Join the Offensive Security Revolution at HackerOne!
HackerOne is a global leader, empowering organizations to build trust and resilience in today's rapidly evolving threat landscape. Our AI-powered platform, combined with the ingenuity of the world's largest community of security researchers, delivers offensive security solutions that find and fix vulnerabilities across the entire software development lifecycle. From bug bounty to pentesting and AI red teaming, we're trusted by industry titans like Amazon, Anthropic, Crypto.com, General Motors, GitHub, Goldman Sachs, Uber, and the U.S. Department of Defense. We were recognized as a Best Workplace for Innovators by Fast Company in 2023 and a Most Loved Workplace for Young Professionals in 2024.
Offensive security is no longer optional – it's the gold standard. At HackerOne, you'll be at the forefront, combining cutting-edge AI with the power of the hacker community to protect the world's leading organizations.
Our Core Values:
Customer Obsessed: We prioritize customer outcomes above all else.
Default to Disclosure: Transparency and integrity are non-negotiable.
Win Together: Empowerment, inclusion, respect, and accountability drive our success.
Product Security Analyst
Location: Pune, India
About the Role
Are you passionate about Information Security and eager to make a real-world impact? HackerOne is looking for a dynamic Product Security Analyst to join our Technical Services team. This is your chance to gain hands-on experience, collaborate with top hackers, and deliver critical vulnerabilities to leading bug bounty programs.
As a key member of our team, you'll need excellent communication skills, a relentless intellectual curiosity, and the drive to master the technical skills required to ensure every valid bug report is reproducible and provides significant value to our customers.
What You'll Do:
Evaluate vulnerability reports submitted by hackers, determining their validity, risk, and severity for HackerOne customers.
Collaborate with hackers to gather missing information and provide constructive feedback, fostering a thriving HackerOne community.
Craft concise and impactful technical summaries for valid reports, clearly outlining the vulnerability's impact, reproduction steps, and recommended remediation.
Facilitate seamless communication between hackers and customers, ensuring efficient vulnerability resolution.
Proactively identify and resolve issues, embracing a collaborative approach to overcome challenges and achieve team success.
Assess vulnerability findings against program policies, scope, and impact to determine their validity.
Independently reproduce reported vulnerabilities in a test environment and create detailed technical summaries for valid findings.
What You'll Need:
Proven experience with vulnerability disclosure and bug bounty programs (managing a program is a bonus!).
Hands-on experience in security testing or ethical hacking of web and mobile applications.
Deep understanding of the OWASP Top 10 vulnerabilities.
Proficiency with security testing tools like Burp Suite.
Exceptional written and verbal communication skills.
Familiarity with vulnerability scoring frameworks such as CVSS.
Self-motivated and able to effectively manage your time and energy in a fast-paced environment.
This position is based in our Pune office, requiring 4-5 days of in-office work per week.
Fluency in English.
Compensation & Benefits
Salary: ₹2.5M – ₹2.8M
Equity Stock Options
Health Insurance (Medical, Vision, Dental), Life, and Disability Insurance*
Retirement Plans
Unlimited Paid Time Off (PTO)
Paid Public Holidays
Paid Maternity and Parental Leave
Leaves of Absence (Including Caregiver Leave)
Employee Assistance Program
Flexible Work Stipend
*Eligibility may differ by country.
We're building a global team! For roles outside the US, UK, and Netherlands, we partner with Remote.com as our Employer of Record (EOR).
Visa/work permit sponsorship is not available.
Employment at HackerOne is contingent on a background check.
HackerOne is an Equal Opportunity Employer.
#LI-MH1