Senior Vulnerability Researcher

New

TruelogicCybersecurity

Must be located in Latin America.Full-TimeSenior

Salary not disclosed

Apply NowOpens the employer's application page

Job Details

5+ years of hands-on experience in vulnerability research, penetration testing, bug bounty programs, or offensive security.
Strong expertise in web application and API security.
Deep understanding of Authentication and authorization flows (JWT, OAuth, SSO, sessions, cookies).
Deep understanding of access control vulnerabilities and privilege escalation.
Proven experience identifying vulnerabilities (IDOR / BOLA, Business logic flaws, Authentication bypasses, Privilege escalation).
Experience using offensive security tools (Burp Suite, Postman, curl, Browser DevTools).
Ability to analyze and manipulate HTTP requests/responses and application behavior.
Scripting experience with Python or JavaScript.
Experience converting manual pentesting workflows into automated testing logic.
Strong communication and documentation skills.
Conversational English proficiency.

Perform security research on web applications, APIs, and complex application workflows.
Identify, validate, and reproduce real-world vulnerabilities in modern applications.
Analyze authentication, authorization, session management, and access control mechanisms.
Translate manual penetration testing techniques into automated detection and exploitation logic.
Develop and refine payloads, exploit strategies, and vulnerability validation methods.
Analyze HTTP traffic, browser behavior, and application flows to uncover security weaknesses.
Collaborate with engineering teams to improve the platform's automation and offensive security capabilities.
Document findings clearly, including technical details, impact analysis, and reproduction steps.

View Full Description & ApplyYou'll be redirected to the employer's site