NEWPosted 3 hours ago

Job ID: JOB_ID_8717

Job Summary

We are seeking a highly skilled Cyber Security / Vulnerability Engineer with 9-10+ years of experience in vulnerability research, penetration testing, and enterprise security operations. The ideal candidate has hands-on experience identifying and mitigating security risks across web applications, networks, and cloud environments, along with a strong foundation in secure system architecture and incident response. This role requires a proactive security professional with real-world bug bounty experience, strong analytical skills, and the ability to design and implement security-first solutions, including modern AI-driven systems.

Key Responsibilities

  • Perform vulnerability assessments and penetration testing on web applications, APIs, and network infrastructure.
  • Identify, analyze, and remediate vulnerabilities such as SQL Injection, XSS, SSRF, IDOR, and RCE.
  • Conduct security research and threat analysis, staying up to date with emerging attack vectors and zero-day vulnerabilities.
  • Develop and execute security testing methodologies, tools, and scripts (Python/Bash/Power).
  • Design and implement secure architecture principles, including Security by Design practices.
  • Monitor, analyze, and respond to security incidents and alerts, ensuring timely remediation.
  • Implement and manage encryption protocols (e.g., AES-256), firewalls, VPNs, and IAM systems.
  • Perform risk assessments and security audits for enterprise systems and infrastructure.
  • Collaborate with development teams to secure AI/LLM-based applications, mitigating risks such as prompt injection and data leakage.
  • Automate log monitoring, vulnerability scanning, and reporting processes.
  • Support disaster recovery planning and business continuity initiatives.
  • Provide security awareness training and guidance to internal stakeholders.

Required Skills & Qualifications

  • 9-10+ years of experience in Cybersecurity, Vulnerability Management, or Penetration Testing.
  • Hands-on experience with bug bounty platforms (e.g., HackerOne, Bugcrowd) or equivalent real-world research.
  • Strong knowledge of web application security (OWASP Top 10).
  • Experience with network security, firewalls, VPNs, and intrusion detection systems.
  • Proficiency in Linux/Unix and Windows Server environments.
  • Experience with Active Directory and Identity & Access Management (IAM).
  • Scripting experience in Python, Bash, or Power.
  • Knowledge of cloud security and API security best practices.
  • Familiarity with database security (SQL Server, NoSQL).
  • Strong understanding of encryption standards and secure data transmission.

Preferred Qualifications

  • Certifications such as: CompTIA Security+, CompTIA Network+/A+, EC-Council certifications or equivalent.
  • Experience with AI/ML security and LLM integrations.
  • Background in Air/Travel is preferred.
  • Experience developing custom security tools or automation frameworks.

Key Competencies

  • Strong analytical and problem-solving skills.
  • Attention to detail with a hacker mindset.
  • Ability to work independently and in cross-functional teams.
  • Excellent communication and vulnerability reporting skills.
  • Continuous learner with a passion for cybersecurity research.

Nice to Have

  • Experience with PentesterLab or similar hands-on security labs.
  • Exposure to CCTV/security systems integration and physical security layers.
  • Bilingual or multilingual communication skills.

Education

Bachelors degree in Computer Science, Information Security, or related field (or equivalent experience).

Experience Highlights (Ideal Candidate Profile)

  • Proven track record in bug bounty programs or independent vulnerability research.
  • Experience securing large-scale infrastructure (e.g., municipal or enterprise systems).
  • Demonstrated ability to reduce risk, improve system resilience, and enhance security posture.

Special Requirements

Visa constraints: All visas except H1B and E3. Screening steps: Bug bounty platforms (HackerOne or Bugcrowd) experience is must. Interview modes: Not specified. Domain restrictions: Not specified.

Compensation & Location

Salary: $120,000 – $180,000 per year (Estimated)

Location: Remote, US

Recruiter / Company – Contact Information

Email: hwendrasinghppp@gmail.com

Interested in this position?
Apply via Email

Recruiter Notice:
To remove this job posting, please send an email from
hwendrasinghppp@gmail.com with the subject:

DELETE_JOB_ID_8717

to delete@join-this.com.