Start Hiring Start Applying
Start Applying

StudySmarter Job Board

Application Security Engineer II in London
Job Board
Companies
Bugcrowd
Application Security Engineer II

Application Security Engineer II in London

London Full-Time 36000 - 60000 £ / year (est.) No home office possible
Go Premium
Bugcrowd

At a Glance

  • Tasks: Curate and manage security vulnerability submissions for top companies' bug bounty programs.
  • Company: Join Bugcrowd, a leading crowdsourced security platform with a vibrant culture.
  • Benefits: Remote work, competitive salary, and opportunities for professional growth.
  • Why this job: Work with elite hackers and learn cutting-edge security methodologies.
  • Qualifications: Bachelor's degree or relevant security experience; proficiency in security tools required.
  • Other info: Dynamic team environment that values diversity and personal growth.

The predicted salary is between 36000 - 60000 £ per year.

We are Bugcrowd. Since 2012, we have been empowering organizations to take back control and stay ahead of threat actors by uniting the collective ingenuity and expertise of our customers and trusted alliance of elite hackers, with our patented data and AI-powered Security Knowledge Platform. Our network of hackers brings diverse expertise to uncover hidden weaknesses, adapting swiftly to evolving threats, even against zero-day exploits. With unmatched scalability and adaptability, our data and AI-driven CrowdMatch technology in our platform finds the perfect talent for your unique fight. We aim to create a new era of modern crowdsourced security that outpaces threat actors.

At Bugcrowd, we handle application security assessment at an epic scale. As an Application Security Engineer (ASE) you will curate and manage the incoming security vulnerability submissions to some of the world’s biggest companies’ bug bounty programs.

Here are just a few of the reasons why we are the best:

  • A tenure at Bugcrowd often means you have worked on not only one company’s security program but potentially on hundreds.
  • As an ASE at Bugcrowd you will be exposed to the Internet’s best security researchers and their cutting-edge security testing methodologies.
  • Our ASEs quickly become technically fluent in obscure/complex XSS, SQLi, XXE, IDOR, SSTI, SSRF, and many other vulnerability types.
  • You will be exposed to things outside of your comfort zone. We routinely run security programs for cars, IoT devices, embedded systems, mobile applications, and more!
  • We have an awesome team and tons of perks.

Essential Duties & Responsibilities

An ASE is responsible for the ongoing triage and validation services of Bugcrowd managed programs. Under the direction of the Director of Technical Operations, you will be doing the following:

  • Take incoming submission data and curate it for validity, accuracy, and severity as well as communicate directly with Bugcrowd’s clients or researchers when additional information is required.
  • Handle Incident Response – escalating and communicating about the highest severity bugs to clients.
  • Strong knowledge of OWASP Top Ten type vulnerabilities.
  • A mature skill set in one scripting/development language, often to assist with the design or development of tooling for improving the triage/validation process.

Education, Experience, Skills, & Abilities

  • Bachelor's degree or previous security consulting experience.
  • Published and demonstrated passion for security assessment research.
  • High proficiency with Burp Suite (or any other interception proxy) and a working level of experience with other industry standard tools (nmap, sqlmap, anything included in Kali Linux).
  • Ability to execute on individual projects but still contribute to the team.
  • Ability to complete tasks on time.
  • Strong organization, influencing, and communication skills.

Working Conditions

The ideal candidate must be able to complete all physical requirements of the job with or without reasonable accommodation.

  • Sitting and/or standing - Must be able to remain in a stationary position 50% of the time.
  • Carrying and/or lifting - Must be able to carry/move laptop as needed throughout the work day.
  • Environment - remote, work-from-home 100% of the time.

ADA Statement

Bugcrowd is committed to the full inclusion of all qualified individuals. In keeping with our commitment, Bugcrowd will take the steps to assure that people with disabilities are provided reasonable accommodations.

Culture

At Bugcrowd, we understand that diversity in the workplace is vital to a company’s success and growth. We strive to make sure that people are included and have a sense of being part of making Bugcrowd not only a great product but a great place to work.

We regularly hear from both customers and researchers that Bugcrowd feels like a family, and we strive to maintain that internally as well.

Our team consists of a broad range of people: musicians, adventure sports junkies, nature lovers, parents, cereal enthusiasts, night owls, cyclists, artists—you get the point.

At Bugcrowd, we are solving security threats and vulnerabilities that are relevant to everyone, therefore we believe solving these problems takes all kinds of backgrounds. We value the perspectives and experiences people from underrepresented backgrounds bring.

Application Security Engineer II in London employer: Bugcrowd

At Bugcrowd, we pride ourselves on being an exceptional employer, offering a dynamic work culture that fosters innovation and collaboration. Our remote work environment allows for flexibility while providing unparalleled exposure to cutting-edge security methodologies and the opportunity to work alongside elite hackers. With a strong commitment to employee growth and a diverse team that feels like family, Bugcrowd is dedicated to empowering its employees to thrive in their careers while tackling meaningful security challenges.
Bugcrowd

Contact Detail:

Bugcrowd Recruiting Team

View Bugcrowd Profile

StudySmarter Expert Advice 🤫

We think this is how you could land Application Security Engineer II in London

✨Tip Number 1

Network like a pro! Reach out to folks in the security community, attend meetups, and connect with Bugcrowd employees on LinkedIn. Building relationships can open doors that a CV just can't.

✨Tip Number 2

Show off your skills! Create a portfolio showcasing your security assessments or any projects you've worked on. This gives you a chance to demonstrate your expertise beyond what's on paper.

✨Tip Number 3

Prepare for the interview by brushing up on the OWASP Top Ten vulnerabilities and familiarising yourself with Bugcrowd's platform. Being knowledgeable about their work will impress the hiring team.

✨Tip Number 4

Don't forget to apply through our website! It’s the best way to ensure your application gets seen. Plus, it shows you're genuinely interested in joining the Bugcrowd family.

We think you need these skills to ace Application Security Engineer II in London

Application Security Assessment
Vulnerability Management
Incident Response
OWASP Top Ten
Burp Suite
Scripting/Development Language
Data Validation
Communication Skills
Project Management
Technical Fluency in Security Testing Methodologies
Organisational Skills
Team Collaboration
Adaptability to New Technologies

Some tips for your application 🫡

Show Your Passion for Security: When writing your application, let your enthusiasm for security shine through! Share any personal projects or research you've done in the field. We love seeing candidates who are genuinely excited about tackling vulnerabilities and improving security.

Tailor Your Application: Make sure to customise your application to fit the role of Application Security Engineer II. Highlight your experience with OWASP Top Ten vulnerabilities and any tools like Burp Suite. We want to see how your skills align with what we do at Bugcrowd!

Be Clear and Concise: Keep your application straightforward and to the point. Use clear language and avoid jargon unless it's relevant. We appreciate candidates who can communicate effectively, as this is key in our collaborative environment.

Apply Through Our Website: Don’t forget to submit your application through our website! It’s the best way for us to receive your details and ensures you’re considered for the role. Plus, it shows you’re serious about joining the Bugcrowd family!

How to prepare for a job interview at Bugcrowd

✨Know Your Vulnerabilities

Familiarise yourself with the OWASP Top Ten vulnerabilities and be ready to discuss them in detail. Bugcrowd values candidates who can demonstrate a strong understanding of these issues, so prepare examples from your past experiences where you've encountered or mitigated such vulnerabilities.

✨Showcase Your Tools Proficiency

Make sure you can talk confidently about your experience with tools like Burp Suite, nmap, and sqlmap. Be prepared to explain how you've used these tools in real-world scenarios, as this will show your technical fluency and readiness for the role.

✨Communicate Clearly

Effective communication is key, especially when discussing complex security issues. Practice explaining technical concepts in simple terms, as you may need to communicate findings to clients or team members who aren't as technically savvy.

✨Embrace the Learning Mindset

Bugcrowd is all about growth and learning. Be open about your desire to expand your skills and knowledge, especially in areas outside your comfort zone. Share specific examples of how you've tackled new challenges in the past, as this will resonate well with their culture of continuous improvement.

Application Security Engineer II in London
Bugcrowd
Location: London
Go Premium

Land your dream job quicker with Premium

You’re marked as a top applicant with our partner companies
Individual CV and cover letter feedback including tailoring to specific job roles
Be among the first applications for new jobs with our AI application
1:1 support and career advice from our career coaches
Go Premium

Money-back if you don't land a job in 6-months

>