Senior Vulnerability Researcher - Cybersecurity

This is a fully remote position, open to applicants in Colombia.

📋 Description

• Conduct security research on web applications, APIs, and intricate application workflows.

• Detect, validate, and replicate real-world vulnerabilities present in contemporary applications.

• Examine authentication, authorization, session management, and access control frameworks.

• Convert manual penetration testing methods into automated detection and exploitation frameworks.

• Create and enhance payloads, exploit methodologies, and vulnerability verification techniques.

• Investigate HTTP traffic, browser activities, and application processes to identify security flaws.

• Collaborate with engineering teams to enhance the platform’s automation and offensive security functionalities.

• Clearly document findings, including technical specifics, impact assessments, and steps for reproduction.

⛳️ Requirements

• Over 5 years of practical experience in vulnerability research, penetration testing, bug bounty initiatives, or offensive security.

• In-depth knowledge of web application and API security.

• Comprehensive understanding of authentication and authorization processes; JWT, OAuth, SSO, sessions, and cookies; access control vulnerabilities and privilege escalation.

• Demonstrated experience in identifying vulnerabilities (IDOR/BOLA, business logic flaws, authentication bypasses, privilege escalation vulnerabilities).

• Familiarity with offensive security tools (Burp Suite, Postman, curl, Browser DevTools).

• Proficient in analyzing and manipulating HTTP requests/responses and application behaviors.

• Experience in scripting with Python or JavaScript.

• Proven ability to transform manual penetration testing workflows into automated testing procedures.

• Excellent communication and documentation skills.

• Conversational proficiency in English.

• Must reside in Latin America.

🏝️ Benefits

• 100% Remote Work: Enjoy the flexibility to work from a location that supports your productivity. All you need is a laptop and a stable internet connection.

• Highly Competitive USD Pay: Receive an outstanding, market-leading salary in USD, exceeding typical market standards.

• Paid Time Off: We prioritize your well-being. Our paid time off policies give you the opportunity to relax and recharge when necessary.

• Work with Autonomy: Experience the freedom to manage your time effectively, focusing on results instead of the clock.

• Work with Top American Companies: Enhance your skills while working on innovative, impactful projects with leading U.S. companies.