Senior Vulnerability Researcher – Cybersecurity

This is a fully remote position, open to applicants in Dominican Republic.

📋 Description

• Conduct security research on web applications, APIs, and intricate application workflows.

• Discover, validate, and reproduce real-world vulnerabilities in contemporary applications.

• Examine authentication, authorization, session management, and access control systems.

• Convert manual penetration testing methods into automated detection and exploitation frameworks.

• Create and enhance payloads, exploitation strategies, and methods for validating vulnerabilities.

• Investigate HTTP traffic, browser interactions, and application processes to identify security flaws.

• Collaborate with engineering teams to bolster the platform’s automation and offensive security features.

• Clearly document findings, including technical specifics, impact assessments, and steps for reproduction.

⛳️ Requirements

• Over 5 years of practical experience in vulnerability research, penetration testing, bug bounty initiatives, or offensive security.

• In-depth knowledge of web application and API security.

• Comprehensive understanding of authentication and authorization processes; including JWT, OAuth, SSO, sessions, and cookies; as well as access control vulnerabilities and privilege escalation.

• Demonstrated ability to identify vulnerabilities (IDOR / BOLA, business logic flaws, authentication bypasses, privilege escalation vulnerabilities).

• Familiarity with offensive security tools (Burp Suite, Postman, curl, Browser DevTools).

• Proficiency in analyzing and manipulating HTTP requests/responses and application behavior.

• Experience with scripting in Python or JavaScript.

• Proven track record of transforming manual pentesting processes into automated testing logic.

• Excellent communication and documentation abilities.

• Conversational proficiency in English.

• Must reside in Latin America.

🏝️ Benefits

• 100% Remote Work: Enjoy the flexibility to work from the location that best suits your needs. All you need is a laptop and a dependable internet connection.

• Highly Competitive USD Pay: Receive outstanding, market-leading compensation in USD that surpasses typical industry offerings.

• Paid Time Off: We prioritize your well-being. Our paid time off policies ensure you can relax and recharge when necessary.

• Work with Autonomy: Experience the freedom to manage your time effectively as long as tasks are completed. Focus on outcomes, not hours.

• Work with Top American Companies: Expand your expertise by engaging in innovative, high-impact projects with leading U.S. companies.