Junior Security Engineer at BugCrowd

G&A: Cybersecurity, Australia engineering
Description
Posted a month ago

Job Summary

The Junior Security Engineer’s role is to aid the security efforts of Bugcrowd, while proactively making changes to further improve our security posture. To achieve this goal, we require a motivated team who are willing to push their own boundaries and step out of their comfort zones. You will be challenged on a regular basis, especially because you are the last line of defense for one of the largest crowdsourced security platforms! The Junior Security Engineer will receive mentoring from multiple senior security professionals and will work closely with these professionals on a daily basis.

**Please note we are only considering candidates currently located in AUS

Essential Duties & Responsibilities

  • Develop security automations using the programming languages required. They must run in an efficient and lightweight manner
  • Ability to write maintainable code
  • Security Architecture - Working with developers to uplift the current security controls and architecting solutions
  • Risk Management - Assess the risk behind security issues, track core metrics
  • Pen Testing / Red Team - Performing penetration tests and red teams of Bugcrowd assets (and vendors)
  • Operations / Incident Response - Aid with the process of Incident Response, security operational activities when required

Education, Experience, Skills, & Abilities

  • Bachelor's Degree in Computer Science, MIS, or equivalent experience
  • 2+ years experience in a similar role or its equivalent
  • Familiarity with Pentesting techniques
  • Knowledge of OWASP Top 10
  • Basic knowledge of Incident Response
  • Knowledge of threat intelligence
  • Ability to understand a vulnerability and work with developers to patch it
  • Scripting knowledge of at least one of: Python, JavaScript, Ruby
  • Great communicator who is comfortable communicating across multiple teams
  • Self motivated and organised - must be able to operate from a calendar and be punctual
  • Some cloud experience (AWS preferred)
  • Basic understanding of Identity and Access Management (IAM)
  • Ability to figure things out themselves (look at configurations, learn what they mean, and solve problems)
  • Has the desire to be self-sufficient and strives towards it
  • Basic red team knowledge
  • Familiarity with git and pull requests is a must
  • Familiarity with a ticketing system / issue tracking system is a must (e.g: Jira)

Working Conditions

The ideal candidate must be able to complete all physical requirements of the job with or without reasonable accommodation.

Sitting and/or standing - Must be able to remain in a stationary position 50% of the time

Carrying and /or lifting - Must be able to carry / move laptop as needed throughout the work day.

Environment - remote, work-from-home 100% of the time.