Quality Assurance Tech

We are Bugcrowd. Since 2012, we’ve been empowering organizations to take back control and stay ahead of threat actors by uniting the collective ingenuity and expertise of our customers and trusted alliance of elite hackers, with our patented data and AI-powered Security Knowledge Platform™. Our network of hackers brings diverse expertise to uncover hidden weaknesses, adapting swiftly to evolving threats, even against zero-day exploits. With unmatched scalability and adaptability, our data and AI-driven CrowdMatch™ technology in our platform finds the perfect talent for your unique fight. We aim to create a new era of modern crowdsourced security that outpaces threat actors. Unleash the ingenuity of the hacker community with Bugcrowd, visit www.bugcrowd.com. Based in San Francisco, Bugcrowd is supported by Rally Ventures, Costanoa Ventures, Blackbird Ventures, Triangle Peak Partners, and others.

Bugcrowd is looking for a creative, enterprising, and intrinsically motivated individual to join our growing Advanced Security Group team. The Quality Assurance Tech is a dynamic role designed to support the Advanced Security Group (ASG) in streamlining day-to-day operations. The successful candidate will be pivotal in enhancing the department’s efficiency, ensuring that administrative and operational tasks are executed effectively.

As a Quality Assurance Specialist, you’ll work with multiple internal roles including Technical Pentest Managers, Report Writers, and Management. The position is to provide technical quality checks prior to testing launch and after testing completion. These checks will cover data-entry, documentation, investigation, and reporting. The ideal candidate for this role will have flexibility in skills and the ability to transition between tasks with minimal notice. They will have strong English verbal and written skills and the ability to operate with little supervision in a proactive manner. Having a history with cybersecurity, security assessment and pentesting is necessary.

Primary Role Responsibilities:

•     Perform pentest duties on certain projects.
•     Quality check of pentest performed by other researchers.
•     Check and Analyze researcher Burp Suite and other testing logs.
•     Locate missed vulnerabilities and make submissions in platform.
•     Perform investigations into other researchers testing efforts.

Desired Skills & Experience

• Familiarity with application security testing techniques (can perform a security assessment and code review should they be given a product, identifying weaknesses)
• Knowledge of OWASP Top 10 and common security vulnerabilities of modern web applications
• Ability to understand Pentest methodology, identify inconsistencies, and craft meaningful and accurate summarizations around findings
• Hands on experience with Web, Mobile, and Network Penetration Testing
• Should be able to write pentest reports as needed
• Attention to Detail: Ensuring accuracy in documentation and data
• Communication: Articulating information clearly and effectively
• Time Management: Prioritizing tasks to manage time effectively
• Adaptability: Adjusting to the changing needs of a dynamic environment

Culture:

• At Bugcrowd, we understand that diversity in the workplace is vital to a company’s success and growth. We strive to make sure that people are included and have a sense of being part of making Bugcrowd not only a great product but a great place to work.
• We regularly hear from both customers and researchers that Bugcrowd feels like a family, and we strive to maintain that internally as well.
• Our team consists of a broad range of people: musicians, adventure sports junkies, nature lovers, parents, cereal enthusiasts, night owls, cyclists, artists—you get the point.

Perks:

• Competitive salary 
• Opportunities to attend & host relevant conferences & meetups.
• Flexible vacation time.

At Bugcrowd, we are solving security threats and vulnerabilities that are relevant to everyone, therefore we believe solving these problems takes all kinds of backgrounds. We value the perspectives and experiences people from underrepresented backgrounds bring. We are a supportive & collaborative team who understand that reaching Bugcrowd’s potential depends on the happiness of the employee.

Background Checks:

The company is authorized to obtain background checks for employment purposes and may include identity verification, prior employment verification, personal and professional references, educational verification, and criminal history. Applicants with conviction histories will not be excluded from consideration to the extent required by law and will be reviewed on a case by case circumstance.