact of vulnerabilities.
  • Strong communication skills with the ability to convey technical concepts to different stakeholders.
  • Experience in bug bounty programs or in triaging security vulnerability reports.
  • Knowledge of Stripe products and general security expertise.
  • Experience in technical support, operations, or similar roles with technical systems exposure (preferred).
  • Prior participation in or experience with bug bounty programs (preferred).
  • Experience analyzing source code for security vulnerabilities (preferred).
  • Proficiency in scripting languages such as Python or Ruby for automation (preferred).
  • Familiarity with cloud-based services such as AWS or GCP (preferred).
  • Certifications such as OSWA or BSCP (preferred).

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Mercier Consultancy

French Speaking Digital Trust and Safety Analyst - Work In Sofia

Mercier Consultancy Professional Services

Mercier Consultancy MD is hiring a French Speaking Digital Trust and Safety Analyst in Sofia to monitor, investigate, and manage online content and policy compliance to help maintain a safe digital environment.

Belgium Bulgaria France Greece Portugal Spain Full-time Junior Security Analyst
6 hours, 2 minutes ago
Coalfire

Vulnerability Analyst

Coalfire 251-1K Internet Software & Services

Coalfire is hiring a remote Vulnerability Analyst to support federal cloud advisory services by managing vulnerability monitoring, compliance evidence, and remediation reporting across regulated environments.

United States Full-time Mid Level Security Analyst
$78k-$135k
AWS Azure Bash Burp Suite CI/CD Cybersecurity DevSecOps GCP Kubernetes PowerShell Prisma Python
6 hours, 3 minutes ago
GuidePoint Security

GPSU Cybersecurity Fall Internship

GuidePoint Security 251-1K Internet Software & Services

GuidePoint Security is hiring a part-time, remote paid cybersecurity intern for its GPSU cohort, supporting hands-on security work and training while preparing for a future full-time role.

United States Part-time Entry Level Security Analyst
$42k-$42k
Cybersecurity
6 hours, 3 minutes ago
Appgate

L1 Analyst

Appgate 251-1K Professional Services

GFC Operations is hiring an L1 Analyst to serve as the first line of defense, investigating and mitigating cybersecurity events for clients in a highly analytical, curiosity-driven operations environment.

Colombia Full-time Junior Security Analyst
Cybersecurity HTML Linux
12 hours, 58 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers