Application Security Engineer - Bug bounty
Jakarta, Indonesia
Crypto.com
Over 100 million users buy, sell, and trade Bitcoin, Ethereum, NFTs and more on Crypto.com. Join the World's leading crypto trading platform.Responsibilities
- Manage and oversee the company's bug bounty program on platforms like HackerOne, HackenProof, and Bugcrowd.
- Triage and validate bug reports submitted by external researchers.
- Prioritize and categorize bugs based on severity and potential impact.
- Collaborate with the engineering and security teams to understand, track, and remediate vulnerabilities.
- Facilitate communication between external researchers, security teams, and developers to ensure effective resolution of security issues.
- Provide clear and constructive feedback to external researchers.
- Maintain a strong relationship with the bug bounty community.
- Keep up-to-date with the latest cybersecurity trends, vulnerabilities, and threats.
- Prepare and present reports on bug bounty program performance.
Requirements
- 2+ Years of hands-on experience in the Application Security field.
- Experience in a similar role, managing bug bounty programs and handling vulnerability reports will be a definite advantage.
- Strong understanding of web and mobile application security.
- Deep understanding of application security frameworks such as OWASP Top 10 and possess a strong sense of security regarding business and financial logic flaws.
- Proficiency in using bug bounty platforms like HackerOne, HackenProof, Bugcrowd, etc.
- Excellent problem-solving skills and attention to detail.
- Strong communication skills, with the ability to explain complex security issues to non-technical stakeholders.
- Experience in coordinating and collaborating with diverse teams.
- The ability to read code and understand how the back-end responds to API requests in programming languages such as Java, Ruby, Elixir, and JavaScript is crucial.
- Relevant certifications such as Offensive Security Certified Professional (OSCP), or Certified Information Systems Security Professional (CISSP) are a plus.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
4
1
0
Categories:
AppSec Jobs
Security Engineering Jobs
Tags: APIs Application security CISSP Java JavaScript Offensive security OSCP OWASP Ruby Vulnerabilities
Region:
Asia/Pacific
Country:
Indonesia
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Cybersecurity Engineer jobs
- Open Security Operations Engineer jobs
- Open Cloud Security Architect jobs
- Open Information Security Officer jobs
- Open Principal Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cyber Security Architect jobs
- Open Senior Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Network Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Information System Security Officer jobs
- Open Information System Security Officer (ISSO) jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open CEH-related jobs
- Open APIs-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open SaaS-related jobs
- Open Security assessment-related jobs
- Open Kubernetes-related jobs
- Open Java-related jobs
- Open EDR-related jobs
- Open TS/SCI-related jobs