Product Security Analyst, APAC at HackerOne

Pune, Maharashtra, India

HackerOne Logo
₹2,500,000 – ₹2,800,000Compensation
Mid-level (3 to 4 years)Experience Level
Full TimeJob Type
UnknownVisa
Cybersecurity, Software SecurityIndustries

Requirements

Candidates must have proven experience with vulnerability disclosure and bug bounty programs, along with hands-on experience in security testing or ethical hacking on web and mobile applications. A strong technical understanding of OWASP Top 10, proficiency with security testing tools like Burpsuite, experience using frameworks such as CVSS, and excellent written and verbal communication skills are essential. The role requires fluency in English, self-motivation, time management skills, and the ability to work 4-5 days a week in the Pune office.

Responsibilities

The Product Security Analyst will evaluate assigned vulnerability reports to determine validity, risk, and severity for customers. They will collaborate with hackers to gather missing information, educate community members on invalid reports, and compose technical summaries for valid findings, including impact, reproduction steps, and remediation advice. This role involves ensuring clear communication between hackers and customers, proactively identifying and solving issues, and independently reproducing reported vulnerabilities in a test environment.

Skills

Information Security
Vulnerability Assessment
Bug Bounty
Pentesting
AI red teaming
Code Security
Security Research
Vulnerability Disclosure

HackerOne

Platform connecting ethical hackers with brands

About HackerOne

HackerOne provides a platform that connects global brands with ethical hackers to improve their cybersecurity. The platform allows companies to identify and monitor risks in their digital assets by utilizing the skills of ethical hackers who conduct penetration tests to find vulnerabilities. Clients can import their asset data and use the platform to rank the risk of exploitable assets, ensuring a proactive approach to application security. Unlike many competitors, HackerOne offers 24/7 security coverage and the ability to scale services based on client needs. The goal of HackerOne is to promote a proactive security culture by encouraging companies to implement bug bounty programs as part of their cybersecurity strategy.

San Francisco, CaliforniaHeadquarters
2012Year Founded
$155.1MTotal Funding
SERIES_ECompany Stage
CybersecurityIndustries
5,001-10,000Employees

Benefits

Health Insurance
Dental Insurance
Vision Insurance
Life Insurance
Disability Insurance
Unlimited Paid Time Off
Paid Vacation
Paid Sick Leave
Paid Holidays
Parental Leave
Employee Assistance Program
Digital First Stipend
Equity Stock Options
Retirement Plans
Leaves of Absence

Risks

Increased competition from AI-focused bug bounty programs may divert ethical hackers.
The free tier could reduce revenue from smaller clients opting for complimentary services.
Geopolitical tensions may impact partnerships in regions like the Middle East.

Differentiation

HackerOne connects businesses with ethical hackers for proactive security measures.
The platform offers a unique bug bounty solution to reduce security incident risks.
HackerOne provides 24/7 security coverage and scalable, cost-effective solutions.

Upsides

Growing demand for bug bounty programs enhances HackerOne's market position.
Partnerships in the Middle East expand HackerOne's global reach and influence.
The free tier for vulnerability disclosure attracts startups and smaller businesses.

Land your dream remote job 3x faster with AI