Senior PSIRT Security Engineer, EMEA

Demonstrated experience managing vulnerability triage, remediation, and disclosure in a software security context. Strong understanding and effective communication of code security and remediation of various security defects. Programming or scripting experience (Ruby, Ruby on Rails, TypeScript, JavaScript, and/or Go preferred) for fix validation and root cause analysis. Comfortable in shell scripting to automate recurring work or build PoC exploits. Experience performing Application Penetration Testing or Vulnerability Research / Bug Bounty Hunting. Understanding of common security vulnerabilities and security impact frameworks (e.g., OWASP Top 10, STRIDE). Understanding of common security frameworks and standards (CVE, CWE, CVSS, etc). Demonstrated ability to learn new technical concepts in cloud and web application security assessment. Flexible, effective, and inclusive communication skills for collaboration with technical and non-technical audiences. Demonstrated critical and creative thinking, and effective teamwork. Comfortable using Git and GitLab effectively. Experience with standard web application security tools such as BurpSuite. Flexible and constructive approach to problem solving. Proficiency in the English language, both written and verbal.

Reproduce, assess, and document vulnerabilities, perform variant hunting, and contribute to exploitability research. Support and consult with product and development teams on vulnerability remediation and mitigation. Independently validate vulnerability fixes prior to release. Support security release preparation activities. Automate vulnerability triage related tasks and collaborate to mature team processes and documentation. Participate in the vulnerability response lifecycle, including coordinated vulnerability disclosure. Contribute to documentation explaining vulnerability impact, risk, and remediation guidance.