Your mission
As a Product Security Analyst, you oversee incoming product security vulnerability reports from our researchers' community, while continuously sharpening their cybersecurity skills. All of this happens through dedicated interaction with the researcher's community and with the goal of offering the best possible service to both companies and researchers.
You focus on customers that have their products as scope. This includes a wide variety of products: software libraries, native applications, firewalls, embedded systems, operating systems, firmware etc. When necessary you help out the rest of the team working on web and mobile applications.
What you'll be doing
* Challenge and support both researchers and security teams using your entire security skillset.
* Research, POC and evaluate reports that come in through our platform (make sure they're unique, concrete & actionable for our clients).
* Assess the severity of reported issues in relation to how they can disrupt business, including the financial and managerial implications.
* Familiarity with and ability to calculate CVSS ratings.
* Review and provide feedback on reports in a constructive and supportive manner.
* Motivate and engage security researchers to continuously outperform themselves.
* Build a positive relationship with our community, and customers in close collaboration with success management.
* Provide remediation advice and help customers make the most value out of received reports.
* Proactively identify and solve issues, as well as accept and quickly respond to delegated work.
* Communicate, document, and share your findings.
* Stay updated on the latest malware and security threats.
* Perform penetration tests and security validation on software libraries, firmware/hardware, embedded systems, computer systems, networks and applications.
What you'll bring
* Outstanding interpersonal abilities, and strong written and verbal communication skills.
* Fluent in English, both written and spoken.
* Bachelor's degree or a combination of education and 3y of experience.
* Stress resistant & you can keep a clear focus on the resolution in an incident-context.
* Hands-on experience in pentesting, security testing, and vulnerability assessments, ...
* A strong understanding of the (Ethical) Hacker culture.
* Attention to detail, analytical and problem-solving capabilities.
* Able to independently find solutions to both technical and non-technical problems with no apparent answer (aggressive googling, stack overflow, etc).
* Flexible working hours, willing to take part in a 24x7 support organization.
* Positive service-oriented personality.
* Proven technology skills.
* You have knowledge of, or experience with, four or more of the following:
o Web application security
o Mobile application security
o Network security
o Game hacking
o Embedded systems and FPGAs
o Binary exploitation
o SIEM, SOAR and observability solutions
o Operating system or driver hacking
Nice to haves:
* Your very own bug bounty profile.
* Personal security research or disclosed vulnerabilities.
* OSCP, OSED, eJPT, CEPT, CPTS, CRTO, or other relevant certifications
What is in it for you?
Competitive salary
26 days of annual leave and Bank Holidays
☆ Top-notch Private Healthcare and Health Cash Plan
Hybrid working model
Initial home office budget
2-month work abroad policy
Great training and yearly learning budget
Employer pension scheme
Enhanced maternity pay
Social activities and team outings
Referral bonus
Employee Assistance Program
Great hardware and access to the best tools to be successful in your role
Mobile subscription contribution
Why join us?
Here are some great benefits of joining our team:
* Cybersecurity is a great place to be!The security industry is fast-paced and continues to grow even during times of economic uncertainty.
* We provide a clear career path and learning budget to help set you up for success.
* Join a company that's making a real impact. In addition to our sustainability goals, we empower ethical hackers from all backgrounds to earn a living.
* Be yourself! Our international team celebrates individuality and places a strong focus on diversity and inclusion.
* We are theproud winners of the Deloitte Rising Star awardin 2020, theDeloitte Fast 50 awardin 2021 and Security Innovation of the Year 2025 at the UK IT Industry awards.
* We're backed by top investors who are enabling us togrow internationally.
#J-18808-Ljbffr